Newly introduced findings

List of Findings

Error: GCC_ANALYZER_WARNING (CWE-835): [#def1]
glib2-2.83.0-build/glib-2.83.0/glib/gthread.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gasyncqueue.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/glib.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/gio/gcancellable.c:26: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/gio/gcancellable.c: scope_hint: In function ‘cancellable_source_dispose’
glib2-2.83.0-build/glib-2.83.0/gio/gcancellable.c:737:37: warning[-Wanalyzer-infinite-loop]: infinite loop
glib2-2.83.0-build/glib-2.83.0/glib/gatomic.h:114:29: note: in definition of macro ‘g_atomic_int_get’
glib2-2.83.0-build/glib-2.83.0/glib/gatomic.h:114:29: note: in definition of macro ‘g_atomic_int_get’
glib2-2.83.0-build/glib-2.83.0/glib/gatomic.h:114:29: note: in definition of macro ‘g_atomic_int_get’
#  735|   
#  736|             g_source_ref (source);
#  737|->           while (!g_atomic_int_get (&cancellable_source->cancelled_callback_called))
#  738|               ;
#  739|             g_source_unref (source);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def2]
glib2-2.83.0-build/glib-2.83.0/glib/gutf8.c: scope_hint: In function ‘g_utf8_make_valid’
glib2-2.83.0-build/glib-2.83.0/glib/gutf8.c:2137:29: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘invalid’
glib2-2.83.0-build/glib-2.83.0/redhat-linux-build/glib/glibconfig.h:9: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gtypes.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gquark.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gerror.h:30: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gconvert.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gutf8.c:36: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gmacros.h:1249:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
glib2-2.83.0-build/glib-2.83.0/glib/gmacros.h:1250:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
glib2-2.83.0-build/glib-2.83.0/glib/gmessages.h:664:9: note: in expansion of macro ‘G_LIKELY’
glib2-2.83.0-build/glib-2.83.0/glib/gutf8.c:2124:3: note: in expansion of macro ‘g_return_val_if_fail’
# 2135|         if (g_utf8_validate (remainder, remaining_bytes, &invalid)) 
# 2136|   	break;
# 2137|->       valid_bytes = invalid - remainder;
# 2138|       
# 2139|         if (string == NULL) 

Error: GCC_ANALYZER_WARNING (CWE-476): [#def3]
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c: scope_hint: In function ‘g_get_user_database_entry’
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c:748:74: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘config_dir’
glib2-2.83.0-build/glib-2.83.0/glib/gasyncqueue.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/glib.h:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/glib-private.h:23: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c:62: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c:658:7: note: in expansion of macro ‘g_once_init_enter_pointer’
glib2-2.83.0-build/glib-2.83.0/glib/gstring.h:37: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gvariant.h:31: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gmessages.h:38: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gtestutils.h:28: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gutilsprivate.h:27: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c:34: included_from: Included from here.
glib2-2.83.0-build/glib-2.83.0/glib/gstrfuncs.h:324:38: note: in definition of macro ‘g_strdup’
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c:747:37: note: in expansion of macro ‘g_strdup’
glib2-2.83.0-build/glib-2.83.0/glib/gutils.c: scope_hint: In function ‘g_get_user_database_entry’
#  746|                   name_parts = g_strsplit (gecos_fields[0], "&", 0);
#  747|                   uppercase_pw_name = g_strdup (pw->pw_name);
#  748|->                 uppercase_pw_name[0] = g_ascii_toupper (uppercase_pw_name[0]);
#  749|                   e.real_name = g_strjoinv (uppercase_pw_name, name_parts);
#  750|                   g_strfreev (gecos_fields);

Error: CPPCHECK_WARNING (CWE-457): [#def4]
glib2-2.83.0-build/glib-2.83.0/glib/gvariant.c:3826: error[legacyUninitvar]: Uninitialized variable: type
# 3824|       children = g_renew (GVariant *, children, GVSB(builder)->offset);
# 3825|   
# 3826|->   value = g_variant_new_from_children (type,
# 3827|                                          children,
# 3828|                                          GVSB(builder)->offset,

Scan Properties

analyzer-version-clippy	1.82.0
analyzer-version-cppcheck	2.16.0
analyzer-version-gcc	14.2.1
analyzer-version-gcc-analyzer	15.0.0
analyzer-version-shellcheck	0.10.0
analyzer-version-unicontrol	0.0.2
diffbase-analyzer-version-clippy	1.82.0
diffbase-analyzer-version-cppcheck	2.16.0
diffbase-analyzer-version-gcc	14.2.1
diffbase-analyzer-version-gcc-analyzer	15.0.0
diffbase-analyzer-version-shellcheck	0.10.0
diffbase-analyzer-version-unicontrol	0.0.2
diffbase-enabled-plugins	clippy, cppcheck, gcc, shellcheck, unicontrol
diffbase-exit-code	0
diffbase-host	ip-172-16-1-98.us-west-2.compute.internal
diffbase-mock-config	fedora-rawhide-gcc-latest-x86_64
diffbase-project-name	glib2-2.82.1-1.fc41
diffbase-store-results-to	/tmp/tmpkra0gv2b/glib2-2.82.1-1.fc41.tar.xz
diffbase-time-created	2024-11-12 23:54:01
diffbase-time-finished	2024-11-13 00:06:47
diffbase-tool	csmock
diffbase-tool-args	'/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'clippy,cppcheck,gcc,unicontrol,shellcheck' '-o' '/tmp/tmpkra0gv2b/glib2-2.82.1-1.fc41.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpkra0gv2b/glib2-2.82.1-1.fc41.src.rpm'
diffbase-tool-version	csmock-3.7.1.20241107.094801.gb3f0f26.pr_192-1.el9
enabled-plugins	clippy, cppcheck, gcc, shellcheck, unicontrol
exit-code	0
host	ip-172-16-1-98.us-west-2.compute.internal
mock-config	fedora-rawhide-gcc-latest-x86_64
project-name	glib2-2.83.0-1.fc42
store-results-to	/tmp/tmptlnkuxzf/glib2-2.83.0-1.fc42.tar.xz
time-created	2024-11-13 00:07:02
time-finished	2024-11-13 00:19:40
title	Newly introduced findings
tool	csmock
tool-args	'/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'clippy,cppcheck,gcc,unicontrol,shellcheck' '-o' '/tmp/tmptlnkuxzf/glib2-2.83.0-1.fc42.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmptlnkuxzf/glib2-2.83.0-1.fc42.src.rpm'
tool-version	csmock-3.7.1.20241107.094801.gb3f0f26.pr_192-1.el9