Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c: scope_hint: In function 'process_all_startpoints' findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c:624:22: warning[-Wanalyzer-malloc-leak]: leak of 'rpl_fopen(options.files0_from, "r")' findutils-4.10.0-build/findutils-4.10.0/gl/lib/argv-iter.h:22: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c:41: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c:33: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c:48: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/gl/lib/same-inode.h:77:26: note: in expansion of macro 'PSAME_INODE' findutils-4.10.0-build/findutils-4.10.0/find/ftsfind.c:635:24: note: in expansion of macro 'SAME_INODE' # 622| const int fd = fileno (stream); # 623| assert (fd >= 0); # 624|-> if (options.ok_prompt_stdin) # 625| { # 626| /* Check if the given file is associated to the same stream as Error: GCC_ANALYZER_WARNING (CWE-121): [#def2] findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c: scope_hint: In function 'main' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:67:3: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:71:3: note: in expansion of macro 'print_int' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:71:3: note: in expansion of macro 'print_int' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:67:3: note: write of 1 byte to beyond the end of 'limit' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:71:3: note: in expansion of macro 'print_int' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:67:3: note: valid subscripts for 'limit' are '[0]' to '[99]' findutils-4.10.0-build/findutils-4.10.0/find/getlimits.c:71:3: note: in expansion of macro 'print_int' # 65| # 66| #define print_int(TYPE) \ # 67|-> sprintf (limit + 1, "%" "ju", (uintmax_t) TYPE##_MAX); \ # 68| printf (#TYPE"_MAX=%s\n", limit + 1); \ # 69| printf (#TYPE"_OFLOW=%s\n", decimal_absval_add_one (limit)) Error: CLANG_WARNING: [#def3] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:68:19: warning[deadcode.DeadStores]: Although the value stored to 'table_memory' is used in the enclosing expression, the value is never actually read from 'table_memory' # 66| aligned += extra_align; # 67| aligned -= (uintptr_t) aligned % alignof (size_t); # 68|-> size_t *table = table_memory = aligned; # 69| # 70| /* Fill needle_mbchars. */ Error: CPPCHECK_WARNING: [#def4] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbsrtoc32s.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches. Error: CPPCHECK_WARNING: [#def5] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbsrtowcs.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches. Error: CLANG_WARNING: [#def6] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbsstr.c:67:19: warning[deadcode.DeadStores]: Although the value stored to 'table_memory' is used in the enclosing expression, the value is never actually read from 'table_memory' # 65| aligned += extra_align; # 66| aligned -= (uintptr_t) aligned % alignof (size_t); # 67|-> size_t *table = table_memory = aligned; # 68| # 69| /* Fill needle_mbchars. */ Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbuiter.h:164:7: warning[-Wanalyzer-malloc-leak]: leak of '<unknown>' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c: scope_hint: In function 'knuth_morris_pratt_multibyte' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:27: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:83:36: note: in expansion of macro 'mbui_avail' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbuiter.h:105: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbchar.h:336:40: note: in definition of macro 'is_basic' # 162| else # 163| { # 164|-> assert (mbsinit (&iter->state)); # 165| #if !GNULIB_MBRTOC32_REGULAR # 166| iter->in_shift = true; Error: GCC_ANALYZER_WARNING (CWE-401): [#def8] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbuiter.h:197:15: warning[-Wanalyzer-malloc-leak]: leak of '<unknown>' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c: scope_hint: In function 'knuth_morris_pratt_multibyte' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:83:36: note: in expansion of macro 'mbui_avail' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbchar.h:336:40: note: in definition of macro 'is_basic' # 195| /* A null wide character was encountered. */ # 196| iter->cur.bytes = 1; # 197|-> assert (*iter->cur.ptr == '\0'); # 198| assert (iter->cur.wc == 0); # 199| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbuiter.h:198:15: warning[-Wanalyzer-malloc-leak]: leak of '<unknown>' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c: scope_hint: In function 'knuth_morris_pratt_multibyte' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/malloca.h:105:37: note: in expansion of macro 'malloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:58:18: note: in expansion of macro 'nmalloca' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbscasestr.c:83:36: note: in expansion of macro 'mbui_avail' findutils-4.10.0-build/findutils-4.10.0/gl/lib/mbchar.h:336:40: note: in definition of macro 'is_basic' # 196| iter->cur.bytes = 1; # 197| assert (*iter->cur.ptr == '\0'); # 198|-> assert (iter->cur.wc == 0); # 199| } # 200| #if !GNULIB_MBRTOC32_REGULAR Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] findutils-4.10.0-build/findutils-4.10.0/gnulib-tests/localename.c:39: included_from: Included from here. findutils-4.10.0-build/findutils-4.10.0/gnulib-tests/struniq.h: scope_hint: In function 'struniq' findutils-4.10.0-build/findutils-4.10.0/gnulib-tests/struniq.h:118:10: warning[-Wanalyzer-malloc-leak]: leak of 'new_node' # 116| if (mt) gl_lock_unlock (struniq_lock); # 117| } # 118|-> return new_node->contents; # 119| } Error: CPPCHECK_WARNING (CWE-476): [#def11] findutils-4.10.0-build/findutils-4.10.0/xargs/xargs.c:260: warning[nullPointer]: Possible null pointer dereference: p # 258| errno = 0; # 259| endp = NULL; # 260|-> val = strtoul (p, &endp, base); # 261| # 262| /* This if condition is carefully constructed to do
| analyzer-version-clang | 18.1.7 |
| analyzer-version-cppcheck | 2.14.2 |
| analyzer-version-gcc | 14.1.1 |
| analyzer-version-gcc-analyzer | 14.1.1 |
| analyzer-version-shellcheck | 0.10.0 |
| diffbase-analyzer-version-clang | 18.1.7 |
| diffbase-analyzer-version-cppcheck | 2.14.2 |
| diffbase-analyzer-version-gcc | 14.1.1 |
| diffbase-analyzer-version-gcc-analyzer | 14.1.1 |
| diffbase-analyzer-version-shellcheck | 0.10.0 |
| diffbase-enabled-plugins | clang, cppcheck, gcc, shellcheck |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-126.us-west-2.compute.internal |
| diffbase-mock-config | fedora-41-x86_64 |
| diffbase-project-name | findutils-4.9.0-8.fc40 |
| diffbase-store-results-to | /tmp/tmpp647hy6d/findutils-4.9.0-8.fc40.tar.xz |
| diffbase-time-created | 2024-07-03 12:37:09 |
| diffbase-time-finished | 2024-07-03 12:40:16 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpp647hy6d/findutils-4.9.0-8.fc40.tar.xz' '--gcc-analyze' '/tmp/tmpp647hy6d/findutils-4.9.0-8.fc40.src.rpm' |
| diffbase-tool-version | csmock-3.5.3-1.el9 |
| enabled-plugins | clang, cppcheck, gcc, shellcheck |
| exit-code | 0 |
| host | ip-172-16-1-126.us-west-2.compute.internal |
| mock-config | fedora-41-x86_64 |
| project-name | findutils-4.10.0-2.fc41 |
| store-results-to | /tmp/tmpoh10i4tx/findutils-4.10.0-2.fc41.tar.xz |
| time-created | 2024-07-03 12:40:30 |
| time-finished | 2024-07-03 12:42:49 |
| title | Newly introduced defects |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpoh10i4tx/findutils-4.10.0-2.fc41.tar.xz' '--gcc-analyze' '/tmp/tmpoh10i4tx/findutils-4.10.0-2.fc41.src.rpm' |
| tool-version | csmock-3.5.3-1.el9 |