Newly introduced defects
List of Defects
Error: GCC_ANALYZER_WARNING (CWE-476): [#def1]
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:477:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘last_tb’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/include/tcg/debug-assert.h:14:16: note: in definition of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/exec/translation-block.h:151:12: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:475:13: note: in expansion of macro ‘tcg_debug_assert’
# 475| tcg_debug_assert(!(tb_cflags(last_tb) & CF_PCREL));
# 476| assert(cc->set_pc);
# 477|-> cc->set_pc(cpu, last_tb->pc);
# 478| }
# 479| if (qemu_loglevel_mask(CPU_LOG_EXEC)) {
Error: GCC_ANALYZER_WARNING (CWE-457): [#def2]
qemu-9.0.0-build/qemu-9.0.0/block/export/fuse.c: scope_hint: In function ‘fuse_do_truncate’
qemu-9.0.0-build/qemu-9.0.0/block/export/fuse.c:480:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘blk_shared_perm’
# 478| if (add_resize_perm) {
# 479| /* Must succeed, because we are only giving up the RESIZE permission */
# 480|-> ret_check = blk_set_perm(exp->common.blk, blk_perm,
# 481| blk_shared_perm, &error_abort);
# 482| assert(ret_check == 0);
Error: GCC_ANALYZER_WARNING (CWE-457): [#def3]
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c: scope_hint: In function ‘preallocate_co’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:3295:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cur_bytes’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:4302:10: note: in expansion of macro ‘QEMU_IS_ALIGNED’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c: scope_hint: In function ‘preallocate_co’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
# 3293| }
# 3294|
# 3295|-> if (host_offset + cur_bytes > file_length) {
# 3296| if (mode == PREALLOC_MODE_METADATA) {
# 3297| mode = PREALLOC_MODE_OFF;
Error: GCC_ANALYZER_WARNING (CWE-457): [#def4]
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:68:14: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sn_tab’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:656:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/include/block/snapshot.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:657:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:60:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
# 66| }
# 67| for (i = 0; i < nb_sns; i++) {
# 68|-> sn = &sn_tab[i];
# 69| if (!strcmp(sn->name, name)) {
# 70| *sn_info = *sn;
Error: GCC_ANALYZER_WARNING (CWE-457): [#def5]
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:75:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sn_tab’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:656:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:657:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:60:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
# 73| }
# 74| }
# 75|-> g_free(sn_tab);
# 76| return ret;
# 77| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def6]
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_pwritev’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:2127:19: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cluster_offset’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_pwritev’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:26: included_from: Included from here.
# 2125| }
# 2126| } else {
# 2127|-> ret = vmdk_write_extent(extent, cluster_offset, offset_in_cluster,
# 2128| qiov, bytes_done, n_bytes, offset);
# 2129| if (ret) {
Error: GCC_ANALYZER_WARNING (CWE-457): [#def7]
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_co_check’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:2999:32: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cluster_offset’
# 2997| break;
# 2998| }
# 2999|-> if (cluster_offset >= extent_len) {
# 3000| fprintf(stderr,
# 3001| "ERROR: cluster offset for sector %"
Error: GCC_ANALYZER_WARNING (CWE-457): [#def8]
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c: scope_hint: In function ‘arm_setup_direct_kernel_boot’
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c:973:11: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘elf_entry’
# 971| }
# 972| }
# 973|-> entry = elf_entry;
# 974| if (kernel_size < 0) {
# 975| uint64_t loadaddr = info->loader_start + KERNEL_NOLOAD_ADDR;
Error: CLANG_WARNING: [#def9]
qemu-9.0.0-build/qemu-9.0.0/hw/block/virtio-blk.c:1574:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'vqs'
# 1572|
# 1573| if (!iothread_by_id(name)) {
# 1574|-> error_setg(errp, "IOThread \"%s\" object does not exist", name);
# 1575| return false;
# 1576| }
Error: GCC_ANALYZER_WARNING (CWE-476): [#def10]
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c: scope_hint: In function ‘add_amd_xgbe_fdt_node’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:401:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘intp’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:371:5: note: in expansion of macro ‘qemu_fdt_setprop_cells’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:371:5: note: in expansion of macro ‘qemu_fdt_setprop_cells’
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-core.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/sysbus.h:6: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/platform-bus.h:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:396:9: note: in expansion of macro ‘QLIST_FOREACH’
# 399| }
# 400| }
# 401|-> if (intp->flags & VFIO_IRQ_INFO_AUTOMASKED) {
# 402| irq_attr[3 * i + 2] = cpu_to_be32(GIC_FDT_IRQ_FLAGS_LEVEL_HI);
# 403| } else {
Error: GCC_ANALYZER_WARNING (CWE-457): [#def11]
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c: scope_hint: In function ‘sgl_from_gpa_ranges’
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:1023:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘hdr.rangecount’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:10: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c: scope_hint: In function ‘sgl_from_gpa_ranges’
# 1021| len -= sizeof(hdr);
# 1022|
# 1023|-> num = (len - hdr.rangecount * sizeof(vmbus_gpa_range)) / sizeof(uint64_t);
# 1024| if (num < 0) {
# 1025| return -EIO;
Error: CLANG_WARNING: [#def12]
qemu-9.0.0-build/qemu-9.0.0/hw/i386/vapic.c:465:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 463|
# 464| async_safe_run_on_cpu(cs, do_patch_instruction, RUN_ON_CPU_HOST_PTR(info));
# 465|-> }
# 466|
# 467| void vapic_report_tpr_access(DeviceState *dev, CPUState *cs, target_ulong ip,
Error: CLANG_WARNING: [#def13]
qemu-9.0.0-build/qemu-9.0.0/hw/intc/apic.c:706:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'deliver_bitmask'
# 704| foreach_apic(apic_iter, deliver_bitmask,
# 705| apic_startup(apic_iter, vector_num) );
# 706|-> return;
# 707| }
# 708|
Error: CLANG_WARNING: [#def14]
qemu-9.0.0-build/qemu-9.0.0/hw/intc/apic.c:902:5: warning[core.uninitialized.UndefReturn]: Undefined or garbage value returned to caller
# 900| apic_register_read(index, &val);
# 901|
# 902|-> return val;
# 903| }
# 904|
Error: CLANG_WARNING: [#def15]
qemu-9.0.0-build/qemu-9.0.0/hw/misc/applesmc.c:266:5: warning[unix.Malloc]: Use of memory after it is freed
# 264| def->data = data;
# 265|
# 266|-> QLIST_INSERT_HEAD(&s->data_def, def, node);
# 267| }
# 268|
Error: CLANG_WARNING: [#def16]
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:520:14: warning[deadcode.DeadStores]: Value stored to 'buf' during its initialization is never read
# 518| uint32_t tx_buf_addr, tx_buf_len;
# 519| uint16_t length = 0;
# 520|-> uint8_t *buf = tx_send_buffer;
# 521| uint32_t prev_buf_size = 0;
# 522| int csum = 0;
Error: CLANG_WARNING: [#def17]
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:535:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 533| NPCM_DMA_STATUS_TX_RUNNING_FETCHING_STATE);
# 534| if (gmac_read_tx_desc(desc_addr, &tx_desc)) {
# 535|-> qemu_log_mask(LOG_GUEST_ERROR,
# 536| "TX Descriptor @ 0x%x can't be read\n",
# 537| desc_addr);
Error: CLANG_WARNING: [#def18]
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:617:13: warning[deadcode.DeadStores]: Value stored to 'buf' is never read
# 615| qemu_send_packet(qemu_get_queue(gmac->nic), tx_send_buffer, length);
# 616| trace_npcm_gmac_packet_sent(DEVICE(gmac)->canonical_path, length);
# 617|-> buf = tx_send_buffer;
# 618| length = 0;
# 619| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def19]
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_write’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:350:19: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘table’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:27:5: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:301:9: note: in expansion of macro ‘phb_error’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_write’
# 348| if (!tptr) {
# 349| /* Special PESTA case */
# 350|-> if (table == IODA3_TBL_PESTA) {
# 351| phb->ioda_PEST_AB[idx] &= ~1;
# 352| phb->ioda_PEST_AB[idx] |= (val >> 63) & 1;
Error: CLANG_WARNING: [#def20]
qemu-9.0.0-build/qemu-9.0.0/hw/riscv/virt.c:776:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'intc_phandles'
# 774| }
# 775|
# 776|-> if (kvm_enabled() && virt_use_kvm_aia(s)) {
# 777| *irq_mmio_phandle = xplic_phandles[0];
# 778| *irq_virtio_phandle = xplic_phandles[0];
Error: CLANG_WARNING: [#def21]
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/vhost-scsi.c:218:5: warning[core.uninitialized.UndefReturn]: Undefined or garbage value returned to caller
# 216| }
# 217|
# 218|-> return ret;
# 219| }
# 220|
Error: CLANG_WARNING: [#def22]
qemu-9.0.0-build/qemu-9.0.0/hw/sparc/leon3.c:408:11: warning[unix.Malloc]: Potential leak of memory pointed to by 'reset_info'
# 406|
# 407| /* Allocate timers */
# 408|-> dev = qdev_new(TYPE_GRLIB_GPTIMER);
# 409| qdev_prop_set_uint32(dev, "nr-timers", LEON3_TIMER_COUNT);
# 410| qdev_prop_set_uint32(dev, "frequency", CPU_CLK);
Error: GCC_ANALYZER_WARNING (CWE-401): [#def23]
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/iommufd.c: scope_hint: In function ‘iommufd_cdev_getfd’
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/iommufd.c:132:11: warning[-Wanalyzer-malloc-leak]: leak of ‘opendir(g_strdup_printf("%s/vfio-dev", sysfs_path))’
# 130|
# 131| path = g_strdup_printf("%s/vfio-dev", sysfs_path);
# 132|-> dir = opendir(path);
# 133| if (!dir) {
# 134| error_setg_errno(errp, errno, "couldn't open directory %s", path);
Error: GCC_ANALYZER_WARNING (CWE-457): [#def24]
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c:359:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘v’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
# 357| goto error;
# 358| }
# 359|-> d->vendor_id = v;
# 360|
# 361| xen_host_pci_get_hex_value(d, "device", &v, errp);
Error: GCC_ANALYZER_WARNING (CWE-457): [#def25]
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c: scope_hint: In function ‘xen_map_ioreq_server’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c:698:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘bufioreq_pfn’
# 696|
# 697| if (state->buffered_io_page == NULL) {
# 698|-> trace_xen_map_ioreq_server_buffered_io_page(bufioreq_pfn);
# 699|
# 700| state->buffered_io_page = xenforeignmemory_map(xen_fmem, xen_domid,
Error: GCC_ANALYZER_WARNING (CWE-457): [#def26]
qemu-9.0.0-build/qemu-9.0.0/include/exec/log.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c: scope_hint: In function ‘mmu40x_get_physical_address’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/log.h:55:13: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*ctx.prot’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:22: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/registerfields.h:59:16: note: in definition of macro ‘FIELD_EX64’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
# 53| do { \
# 54| if (unlikely(qemu_loglevel_mask(MASK))) { \
# 55|-> qemu_log(FMT, ## __VA_ARGS__); \
# 56| } \
# 57| } while (0)
Error: GCC_ANALYZER_WARNING (CWE-457): [#def27]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c: scope_hint: In function ‘DoubleCPDO’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:99:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:24: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 97| /* dyadic opcodes */
# 98| case ADF_CODE:
# 99|-> fpa11->fpreg[Fd].fDouble = float64_add(rFn,rFm, &fpa11->fp_status);
# 100| break;
# 101|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def28]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:104:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 102| case MUF_CODE:
# 103| case FML_CODE:
# 104|-> fpa11->fpreg[Fd].fDouble = float64_mul(rFn,rFm, &fpa11->fp_status);
# 105| break;
# 106|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def29]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:108:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 106|
# 107| case SUF_CODE:
# 108|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFn,rFm, &fpa11->fp_status);
# 109| break;
# 110|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def30]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:112:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 110|
# 111| case RSF_CODE:
# 112|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFm,rFn, &fpa11->fp_status);
# 113| break;
# 114|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def31]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:117:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 115| case DVF_CODE:
# 116| case FDV_CODE:
# 117|-> fpa11->fpreg[Fd].fDouble = float64_div(rFn,rFm, &fpa11->fp_status);
# 118| break;
# 119|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def32]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:122:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 120| case RDF_CODE:
# 121| case FRD_CODE:
# 122|-> fpa11->fpreg[Fd].fDouble = float64_div(rFm,rFn, &fpa11->fp_status);
# 123| break;
# 124|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def33]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:136:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 134|
# 135| case RMF_CODE:
# 136|-> fpa11->fpreg[Fd].fDouble = float64_rem(rFn,rFm, &fpa11->fp_status);
# 137| break;
# 138|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def34]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:147:35: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 145| /* monadic opcodes */
# 146| case MVF_CODE:
# 147|-> fpa11->fpreg[Fd].fDouble = rFm;
# 148| break;
# 149|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def35]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:176:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 174| case RND_CODE:
# 175| case URD_CODE:
# 176|-> fpa11->fpreg[Fd].fDouble = float64_round_to_int(rFm, &fpa11->fp_status);
# 177| break;
# 178|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def36]
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:180:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 178|
# 179| case SQT_CODE:
# 180|-> fpa11->fpreg[Fd].fDouble = float64_sqrt(rFm, &fpa11->fp_status);
# 181| break;
# 182|
Error: CLANG_WARNING: [#def37]
qemu-9.0.0-build/qemu-9.0.0/migration/file.c:132:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'iocs'
# 130| object_unref(iocs[--i]);
# 131| }
# 132|-> return;
# 133| }
# 134|
Error: GCC_ANALYZER_WARNING (CWE-476): [#def38]
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘transport_supports_multi_channels’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:140:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘transport_supports_multi_channels’
# 138| static bool transport_supports_multi_channels(MigrationAddress *addr)
# 139| {
# 140|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 141| SocketAddress *saddr = &addr->u.socket;
# 142|
Error: GCC_ANALYZER_WARNING (CWE-476): [#def39]
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:160:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘migration_channels_and_transport_compatible’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘migration_channels_and_transport_compatible’
# 158| static bool transport_supports_seeking(MigrationAddress *addr)
# 159| {
# 160|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_FILE) {
# 161| return true;
# 162| }
Error: GCC_ANALYZER_WARNING (CWE-476): [#def40]
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qemu_start_incoming_migration’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:639:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:63: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:1811:33: note: in expansion of macro ‘MIGRATION_YANK_INSTANCE’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qemu_start_incoming_migration’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/main-loop.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:215:5: note: in expansion of macro ‘qatomic_cmpxchg__nocheck’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:1355:9: note: in expansion of macro ‘qatomic_cmpxchg’
# 637| MIGRATION_STATUS_SETUP);
# 638|
# 639|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 640| SocketAddress *saddr = &addr->u.socket;
# 641| if (saddr->type == SOCKET_ADDRESS_TYPE_INET ||
Error: GCC_ANALYZER_WARNING (CWE-476): [#def41]
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qmp_migrate’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:2094:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qmp_migrate’
# 2092| }
# 2093|
# 2094|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 2095| SocketAddress *saddr = &addr->u.socket;
# 2096| if (saddr->type == SOCKET_ADDRESS_TYPE_INET ||
Error: GCC_ANALYZER_WARNING (CWE-457): [#def42]
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c: scope_hint: In function ‘get_queued_page’
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:1873:20: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘~dirty’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:137:5: note: in expansion of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:83:36: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:3344:9: note: in expansion of macro ‘qemu_mutex_lock’
/usr/include/rpc/netdb.h:42: included_from: Included from here.
/usr/include/netdb.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:29: included_from: Included from here.
# 1871| }
# 1872|
# 1873|-> } while (block && !dirty);
# 1874|
# 1875| if (!block) {
Error: GCC_ANALYZER_WARNING (CWE-457): [#def43]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXEq.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def44]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:31: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def45]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXLe.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1674:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1672| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1673| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1674|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1675| if ( xPtr->exp < yPtr->exp ) return false;
# 1676| return le128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def46]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1674:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1672| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1673| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1674|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1675| if ( xPtr->exp < yPtr->exp ) return false;
# 1676| return le128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def47]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1680:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1678| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1679| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1680|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1681| if ( yPtr->exp < xPtr->exp ) return false;
# 1682| return le128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def48]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1680:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1678| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1679| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1680|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1681| if ( yPtr->exp < xPtr->exp ) return false;
# 1682| return le128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def49]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXLt.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1697:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1695| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1696| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1697|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1698| if ( xPtr->exp < yPtr->exp ) return false;
# 1699| return lt128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def50]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1697:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1695| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1696| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1697|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1698| if ( xPtr->exp < yPtr->exp ) return false;
# 1699| return lt128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def51]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1703:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1701| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1702| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1703|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1704| if ( yPtr->exp < xPtr->exp ) return false;
# 1705| return lt128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457): [#def52]
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1703:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1701| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1702| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1703|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1704| if ( yPtr->exp < xPtr->exp ) return false;
# 1705| return lt128( xPtr->sig, yPtr->sig );
Error: CLANG_WARNING: [#def53]
qemu-9.0.0-build/qemu-9.0.0/target/ppc/translate.c:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/internal.h:54:1: warning[core.BitwiseShift]: Right shift overflows the capacity of 'unsigned long'
# 52|
# 53| #if defined(TARGET_PPC64)
# 54|-> FUNC_MASK(MASK, target_ulong, 64, UINT64_MAX);
# 55| #else
# 56| FUNC_MASK(MASK, target_ulong, 32, UINT32_MAX);
Error: CLANG_WARNING: [#def54]
qemu-9.0.0-build/qemu-9.0.0/target/ppc/timebase_helper.c:424:9: warning[deadcode.DeadStores]: Value stored to 'tfmr' is never read
# 422| qemu_log_mask(LOG_GUEST_ERROR, "TFMR error: mtspr TFMR in TB_ERROR"
# 423| " state\n");
# 424|-> tfmr |= TFMR_FIRMWARE_CONTROL_ERROR;
# 425| return;
# 426| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def55]
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_sieh’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2803:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 2801| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 2802| if (ret_val) {
# 2803|-> *ret_val = rval >> 32;
# 2804| }
# 2805|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def56]
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_sip’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3013:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 3011| ret = rmw_sip64(env, csrno, &rval, new_val, wr_mask);
# 3012| if (ret_val) {
# 3013|-> *ret_val = rval;
# 3014| }
# 3015|
Error: GCC_ANALYZER_WARNING (CWE-457): [#def57]
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_siph’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3029:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 3027| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 3028| if (ret_val) {
# 3029|-> *ret_val = rval >> 32;
# 3030| }
# 3031|
Error: CPPCHECK_WARNING: [#def58]
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/stm32l4x5_exti-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING: [#def59]
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/stm32l4x5_gpio-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457): [#def60]
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c: scope_hint: In function ‘cursor_parse_xpm’
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c:54:34: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ctab[<unknown>]’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c:1: included_from: Included from here.
# 52| for (x = 0; x < height; x++, pixel++) {
# 53| idx = xpm[line][x];
# 54|-> c->data[pixel] = ctab[idx];
# 55| }
# 56| }
Error: GCC_ANALYZER_WARNING (CWE-457): [#def61]
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c: scope_hint: In function ‘hbitmap_iter_skip_words’
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:117:23: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*hbi.cur[i]’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:12: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c: scope_hint: In function ‘hbitmap_iter_skip_words’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:31: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:28: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:281:11: note: in expansion of macro ‘MIN’
# 115| i--;
# 116| pos >>= BITS_PER_LEVEL;
# 117|-> cur = hbi->cur[i] & hb->levels[i][pos];
# 118| } while (cur == 0);
# 119|
Scan Properties
| analyzer-version-clang | 18.1.7 |
| analyzer-version-cppcheck | 2.14.2 |
| analyzer-version-gcc | 14.1.1 |
| analyzer-version-gcc-analyzer | 14.1.1 |
| analyzer-version-shellcheck | 0.10.0 |
| diffbase-analyzer-version-clang | 18.1.7 |
| diffbase-analyzer-version-cppcheck | 2.14.2 |
| diffbase-analyzer-version-gcc | 14.1.1 |
| diffbase-analyzer-version-gcc-analyzer | 14.1.1 |
| diffbase-analyzer-version-shellcheck | 0.10.0 |
| diffbase-enabled-plugins | clang, cppcheck, gcc, shellcheck |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-53.us-west-2.compute.internal |
| diffbase-mock-config | fedora-41-x86_64 |
| diffbase-project-name | qemu-8.2.2-1.fc40 |
| diffbase-store-results-to | /tmp/tmpk1ym5gip/qemu-8.2.2-1.fc40.tar.xz |
| diffbase-time-created | 2024-07-03 17:37:39 |
| diffbase-time-finished | 2024-07-03 19:39:16 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpk1ym5gip/qemu-8.2.2-1.fc40.tar.xz' '--gcc-analyze' '/tmp/tmpk1ym5gip/qemu-8.2.2-1.fc40.src.rpm' |
| diffbase-tool-version | csmock-3.5.3-1.el9 |
| enabled-plugins | clang, cppcheck, gcc, shellcheck |
| exit-code | 0 |
| host | ip-172-16-1-53.us-west-2.compute.internal |
| mock-config | fedora-41-x86_64 |
| project-name | qemu-9.0.0-1.fc41 |
| store-results-to | /tmp/tmpvt86h3in/qemu-9.0.0-1.fc41.tar.xz |
| time-created | 2024-07-03 19:40:13 |
| time-finished | 2024-07-03 21:42:00 |
| title | Newly introduced defects |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-41-x86_64' '-t' 'cppcheck,gcc,clang,shellcheck' '-o' '/tmp/tmpvt86h3in/qemu-9.0.0-1.fc41.tar.xz' '--gcc-analyze' '/tmp/tmpvt86h3in/qemu-9.0.0-1.fc41.src.rpm' |
| tool-version | csmock-3.5.3-1.el9 |