kf5-kio-5.116.0-1.fc41
List of Defects
Error: COMPILER_WARNING (CWE-477): [#def1]
kf5-kio-5.116.0-build/kio-5.116.0/src/core/desktopexecparser.cpp: scope_hint: In static member function ‘static QStringList KIO::DesktopExecParser::supportedProtocols(const KService&)’
kf5-kio-5.116.0-build/kio-5.116.0/src/core/desktopexecparser.cpp:206:52: warning[-Wdeprecated-declarations]: ‘QStringList KService::serviceTypes() const’ is deprecated: Since 5.104. Service Types are deprecated
# 206 | const auto servicesTypes = service.serviceTypes();
# | ~~~~~~~~~~~~~~~~~~~~^~
/usr/include/KF5/KService/kapplicationtrader.h:13: included_from: Included from here.
/usr/include/KF5/KService/KApplicationTrader:1: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/core/desktopexecparser.cpp:15: included_from: Included from here.
/usr/include/KF5/KService/kservice.h:291:17: note: declared here
# 291 | QStringList serviceTypes() const;
# | ^~~~~~~~~~~~
# 204| // add x-scheme-handler/<protocol>
# 205| const QLatin1String xScheme("x-scheme-handler/");
# 206|-> const auto servicesTypes = service.serviceTypes();
# 207| for (const auto &mimeType : servicesTypes) {
# 208| if (mimeType.startsWith(xScheme)) {
Error: COMPILER_WARNING (CWE-477): [#def2]
kf5-kio-5.116.0-build/kio-5.116.0/src/gui/kprocessrunner.cpp: scope_hint: In member function ‘void KProcessRunner::init(const KService::Ptr&, const QString&, const QString&, const QString&, const QByteArray&)’
kf5-kio-5.116.0-build/kio-5.116.0/src/gui/kprocessrunner.cpp:314:117: warning[-Wdeprecated-declarations]: ‘bool KService::hasServiceType(const QString&) const’ is deprecated: Since 5.104. Service Types are deprecated
# 314 | if (m_desktopName.isEmpty() && m_executable == QLatin1String("systemsettings5") && m_service->hasServiceType(QLatin1String("KCModule"))) {
# | ~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~
/usr/include/KF5/KService/KService:1: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/gui/applicationlauncherjob.h:13: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/gui/kprocessrunner_p.h:11: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/gui/kprocessrunner.cpp:8: included_from: Included from here.
/usr/include/KF5/KService/kservice.h:306:10: note: declared here
# 306 | bool hasServiceType(const QString &serviceTypePtr) const;
# | ^~~~~~~~~~~~~~
# 312| // Store the desktop name, used by debug output and for the systemd unit name
# 313| m_desktopName = service->menuId();
# 314|-> if (m_desktopName.isEmpty() && m_executable == QLatin1String("systemsettings5") && m_service->hasServiceType(QLatin1String("KCModule"))) {
# 315| m_desktopName = QStringLiteral("systemsettings.desktop");
# 316| }
Error: CLANG_WARNING: [#def3]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/fdreceiver.cpp:64:13: warning[core.NonNullParamChecker]: Null pointer passed to 2nd parameter expecting 'nonnull'
# 62| FDMessageHeader msg;
# 63| if (::recvmsg(client, msg.message(), 0) == 2) {
# 64|-> ::memcpy(&m_fileDes, CMSG_DATA(msg.cmsgHeader()), sizeof m_fileDes);
# 65| }
# 66| ::close(client);
Error: CLANG_WARNING: [#def4]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file.cpp:91:24: warning[cplusplus.NewDeleteLeaks]: Potential memory leak
# 89| #endif
# 90|
# 91|-> FileProtocol slave(argv[2], argv[3]);
# 92|
# 93| // Make sure the first kDebug is after the slave ctor (which sets a SIGPIPE handler)
Error: COMPILER_WARNING (CWE-252): [#def5]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file.cpp: scope_hint: In member function ‘void FileProtocol::unmount(const QString&)’
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file.cpp:947:11: warning[-Wunused-result]: ignoring return value of ‘int system(const char*)’ declared with attribute ‘warn_unused_result’
# 947 | system(buffer.constData());
# | ~~~~~~^~~~~~~~~~~~~~~~~~~~
# 945|
# 946| buffer = umountProg + ' ' + QFile::encodeName(KShell::quoteArg(_point)) + " 2>" + tmpFileName;
# 947|-> system(buffer.constData());
# 948|
# 949| QString err = readLogFile(tmpFileName);
Error: COMPILER_WARNING (CWE-252): [#def6]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file_unix.cpp: scope_hint: In member function ‘virtual void FileProtocol::copy(const QUrl&, const QUrl&, int, KIO::JobFlags)’
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file_unix.cpp:987:26: warning[-Wunused-result]: ignoring return value of ‘int chown(const char*, __uid_t, __gid_t)’ declared with attribute ‘warn_unused_result’
# 987 | (void)::chown(_dest.data(), buffSrc.st_uid, -1 /*keep group*/);
# | ~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# 985| // as we are the owner of the new file, we can always change the group, but
# 986| // we might not be allowed to change the owner
# 987|-> (void)::chown(_dest.data(), buffSrc.st_uid, -1 /*keep group*/);
# 988| } else {
# 989| if (tryChangeFileAttr(CHOWN, {_dest, buffSrc.st_uid, buffSrc.st_gid}, errno)) {
Error: CLANG_WARNING: [#def7]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/file_unix.cpp:1536:13: warning[deadcode.DeadStores]: Value stored to 'acl' is never read
# 1534| // user told us to delete the extended ACL, so let's write only
# 1535| // the minimal (UNIX permission bits) part
# 1536|-> acl = ACLPortability::acl_from_mode(perm);
# 1537| }
# 1538| acl = acl_from_text(ACLString.toLatin1().constData());
Error: CLANG_WARNING: [#def8]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp:116:5: warning[security.insecureAPI.UncheckedReturn]: The return value from the call to 'seteuid' is not checked. If an error occurs in 'seteuid', the following code may execute with unexpected privileges
# 114| gid_t oldgid = p->gid;
# 115|
# 116|-> seteuid(olduid);
# 117| setegid(oldgid);
# 118| setgroups(1, &oldgid);
Error: COMPILER_WARNING (CWE-252): [#def9]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp: scope_hint: In function ‘void gainPrivilege(Privilege*)’
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp:116:12: warning[-Wunused-result]: ignoring return value of ‘int seteuid(__uid_t)’ declared with attribute ‘warn_unused_result’
# 116 | seteuid(olduid);
# | ~~~~~~~^~~~~~~~
# 114| gid_t oldgid = p->gid;
# 115|
# 116|-> seteuid(olduid);
# 117| setegid(oldgid);
# 118| setgroups(1, &oldgid);
Error: CLANG_WARNING: [#def10]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp:117:5: warning[security.insecureAPI.UncheckedReturn]: The return value from the call to 'setegid' is not checked. If an error occurs in 'setegid', the following code may execute with unexpected privileges
# 115|
# 116| seteuid(olduid);
# 117|-> setegid(oldgid);
# 118| setgroups(1, &oldgid);
# 119| }
Error: COMPILER_WARNING (CWE-252): [#def11]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp:117:12: warning[-Wunused-result]: ignoring return value of ‘int setegid(__gid_t)’ declared with attribute ‘warn_unused_result’
# 117 | setegid(oldgid);
# | ~~~~~~~^~~~~~~~
# 115|
# 116| seteuid(olduid);
# 117|-> setegid(oldgid);
# 118| setgroups(1, &oldgid);
# 119| }
Error: CLANG_WARNING: [#def12]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/file/kauth/filehelper.cpp:275:1: warning[cplusplus.NewDeleteLeaks]: Potential memory leak
# 273| }
# 274|
# 275|-> KAUTH_HELPER_MAIN("org.kde.kio.file", FileHelper)
# 276|
# 277| #include "moc_filehelper.cpp"
Error: CLANG_WARNING: [#def13]
kf5-kio-5.116.0-build/kio-5.116.0/src/ioslaves/trash/kio_trash.cpp:217:13: warning[deadcode.DeadStores]: Value stored to 'ok' is never read
# 215| if (QFile::exists(destPath)) {
# 216| if (overwrite) {
# 217|-> ok = QFile::remove(destPath);
# 218| Q_ASSERT(ok); // ### TODO
# 219| } else {
Error: COMPILER_WARNING (CWE-477): [#def14]
kf5-kio-5.116.0-build/kio-5.116.0/src/kcms/webshortcuts/main.cpp: scope_hint: In constructor ‘KURIFilterModule::KURIFilterModule(QWidget*, const QVariantList&)’
kf5-kio-5.116.0-build/kio-5.116.0/src/kcms/webshortcuts/main.cpp:32:17: warning[-Wdeprecated-declarations]: ‘void KCModule::setAboutData(const KAboutData*)’ is deprecated: Since 5.106. See API docs
# 32 | setAboutData(about);
# | ~~~~~~~~~~~~^~~~~~~
/usr/include/KF5/KConfigWidgets/KCModule:1: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/kcms/webshortcuts/main.h:10: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/kcms/webshortcuts/main.cpp:8: included_from: Included from here.
/usr/include/KF5/KConfigWidgets/kcmodule.h:173:10: note: declared here
# 173 | void setAboutData(const KAboutData *about);
# | ^~~~~~~~~~~~
# 30| i18n("Configure enhanced browsing features"),
# 31| KAboutLicense::GPL);
# 32|-> setAboutData(about);
# 33|
# 34| KCModule::setButtons(KCModule::Buttons(KCModule::Default | KCModule::Apply | KCModule::Help));
Error: CLANG_WARNING: [#def15]
kf5-kio-5.116.0-build/kio-5.116.0/src/kcms/webshortcuts/main.cpp:92:5: warning[cplusplus.NewDeleteLeaks]: Potential leak of memory pointed to by 'layout'
# 90| layout->addWidget(m_widget);
# 91| }
# 92|-> setMinimumWidth(700);
# 93| }
# 94|
Error: COMPILER_WARNING (CWE-477): [#def16]
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main.cpp: scope_hint: In function ‘int kdemain(int, char**)’
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main.cpp:56:33: warning[-Wdeprecated-declarations]: ‘int xmlSubstituteEntitiesDefault(int)’ is deprecated
# 56 | xmlSubstituteEntitiesDefault(1);
# | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~^~~
/usr/include/libxml2/libxml/tree.h:17: included_from: Included from here.
/usr/include/libxml2/libxml/HTMLtree.h:16: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main.cpp:20: included_from: Included from here.
/usr/include/libxml2/libxml/parser.h:953:17: note: declared here
# 953 | xmlSubstituteEntitiesDefault(int val);
# | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~
# 54|
# 55| LIBXML_TEST_VERSION
# 56|-> xmlSubstituteEntitiesDefault(1);
# 57| xmlLoadExtDtdDefaultValue = 1;
# 58| exsltRegisterAll();
Error: COMPILER_WARNING (CWE-477): [#def17]
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main_ghelp.cpp: scope_hint: In function ‘int kdemain(int, char**)’
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main_ghelp.cpp:49:33: warning[-Wdeprecated-declarations]: ‘int xmlSubstituteEntitiesDefault(int)’ is deprecated
# 49 | xmlSubstituteEntitiesDefault(1);
# | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~^~~
/usr/include/libxml2/libxml/tree.h:17: included_from: Included from here.
/usr/include/libxml2/libxml/HTMLtree.h:16: included_from: Included from here.
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/help/main_ghelp.cpp:16: included_from: Included from here.
/usr/include/libxml2/libxml/parser.h:953:17: note: declared here
# 953 | xmlSubstituteEntitiesDefault(int val);
# | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~
# 47|
# 48| LIBXML_TEST_VERSION
# 49|-> xmlSubstituteEntitiesDefault(1);
# 50| xmlLoadExtDtdDefaultValue = 1;
# 51| exsltRegisterAll();
Error: CLANG_WARNING: [#def18]
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/http/http_cache_cleaner.cpp:326:18: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 324| const int ints = s_hashedUrlBytes / sizeof(uint);
# 325| for (int i = 0; i < ints; i++) {
# 326|-> hash ^= reinterpret_cast<uint *>(&m_index[0])[i];
# 327| }
# 328| if (const int bytesLeft = s_hashedUrlBytes % sizeof(uint)) {
Error: CLANG_WARNING: [#def19]
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/http/httpauthentication.cpp:90:9: warning[deadcode.DeadStores]: Value stored to 'start' is never read
# 88| end -= start;
# 89| len -= start;
# 90|-> start = 0;
# 91| b = ba.constData();
# 92| }
Error: CLANG_WARNING: [#def20]
kf5-kio-5.116.0-build/kio-5.116.0/src/kioworkers/http/httpauthentication.cpp:797:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 795|
# 796| do {
# 797|-> ret = gss_display_status(&new_status, major_status, GSS_C_GSS_CODE, GSS_C_NULL_OID, &msg_ctx, &major_string);
# 798| errorstr += (const char *)major_string.value;
# 799| errorstr += ' ';
Error: CPPCHECK_WARNING: [#def21]
kf5-kio-5.116.0-build/kio-5.116.0/src/kpac/kpac_dhcp_helper.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING: [#def22]
kf5-kio-5.116.0-build/kio-5.116.0/src/widgets/imagefilter.cpp:111:21: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 109| stackpix = &stack[stackindex];
# 110|
# 111|-> sum_out += *stackpix;
# 112| sum_in -= *stackpix;
# 113| } // for (x = 0, ...)
Error: CLANG_WARNING: [#def23]
kf5-kio-5.116.0-build/kio-5.116.0/src/widgets/imagefilter.cpp:187:21: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 185| stackpix = &stack[stackindex];
# 186|
# 187|-> sum_out += *stackpix;
# 188| sum_in -= *stackpix;
# 189| } // for (y = 0, ...)
Error: CLANG_WARNING: [#def24]
kf5-kio-5.116.0-build/kio-5.116.0/src/widgets/jobuidelegate.cpp:479:5: warning[cplusplus.NewDeleteLeaks]: Potential leak of memory pointed to by 'kid.wp.value'
# 477| break;
# 478| }
# 479|-> KMessageBox::setDontShowAgainConfig(nullptr);
# 480| return result;
# 481| }
Error: CLANG_WARNING: [#def25]
kf5-kio-5.116.0-build/kio-5.116.0/src/widgets/kdesktopfileactions.cpp:145:12: warning[cplusplus.NewDeleteLeaks]: Potential leak of memory pointed to by 'run'
# 143| }
# 144|
# 145|-> return false;
# 146| }
# 147| #endif
Scan Properties
| analyzer-version-clang | 18.1.7 |
| analyzer-version-cppcheck | 2.14.2 |
| analyzer-version-gcc | 14.1.1 |
| analyzer-version-gcc-analyzer | 14.1.1 |
| analyzer-version-shellcheck | 0.10.0 |
| enabled-plugins | clang, cppcheck, gcc, shellcheck |
| exit-code | 0 |
| host | ip-172-16-1-17.us-west-2.compute.internal |
| mock-config | fedora-41-x86_64 |
| project-name | kf5-kio-5.116.0-1.fc41 |
| store-results-to | /tmp/tmpez3xt7hx/kf5-kio-5.116.0-1.fc41.tar.xz |
| time-created | 2024-07-03 13:54:53 |
| time-finished | 2024-07-03 14:03:07 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpez3xt7hx/kf5-kio-5.116.0-1.fc41.tar.xz' '--gcc-analyze' '/tmp/tmpez3xt7hx/kf5-kio-5.116.0-1.fc41.src.rpm' |
| tool-version | csmock-3.5.3-1.el9 |