bubblewrap-0.9.0-1.fc41

List of Defects

Error: CPPCHECK_WARNING: [#def1]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/bind-mount.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.

Error: GCC_ANALYZER_WARNING (CWE-775): [#def2]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/bind-mount.c: scope_hint: In function ‘bind_mount’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/bind-mount.c:408:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘open(realpath(dest, 0), 2621440)’
#  406|       return BIND_MOUNT_ERROR_REALPATH_DEST;
#  407|   
#  408|->   dest_fd = open (resolved_dest, O_PATH | O_CLOEXEC);
#  409|     if (dest_fd < 0)
#  410|       {

Error: CPPCHECK_WARNING: [#def3]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/bubblewrap.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.

Error: CLANG_WARNING: [#def4]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/bubblewrap.c:1470:15: warning[core.NonNullParamChecker]: Null pointer passed to 2nd parameter expecting 'nonnull'
# 1468|           case SETUP_MAKE_SYMLINK:
# 1469|             assert (op->source != NULL);  /* guaranteed by the constructor */
# 1470|->           if (symlink (op->source, dest) != 0)
# 1471|               {
# 1472|                 if (errno == EEXIST)

Error: CPPCHECK_WARNING: [#def5]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/network.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.

Error: CPPCHECK_WARNING: [#def6]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/tests/try-syscall.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.

Error: GCC_ANALYZER_WARNING: [#def7]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/tests/try-syscall.c: scope_hint: In function ‘main’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/tests/try-syscall.c:157:15: warning[-Wanalyzer-fd-use-without-check]: ‘listen’ on possibly invalid file descriptor ‘-1’
#  155|           {
#  156|             /* If not blocked by seccomp, this will fail with EBADF */
#  157|->           if (listen (-1, 42) != 0)
#  158|               {
#  159|                 errsv = errno;

Error: CPPCHECK_WARNING: [#def8]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.

Error: GCC_ANALYZER_WARNING (CWE-401): [#def9]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c: scope_hint: In function ‘load_file_data’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c:168:10: warning[-Wanalyzer-malloc-leak]: leak of ‘xrealloc(data, (long unsigned int)data_len)’
#  166|     if (res == NULL)
#  167|       die_oom ();
#  168|->   return res;
#  169|   }
#  170|   

Error: GCC_ANALYZER_WARNING (CWE-401): [#def10]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c: scope_hint: In function ‘readlink_malloc’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c:168:10: warning[-Wanalyzer-malloc-leak]: leak of ‘xrealloc(value,  size)’
#  166|     if (res == NULL)
#  167|       die_oom ();
#  168|->   return res;
#  169|   }
#  170|   

Error: CLANG_WARNING: [#def11]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c:741:10: warning[unix.Malloc]: Potential leak of memory pointed to by 'p'
#  739|     while (p);
#  740|   
#  741|->   return 0;
#  742|   }
#  743|   

Error: CLANG_WARNING: [#def12]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c:841:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'value'
#  839|         n = readlink (pathname, value, size - 1);
#  840|         if (n < 0)
#  841|->         return NULL;
#  842|       }
#  843|     while (size - 2 < (size_t)n);

Error: CPPCHECK_WARNING (CWE-476): [#def13]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c:845: warning[nullPointer]: Possible null pointer dereference: value
#  843|     while (size - 2 < (size_t)n);
#  844|   
#  845|->   value[n] = 0;
#  846|     return steal_pointer (&value);
#  847|   }

Error: GCC_ANALYZER_WARNING (CWE-415): [#def14]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.h:147:5: warning[-Wanalyzer-double-free]: double-‘free’ of ‘data’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c: scope_hint: In function ‘load_file_data’
#  145|   
#  146|     if (*pp)
#  147|->     free (*pp);
#  148|   }
#  149|   

Error: GCC_ANALYZER_WARNING (CWE-415): [#def15]
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.h:147:5: warning[-Wanalyzer-double-free]: double-‘free’ of ‘value’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.c: scope_hint: In function ‘readlink_malloc’
bubblewrap-0.9.0-build/bubblewrap-0.9.0/utils.h:22: included_from: Included from here.
#  145|   
#  146|     if (*pp)
#  147|->     free (*pp);
#  148|   }
#  149|

Scan Properties

analyzer-version-clang	18.1.7
analyzer-version-cppcheck	2.14.2
analyzer-version-gcc	14.1.1
analyzer-version-gcc-analyzer	14.1.1
analyzer-version-shellcheck	0.10.0
enabled-plugins	clang, cppcheck, gcc, shellcheck
exit-code	0
host	ip-172-16-1-222.us-west-2.compute.internal
mock-config	fedora-41-x86_64
project-name	bubblewrap-0.9.0-1.fc41
store-results-to	/tmp/tmpxfzqf02r/bubblewrap-0.9.0-1.fc41.tar.xz
time-created	2024-07-03 12:07:14
time-finished	2024-07-03 12:08:15
tool	csmock
tool-args	'/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpxfzqf02r/bubblewrap-0.9.0-1.fc41.tar.xz' '--gcc-analyze' '/tmp/tmpxfzqf02r/bubblewrap-0.9.0-1.fc41.src.rpm'
tool-version	csmock-3.5.3-1.el9