Newly introduced defects

List of Defects

Error: COMPILER_WARNING (CWE-1164): [#def1]
openssl-3.2.2-build/openssl-3.2.2/crypto/rand/rand_lib.c:534:22: warning[-Wunused-function]: 'rand_new_seed' defined but not used
#  534 | static EVP_RAND_CTX *rand_new_seed(OSSL_LIB_CTX *libctx)
#      |                      ^~~~~~~~~~~~~
#  532|   
#  533|   #ifndef FIPS_MODULE
#  534|-> static EVP_RAND_CTX *rand_new_seed(OSSL_LIB_CTX *libctx)
#  535|   {
#  536|       EVP_RAND *rand;

Error: CLANG_WARNING: [#def2]
openssl-3.2.2-build/openssl-3.2.2/providers/implementations/kdfs/hkdf.c:326:9: warning[deadcode.DeadStores]: Value stored to 'any_valid' is never read
#  324|           size_t sz = kdf_hkdf_size(ctx);
#  325|   
#  326|->         any_valid = 1;
#  327|           if (sz == 0)
#  328|               return 0;

Error: CLANG_WARNING: [#def3]
openssl-3.2.2-build/openssl-3.2.2/providers/implementations/kdfs/hkdf.c:332:9: warning[deadcode.DeadStores]: Value stored to 'any_valid' is never read
#  330|       }
#  331|       if ((p = OSSL_PARAM_locate(params, OSSL_KDF_PARAM_INFO)) != NULL) {
#  332|->         any_valid = 1;
#  333|           if (ctx->info == NULL || ctx->info_len == 0) {
#  334|               p->return_size = 0;

Error: CLANG_WARNING: [#def4]
openssl-3.2.2-build/openssl-3.2.2/test/prov_config_test.c:89:32: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
#   87|           return 0;
#   88|   
#   89|->     full_path = OPENSSL_zalloc(strlen(module_path) + strlen(P_TEST_PATH) + 1);
#   90|       if (!TEST_ptr(full_path))
#   91|           return 0;

Scan Properties

analyzer-version-clang	18.1.7
analyzer-version-cppcheck	2.14.2
analyzer-version-gcc	14.1.1
analyzer-version-gcc-analyzer	14.1.1
analyzer-version-shellcheck	0.10.0
diffbase-analyzer-version-clang	18.1.7
diffbase-analyzer-version-cppcheck	2.14.2
diffbase-analyzer-version-gcc	14.1.1
diffbase-analyzer-version-gcc-analyzer	14.1.1
diffbase-analyzer-version-shellcheck	0.10.0
diffbase-enabled-plugins	clang, cppcheck, gcc, shellcheck
diffbase-exit-code	0
diffbase-host	ip-172-16-1-157.us-west-2.compute.internal
diffbase-mock-config	fedora-41-x86_64
diffbase-project-name	openssl-3.2.1-2.fc40
diffbase-store-results-to	/tmp/tmp2vs9slfn/openssl-3.2.1-2.fc40.tar.xz
diffbase-time-created	2024-07-03 16:25:23
diffbase-time-finished	2024-07-03 17:00:28
diffbase-tool	csmock
diffbase-tool-args	'/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmp2vs9slfn/openssl-3.2.1-2.fc40.tar.xz' '--gcc-analyze' '/tmp/tmp2vs9slfn/openssl-3.2.1-2.fc40.src.rpm'
diffbase-tool-version	csmock-3.5.3-1.el9
enabled-plugins	clang, cppcheck, gcc, shellcheck
exit-code	0
host	ip-172-16-1-157.us-west-2.compute.internal
mock-config	fedora-41-x86_64
project-name	openssl-3.2.2-3.fc41
store-results-to	/tmp/tmpuavh4xo8/openssl-3.2.2-3.fc41.tar.xz
time-created	2024-07-03 17:00:57
time-finished	2024-07-03 17:36:15
title	Newly introduced defects
tool	csmock
tool-args	'/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpuavh4xo8/openssl-3.2.2-3.fc41.tar.xz' '--gcc-analyze' '/tmp/tmpuavh4xo8/openssl-3.2.2-3.fc41.src.rpm'
tool-version	csmock-3.5.3-1.el9