flatpak-1.17.2-1.fc44

List of Findings

Error: GCC_ANALYZER_WARNING (CWE-476): [#def1]
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:90:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘doc_id’
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:48:1: enter_function: entry to ‘flatpak_builtin_document_unexport’
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:56:20: release_memory: ‘doc_id’ is NULL
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:61:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:66:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:66:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:69:6: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:69:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:72:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:75:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:78:15: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:82:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:85:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:85:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:86:14: call_function: inlined call to ‘g_strdup_inline’ from ‘flatpak_builtin_document_unexport’
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:90:7: release_memory: ‘doc_id’ is NULL
flatpak-1.17.2/app/flatpak-builtins-document-unexport.c:90:7: danger: dereference of NULL ‘doc_id’
#   88|       return FALSE;
#   89|   
#   90|->   if (strcmp (doc_id, "") == 0)
#   91|       {
#   92|         g_print (_("Not exported\n"));

Error: GCC_ANALYZER_WARNING (CWE-688): [#def2]
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: warning[-Wanalyzer-null-argument]: use of NULL ‘formatted_timestamp’ where non-null expected
flatpak-1.17.2/app/flatpak-builtins-info.c:84:1: enter_function: entry to ‘flatpak_builtin_info’
flatpak-1.17.2/app/flatpak-builtins-info.c:109:20: release_memory: ‘formatted_size’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:119:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:122:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:122:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:124:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:129:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:134:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:140:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:143:17: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:144:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:147:12: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:148:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:151:12: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:168:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:168:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:177:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:179:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:180:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:195:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:196:18: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:198:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:217:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:225:10: branch_false: following ‘false’ branch (when ‘collection_id’ is NULL)...
flatpak-1.17.2/app/flatpak-builtins-info.c:227:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:234:11: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:234:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:236:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:236:10: branch_false: following ‘false’ branch (when ‘subject’ is NULL)...
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: danger: argument 2 (‘latest’) NULL where non-null expected
#  236|         if (subject)
#  237|           len = MAX (len, g_utf8_strlen (_("Subject:"), -1));
#  238|->       if (strcmp (commit, latest) != 0)
#  239|           {
#  240|             len = MAX (len, g_utf8_strlen (_("Active commit:"), -1));

Error: GCC_ANALYZER_WARNING (CWE-688): [#def3]
flatpak-1.17.2/app/flatpak-builtins-info.c:292:11: warning[-Wanalyzer-null-argument]: use of NULL ‘formatted_timestamp’ where non-null expected
flatpak-1.17.2/app/flatpak-builtins-info.c:84:1: enter_function: entry to ‘flatpak_builtin_info’
flatpak-1.17.2/app/flatpak-builtins-info.c:109:20: release_memory: ‘formatted_size’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:119:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:122:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:122:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:124:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:129:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:134:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:140:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:143:17: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:144:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:147:12: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:148:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:151:12: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:168:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:168:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:177:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:179:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:180:24: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:195:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:196:18: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:198:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:217:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:225:10: branch_false: following ‘false’ branch (when ‘collection_id’ is NULL)...
flatpak-1.17.2/app/flatpak-builtins-info.c:227:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:234:11: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:234:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:236:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:236:10: branch_false: following ‘false’ branch (when ‘subject’ is NULL)...
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:238:11: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:245:11: release_memory: ‘formatted_timestamp’ is NULL
flatpak-1.17.2/app/flatpak-builtins-info.c:245:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:247:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:255:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:257:15: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:268:10: branch_false: following ‘false’ branch (when ‘collection_id’ is NULL)...
flatpak-1.17.2/app/flatpak-builtins-info.c:270:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:272:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:281:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:281:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-info.c:290:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-info.c:292:11: danger: argument 2 (‘latest’) NULL where non-null expected
#  290|         g_print ("\n");
#  291|   
#  292|->       if (strcmp (commit, latest) != 0)
#  293|           {
#  294|             g_autofree char *formatted_commit = ellipsize_string (commit, width);

Error: COMPILER_WARNING (CWE-704): [#def4]
flatpak-1.17.2/app/flatpak-builtins-utils.c: scope_hint: In function ‘find_column’
flatpak-1.17.2/app/flatpak-builtins-utils.c:811:13: warning[-Wdiscarded-qualifiers]: initialization discards ‘const’ qualifier from pointer target type
#  811 |   char *p = strchr (name, ':');
#      |             ^~~~~~
#  809|     int i;
#  810|     int candidate;
#  811|->   char *p = strchr (name, ':');
#  812|   
#  813|     candidate = -1;

Error: COMPILER_WARNING (CWE-704): [#def5]
flatpak-1.17.2/app/flatpak-builtins-utils.c:811:13: warning[-Wdiscarded-qualifiers]: initialization discards ‘const’ qualifier from pointer target type
#  809|     int i;
#  810|     int candidate;
#  811|->   char *p = strchr (name, ':');
#  812|   
#  813|     candidate = -1;

Error: GCC_ANALYZER_WARNING (CWE-688): [#def6]
flatpak-1.17.2/app/flatpak-builtins-utils.c:1016:17: warning[-Wanalyzer-null-argument]: use of NULL ‘ret’ where non-null expected
flatpak-1.17.2/app/flatpak-builtins-utils.c:995:1: enter_function: entry to ‘ellipsize_string_full’
flatpak-1.17.2/app/flatpak-builtins-utils.c:997:20: release_memory: ‘ret’ is NULL
flatpak-1.17.2/app/flatpak-builtins-utils.c:999:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-utils.c:1016:17: danger: argument 1 (‘<unknown>’) NULL where non-null expected
# 1014|   
# 1015|         p = ret;
# 1016|->       q = ret + strlen (ret);
# 1017|   
# 1018|         for (i = 0; i < l1; i++)

Error: GCC_ANALYZER_WARNING (CWE-404): [#def7]
flatpak-1.17.2/app/flatpak-complete.c:83:20: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/app/flatpak-complete.c:508:1: enter_function: entry to ‘flatpak_complete_context’
flatpak-1.17.2/app/flatpak-complete.c:510:3: call_function: calling ‘flatpak_complete_options’ from ‘flatpak_complete_context’
#   81|     const char *shell_cur;
#   82|     const char *shell_cur_end;
#   83|->   g_autofree char *string = NULL;
#   84|   
#   85|     g_return_if_fail (format != NULL);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def8]
flatpak-1.17.2/app/flatpak-main.c:39:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘subject’
flatpak-1.17.2/app/flatpak-main.c:668:1: enter_function: entry to ‘flatpak_run’
flatpak-1.17.2/app/flatpak-main.c:681:13: call_function: calling ‘extract_command’ from ‘flatpak_run’
flatpak-1.17.2/app/flatpak-main.c:681:13: return_function: returning to ‘flatpak_run’ from ‘extract_command’
flatpak-1.17.2/app/flatpak-main.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:826:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:839:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-main.c:840:7: branch_true: ...to here
flatpak-1.17.2/app/flatpak-main.c:839:7: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-main.c:841:7: branch_true: ...to here
flatpak-1.17.2/app/flatpak-main.c:839:7: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-main.c:842:7: branch_true: ...to here
flatpak-1.17.2/app/flatpak-main.c:839:7: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-main.c:843:20: branch_true: ...to here
flatpak-1.17.2/app/flatpak-main.c:843:20: call_function: calling ‘install_polkit_agent’ from ‘flatpak_run’
#   37|   /* Work with polkit before and after autoptr support was added */
#   38|   typedef PolkitSubject AutoPolkitSubject;
#   39|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (AutoPolkitSubject, g_object_unref)
#   40|   #endif
#   41|   

Error: CPPCHECK_WARNING (CWE-457): [#def9]
flatpak-1.17.2/app/flatpak-main.c:469: error[legacyUninitvar]: Uninitialized variable: dir
#  467|               g_assert_not_reached ();
#  468|   
#  469|->           g_ptr_array_add (dirs, dir);
#  470|           }
#  471|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def10]
flatpak-1.17.2/app/flatpak-main.c:662:6: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘polkit_agent’
flatpak-1.17.2/app/flatpak-main.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:826:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:831:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:832:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:831:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:833:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:831:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:834:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:831:7: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-main.c:839:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-main.c:846:7: throw: if ‘g_strcmp0’ throws an exception...
flatpak-1.17.2/app/flatpak-main.c:679:62: call_function: inlined call to ‘uninstall_polkit_agent’ from ‘flatpak_run’
#  660|   {
#  661|   #ifdef USE_SYSTEM_HELPER
#  662|->   if (*agent)
#  663|       polkit_agent_listener_unregister (*agent);
#  664|   #endif

Error: GCC_ANALYZER_WARNING (CWE-457): [#def11]
flatpak-1.17.2/app/flatpak-quiet-transaction.h:28:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘self’
flatpak-1.17.2/app/flatpak-quiet-transaction.c:311:18: throw: if ‘flatpak_installation_new_for_dir’ throws an exception...
flatpak-1.17.2/app/flatpak-quiet-transaction.c:308:38: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakQuietTransaction’ from ‘flatpak_quiet_transaction_new’
#   26|   
#   27|   #define FLATPAK_TYPE_QUIET_TRANSACTION flatpak_quiet_transaction_get_type ()
#   28|-> G_DECLARE_FINAL_TYPE (FlatpakQuietTransaction, flatpak_quiet_transaction, FLATPAK, QUIET_TRANSACTION, FlatpakTransaction)
#   29|   
#   30|   FlatpakTransaction * flatpak_quiet_transaction_new (FlatpakDir  * dir,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def12]
flatpak-1.17.2/app/flatpak-table-printer.h:105:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘printer’
flatpak-1.17.2/app/flatpak-builtins-document-list.c:171:1: enter_function: entry to ‘flatpak_builtin_document_list’
flatpak-1.17.2/app/flatpak-builtins-document-list.c:185:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-list.c:190:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-list.c:190:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-list.c:193:6: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-list.c:193:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-list.c:196:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-list.c:197:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-document-list.c:200:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-document-list.c:200:10: call_function: calling ‘print_documents’ from ‘flatpak_builtin_document_list’
#  103|   
#  104|   
#  105|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakTablePrinter, flatpak_table_printer_free)
#  106|   
#  107|   #endif /* __FLATPAK_TABLE_PRINTER_H__ */

Error: COMPILER_WARNING (CWE-704): [#def13]
flatpak-1.17.2/app/flatpak-tty-utils.c: scope_hint: In function ‘parse_range’
flatpak-1.17.2/app/flatpak-tty-utils.c:260:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
#  260 |   p = strchr (s, '-');
#      |     ^
#  258|     char *p;
#  259|   
#  260|->   p = strchr (s, '-');
#  261|     if (!p)
#  262|       return FALSE;

Error: COMPILER_WARNING (CWE-704): [#def14]
flatpak-1.17.2/app/flatpak-tty-utils.c:260:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
#  258|     char *p;
#  259|   
#  260|->   p = strchr (s, '-');
#  261|     if (!p)
#  262|       return FALSE;

Error: GCC_ANALYZER_WARNING (CWE-404): [#def15]
flatpak-1.17.2/app/flatpak-tty-utils.c:386:20: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/app/flatpak-tty-utils.c:389:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/app/flatpak-tty-utils.c:390:7: throw: if ‘g_strdup_vprintf’ throws an exception...
flatpak-1.17.2/app/flatpak-tty-utils.c:386:20: danger: missing call to ‘va_end’ to match ‘va_start’ at [(1)](sarif:/runs/0/results/5/codeFlows/0/threadFlows/0/locations/0)
#  384|   {
#  385|     va_list var_args;
#  386|->   g_autofree char *s = NULL;
#  387|     int i;
#  388|   

Error: GCC_ANALYZER_WARNING (CWE-688): [#def16]
flatpak-1.17.2/common/flatpak-appdata.c:298:7: warning[-Wanalyzer-null-argument]: use of NULL ‘parent’ where non-null expected
flatpak-1.17.2/common/flatpak-appdata.c:282:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-appdata.c:285:3: branch_false: ...to here
flatpak-1.17.2/common/flatpak-appdata.c:285:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-appdata.c:287:15: branch_true: ...to here
flatpak-1.17.2/common/flatpak-appdata.c:289:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-appdata.c:297:7: branch_false: ...to here
flatpak-1.17.2/common/flatpak-appdata.c:297:6: branch_true: following ‘true’ branch (when the strings are equal)...
flatpak-1.17.2/common/flatpak-appdata.c:298:7: branch_true: ...to here
flatpak-1.17.2/common/flatpak-appdata.c:298:7: danger: argument 1 (‘parent’) NULL where non-null expected
#  296|     /* avoid picking up <id> elements from e.g. <provides> */
#  297|     if (g_str_equal (element_name, "id") &&
#  298|->       g_str_equal (parent, "component"))
#  299|       {
#  300|         component->id = g_steal_pointer (&text);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def17]
flatpak-1.17.2/common/flatpak-auth-private.h:43:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘request’
flatpak-1.17.2/tests/test-authenticator.c:179:1: enter_function: entry to ‘handle_request_ref_tokens’
flatpak-1.17.2/tests/test-authenticator.c:211:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/test-authenticator.c:213:7: branch_true: ...to here
flatpak-1.17.2/tests/test-authenticator.c:195:24: call_function: inlined call to ‘glib_autoptr_cleanup_GPtrArray’ from ‘handle_request_ref_tokens’
flatpak-1.17.2/tests/test-authenticator.c:193:20: branch_false: ...to here
flatpak-1.17.2/tests/test-authenticator.c:193:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_request_ref_tokens’
flatpak-1.17.2/tests/test-authenticator.c:192:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_request_ref_tokens’
flatpak-1.17.2/tests/test-authenticator.c:191:46: call_function: inlined call to ‘glib_autoptr_cleanup_AutoFlatpakAuthenticatorRequest’ from ‘handle_request_ref_tokens’
#   41|   
#   42|   typedef FlatpakAuthenticatorRequest AutoFlatpakAuthenticatorRequest;
#   43|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (AutoFlatpakAuthenticatorRequest, g_object_unref)
#   44|   
#   45|   FlatpakAuthenticator *       flatpak_auth_new_for_remote            (FlatpakDir                   *dir,

Error: GCC_ANALYZER_WARNING (CWE-404): [#def18]
flatpak-1.17.2/common/flatpak-bwrap.c:114:3: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/common/flatpak-bwrap.c:244:1: enter_function: entry to ‘flatpak_bwrap_add_args_data_fd’
flatpak-1.17.2/common/flatpak-bwrap.c:252:3: call_function: calling ‘flatpak_bwrap_add_args’ from ‘flatpak_bwrap_add_args_data_fd’
#  112|   flatpak_bwrap_add_arg (FlatpakBwrap *bwrap, const char *arg)
#  113|   {
#  114|->   g_ptr_array_add (bwrap->argv, g_strdup (arg));
#  115|   }
#  116|   

Error: GCC_ANALYZER_WARNING (CWE-404): [#def19]
flatpak-1.17.2/common/flatpak-bwrap.c:155:33: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/common/flatpak-bwrap.c:454:1: enter_function: entry to ‘flatpak_bwrap_populate_runtime_dir’
flatpak-1.17.2/common/flatpak-bwrap.c:457:6: branch_false: following ‘false’ branch (when ‘shared_xdg_runtime_dir’ is NULL)...
flatpak-1.17.2/common/flatpak-bwrap.c:466:7: branch_false: ...to here
flatpak-1.17.2/common/flatpak-bwrap.c:468:7: call_function: calling ‘flatpak_bwrap_add_arg_printf’ from ‘flatpak_bwrap_populate_runtime_dir’
#  153|   
#  154|     va_start (args, format);
#  155|->   g_ptr_array_add (bwrap->argv, g_strdup_vprintf (format, args));
#  156|     va_end (args);
#  157|   }

Error: GCC_ANALYZER_WARNING (CWE-457): [#def20]
flatpak-1.17.2/common/flatpak-context-private.h:194:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘<unknown>’
flatpak-1.17.2/portal/flatpak-portal.c:2562:17: branch_true: following ‘true’ branch (when ‘l’ is non-NULL)...
flatpak-1.17.2/portal/flatpak-portal.c:2564:36: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:2574:51: throw: if ‘flatpak_context_new’ throws an exception...
flatpak-1.17.2/portal/flatpak-portal.c:2573:37: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakContext’ from ‘transaction_ready’
#  192|                                          GError **error);
#  193|   
#  194|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakContext, flatpak_context_free)
#  195|   
#  196|   GFile *flatpak_get_user_base_dir_location (void);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def21]
flatpak-1.17.2/common/flatpak-context-private.h:194:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘arg_context’
flatpak-1.17.2/app/flatpak-builtins-override.c:48:1: enter_function: entry to ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:57:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:56:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakContext’ from ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:55:23: call_function: inlined call to ‘glib_autoptr_cleanup_GKeyFile’ from ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:53:24: call_function: inlined call to ‘glib_autoptr_cleanup_GPtrArray’ from ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:52:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakContext’ from ‘flatpak_builtin_override’
#  192|                                          GError **error);
#  193|   
#  194|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakContext, flatpak_context_free)
#  195|   
#  196|   GFile *flatpak_get_user_base_dir_location (void);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def22]
flatpak-1.17.2/common/flatpak-context-private.h:194:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘overrides’
flatpak-1.17.2/app/flatpak-builtins-override.c:48:1: enter_function: entry to ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:59:13: throw: if ‘g_option_context_new’ throws an exception...
flatpak-1.17.2/app/flatpak-builtins-override.c:57:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_builtin_override’
flatpak-1.17.2/app/flatpak-builtins-override.c:56:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakContext’ from ‘flatpak_builtin_override’
#  192|                                          GError **error);
#  193|   
#  194|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakContext, flatpak_context_free)
#  195|   
#  196|   GFile *flatpak_get_user_base_dir_location (void);

Error: COMPILER_WARNING (CWE-704): [#def23]
flatpak-1.17.2/common/flatpak-context.c: scope_hint: In function ‘get_xdg_dir_from_string’
flatpak-1.17.2/common/flatpak-context.c:1553:9: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 1553 |   slash = strchr (filesystem, '/');
#      |         ^
# 1551|     gsize len;
# 1552|   
# 1553|->   slash = strchr (filesystem, '/');
# 1554|   
# 1555|     if (slash)

Error: COMPILER_WARNING (CWE-704): [#def24]
flatpak-1.17.2/common/flatpak-context.c:1553:9: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 1551|     gsize len;
# 1552|   
# 1553|->   slash = strchr (filesystem, '/');
# 1554|   
# 1555|     if (slash)

Error: COMPILER_WARNING (CWE-704): [#def25]
flatpak-1.17.2/common/flatpak-context.c: scope_hint: In function ‘get_xdg_user_dir_from_string’
flatpak-1.17.2/common/flatpak-context.c:1587:9: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 1587 |   slash = strchr (filesystem, '/');
#      |         ^
# 1585|     const char *dir_out = NULL;
# 1586|   
# 1587|->   slash = strchr (filesystem, '/');
# 1588|   
# 1589|     if (slash)

Error: COMPILER_WARNING (CWE-704): [#def26]
flatpak-1.17.2/common/flatpak-context.c:1587:9: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 1585|     const char *dir_out = NULL;
# 1586|   
# 1587|->   slash = strchr (filesystem, '/');
# 1588|   
# 1589|     if (slash)

Error: COMPILER_WARNING (CWE-704): [#def27]
flatpak-1.17.2/common/flatpak-context.c: scope_hint: In function ‘option_add_generic_policy_cb’
flatpak-1.17.2/common/flatpak-context.c:2588:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 2588 |   t = strchr (value, '=');
#      |     ^
# 2586|     const char *policy_value;
# 2587|   
# 2588|->   t = strchr (value, '=');
# 2589|     if (t == NULL)
# 2590|       {

Error: COMPILER_WARNING (CWE-704): [#def28]
flatpak-1.17.2/common/flatpak-context.c:2588:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 2586|     const char *policy_value;
# 2587|   
# 2588|->   t = strchr (value, '=');
# 2589|     if (t == NULL)
# 2590|       {

Error: COMPILER_WARNING (CWE-704): [#def29]
flatpak-1.17.2/common/flatpak-context.c: scope_hint: In function ‘option_remove_generic_policy_cb’
flatpak-1.17.2/common/flatpak-context.c:2628:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 2628 |   t = strchr (value, '=');
#      |     ^
# 2626|     g_autofree char *extended_value = NULL;
# 2627|   
# 2628|->   t = strchr (value, '=');
# 2629|     if (t == NULL)
# 2630|       {

Error: COMPILER_WARNING (CWE-704): [#def30]
flatpak-1.17.2/common/flatpak-context.c:2628:5: warning[-Wdiscarded-qualifiers]: assignment discards ‘const’ qualifier from pointer target type
# 2626|     g_autofree char *extended_value = NULL;
# 2627|   
# 2628|->   t = strchr (value, '=');
# 2629|     if (t == NULL)
# 2630|       {

Error: GCC_ANALYZER_WARNING (CWE-401): [#def31]
flatpak-1.17.2/common/flatpak-context.c:3830:28: warning[-Wanalyzer-malloc-leak]: leak of ‘opendir("/")’
flatpak-1.17.2/common/flatpak-context.c:3814:6: branch_false: following ‘false’ branch (when ‘xdg_dirs_conf_out’ is NULL)...
flatpak-1.17.2/common/flatpak-context.c:3817:13: branch_false: ...to here
flatpak-1.17.2/common/flatpak-context.c:3818:6: branch_true: following ‘true’ branch (when ‘fs_mode != 0’)...
flatpak-1.17.2/common/flatpak-context.c:3823:7: branch_true: ...to here
flatpak-1.17.2/common/flatpak-context.c:3827:13: acquire_memory: allocated here
flatpak-1.17.2/common/flatpak-context.c:3828:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-context.c:3828:10: branch_true: ...to here
flatpak-1.17.2/common/flatpak-context.c:3830:28: throw: if ‘readdir’ throws an exception...
flatpak-1.17.2/common/flatpak-context.c:3830:28: danger: ‘opendir("/")’ leaks here; was allocated at [(5)](sarif:/runs/0/results/25/codeFlows/0/threadFlows/0/locations/4)
# 3828|         if (dir != NULL)
# 3829|           {
# 3830|->           while ((dirent = readdir (dir)))
# 3831|               {
# 3832|                 g_autofree char *path = NULL;

Error: GCC_ANALYZER_WARNING (CWE-457): [#def32]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘dir_clone’
flatpak-1.17.2/common/flatpak-installation.c:2587:1: enter_function: entry to ‘flatpak_installation_update_appstream_sync’
flatpak-1.17.2/common/flatpak-installation.c:2594:10: call_function: calling ‘flatpak_installation_update_appstream_full_sync’ from ‘flatpak_installation_update_appstream_sync’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def33]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘dir’
flatpak-1.17.2/common/flatpak-installation.c:2862:31: throw: if ‘g_ptr_array_new_with_free_func’ throws an exception...
flatpak-1.17.2/common/flatpak-installation.c:2860:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘flatpak_installation_list_remote_related_refs_for_installed_sync’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def34]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘runtime_dir’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:168:1: enter_function: entry to ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:204:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:203:23: call_function: inlined call to ‘glib_autoptr_cleanup_GKeyFile’ from ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:199:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘flatpak_builtin_build_init’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def35]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sdk_dir’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:203:33: throw: if ‘g_key_file_new’ throws an exception...
flatpak-1.17.2/app/flatpak-builtins-build-init.c:198:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘flatpak_builtin_build_init’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def36]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘system_dir’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:488:1: enter_function: entry to ‘flatpak_complete_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:496:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-init.c:500:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-init.c:531:37: throw: if ‘flatpak_dir_find_installed_refs’ throws an exception...
flatpak-1.17.2/app/flatpak-builtins-build-init.c:530:27: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_complete_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:492:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘flatpak_complete_build_init’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def37]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘system’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:994:1: enter_function: entry to ‘handle_configure_remote’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1004:32: throw: if ‘g_key_file_new’ throws an exception...
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1003:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘handle_configure_remote’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1002:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘handle_configure_remote’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def38]
flatpak-1.17.2/common/flatpak-dir-private.h:184:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘user_dir’
flatpak-1.17.2/common/flatpak-dir-utils.c:521:1: enter_function: entry to ‘flatpak_list_extensions’
flatpak-1.17.2/common/flatpak-dir-utils.c:535:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-dir-utils.c:539:11: branch_true: ...to here
flatpak-1.17.2/common/flatpak-dir-utils.c:564:19: call_function: calling ‘add_extension’ from ‘flatpak_list_extensions’
#  182|   
#  183|   
#  184|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def39]
flatpak-1.17.2/common/flatpak-dir-private.h:185:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘runtime_deploy’
flatpak-1.17.2/app/flatpak-builtins-run.c:98:1: enter_function: entry to ‘flatpak_builtin_run’
flatpak-1.17.2/app/flatpak-builtins-run.c:137:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:144:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:159:6: branch_false: following ‘false’ branch (when ‘rest_argc != 0’)...
flatpak-1.17.2/app/flatpak-builtins-run.c:163:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:163:3: branch_true: following ‘true’ branch (when ‘rest_argv_start != 0’)...
flatpak-1.17.2/app/flatpak-builtins-run.c:164:14: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:166:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:171:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:183:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:204:25: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:238:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:243:26: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:245:14: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:248:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:248:11: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:249:25: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:261:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-run.c:277:21: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:204:25: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_builtin_run’
flatpak-1.17.2/app/flatpak-builtins-run.c:203:32: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDeploy’ from ‘flatpak_builtin_run’
#  183|   
#  184|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)
#  187|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRemoteState, flatpak_remote_state_unref)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def40]
flatpak-1.17.2/common/flatpak-dir-private.h:185:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sdk_deploy’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:168:1: enter_function: entry to ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:190:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:189:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘flatpak_builtin_build_init’
flatpak-1.17.2/app/flatpak-builtins-build-init.c:183:28: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDeploy’ from ‘flatpak_builtin_build_init’
#  183|   
#  184|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDir, g_object_unref)
#  185|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)
#  187|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRemoteState, flatpak_remote_state_unref)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def41]
flatpak-1.17.2/common/flatpak-dir-private.h:187:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘state’
flatpak-1.17.2/common/flatpak-installation.c:2854:1: enter_function: entry to ‘flatpak_installation_list_remote_related_refs_for_installed_sync’
flatpak-1.17.2/common/flatpak-installation.c:2867:9: call_function: inlined call to ‘flatpak_installation_get_dir’ from ‘flatpak_installation_list_remote_related_refs_for_installed_sync’
flatpak-1.17.2/common/flatpak-installation.c:2863:33: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakRemoteState’ from ‘flatpak_installation_list_remote_related_refs_for_installed_sync’
#  185|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDeploy, g_object_unref)
#  186|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRelated, flatpak_related_free)
#  187|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRemoteState, flatpak_remote_state_unref)
#  188|   
#  189|   typedef enum {

Error: CPPCHECK_WARNING (CWE-457): [#def42]
flatpak-1.17.2/common/flatpak-dir.c:1012: error[legacyUninitvar]: Uninitialized variable: meta
# 1010|       g_assert_not_reached ();
# 1011|   
# 1012|->   return meta;
# 1013|   }
# 1014|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def43]
flatpak-1.17.2/common/flatpak-docker-reference-private.h:18:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘docker_reference’
flatpak-1.17.2/common/flatpak-image-source.c:236:1: enter_function: entry to ‘flatpak_image_source_new_for_location’
flatpak-1.17.2/common/flatpak-image-source.c:240:6: branch_false: following ‘false’ branch (when ‘__result == 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:249:12: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:249:11: branch_false: following ‘false’ branch (when ‘__result == 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:263:12: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:263:11: branch_true: following ‘true’ branch (when ‘__result != 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:267:24: branch_true: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:270:12: branch_true: following ‘true’ branch (when ‘location’ is NULL)...
flatpak-1.17.2/common/flatpak-image-source.c:270:12: branch_true: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:270:12: throw: if ‘g_str_has_prefix’ throws an exception...
flatpak-1.17.2/common/flatpak-image-source.c:267:24: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘flatpak_image_source_new_for_location’
flatpak-1.17.2/common/flatpak-image-source.c:266:41: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDockerReference’ from ‘flatpak_image_source_new_for_location’
#   16|   void flatpak_docker_reference_free (FlatpakDockerReference *reference);
#   17|   
#   18|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC(FlatpakDockerReference, flatpak_docker_reference_free);
#   19|   
#   20|   #endif /* __FLATPAK_DOCKER_REFERENCE_H__ */

Error: GCC_ANALYZER_WARNING (CWE-457): [#def44]
flatpak-1.17.2/common/flatpak-docker-reference-private.h:18:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘reference’
flatpak-1.17.2/common/flatpak-docker-reference.c:65:1: enter_function: entry to ‘flatpak_docker_reference_parse’
flatpak-1.17.2/common/flatpak-docker-reference.c:69:19: call_function: calling ‘get_remainder_tag_and_digest_regex’ from ‘flatpak_docker_reference_parse’
flatpak-1.17.2/common/flatpak-docker-reference.c:68:37: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDockerReference’ from ‘flatpak_docker_reference_parse’
#   16|   void flatpak_docker_reference_free (FlatpakDockerReference *reference);
#   17|   
#   18|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC(FlatpakDockerReference, flatpak_docker_reference_free);
#   19|   
#   20|   #endif /* __FLATPAK_DOCKER_REFERENCE_H__ */

Error: GCC_ANALYZER_WARNING (CWE-457): [#def45]
flatpak-1.17.2/common/flatpak-exports-private.h:68:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘exports’
flatpak-1.17.2/tests/test-exports.c:1328:1: enter_function: entry to ‘test_exports_unusual’
flatpak-1.17.2/tests/test-exports.c:1359:13: call_function: calling ‘test_host_exports_setup’ from ‘test_exports_unusual’
flatpak-1.17.2/tests/test-exports.c:1356:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘test_exports_unusual’
flatpak-1.17.2/tests/test-exports.c:1354:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakExports’ from ‘test_exports_unusual’
#   66|                                                        const char     *path);
#   67|   
#   68|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakExports, flatpak_exports_free);
#   69|   
#   70|   /*

Error: GCC_ANALYZER_WARNING (CWE-775): [#def46]
flatpak-1.17.2/common/flatpak-exports.c:837:3: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘selfpipe[1]’
flatpak-1.17.2/common/flatpak-exports.c:1126:1: enter_function: entry to ‘flatpak_exports_add_path_dir’
flatpak-1.17.2/common/flatpak-exports.c:1130:10: call_function: calling ‘_exports_path_expose’ from ‘flatpak_exports_add_path_dir’
#  835|       return FALSE;
#  836|   
#  837|->   fcntl (selfpipe[0], F_SETFL, fcntl (selfpipe[0], F_GETFL) | O_NONBLOCK);
#  838|     fcntl (selfpipe[1], F_SETFL, fcntl (selfpipe[1], F_GETFL) | O_NONBLOCK);
#  839|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def47]
flatpak-1.17.2/common/flatpak-exports.c:837:32: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘selfpipe[1]’
flatpak-1.17.2/common/flatpak-exports.c:1126:1: enter_function: entry to ‘flatpak_exports_add_path_dir’
flatpak-1.17.2/common/flatpak-exports.c:1130:10: call_function: calling ‘_exports_path_expose’ from ‘flatpak_exports_add_path_dir’
#  835|       return FALSE;
#  836|   
#  837|->   fcntl (selfpipe[0], F_SETFL, fcntl (selfpipe[0], F_GETFL) | O_NONBLOCK);
#  838|     fcntl (selfpipe[1], F_SETFL, fcntl (selfpipe[1], F_GETFL) | O_NONBLOCK);
#  839|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def48]
flatpak-1.17.2/common/flatpak-exports.c:837:32: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘selfpipe[level]’
flatpak-1.17.2/common/flatpak-exports.c:1126:1: enter_function: entry to ‘flatpak_exports_add_path_dir’
flatpak-1.17.2/common/flatpak-exports.c:1130:10: call_function: calling ‘_exports_path_expose’ from ‘flatpak_exports_add_path_dir’
#  835|       return FALSE;
#  836|   
#  837|->   fcntl (selfpipe[0], F_SETFL, fcntl (selfpipe[0], F_GETFL) | O_NONBLOCK);
#  838|     fcntl (selfpipe[1], F_SETFL, fcntl (selfpipe[1], F_GETFL) | O_NONBLOCK);
#  839|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def49]
flatpak-1.17.2/common/flatpak-exports.c:837:32: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘selfpipe[mode]’
flatpak-1.17.2/common/flatpak-exports.c:1103:1: enter_function: entry to ‘flatpak_exports_add_path_tmpfs’
flatpak-1.17.2/common/flatpak-exports.c:1107:10: call_function: calling ‘_exports_path_expose’ from ‘flatpak_exports_add_path_tmpfs’
#  835|       return FALSE;
#  836|   
#  837|->   fcntl (selfpipe[0], F_SETFL, fcntl (selfpipe[0], F_GETFL) | O_NONBLOCK);
#  838|     fcntl (selfpipe[1], F_SETFL, fcntl (selfpipe[1], F_GETFL) | O_NONBLOCK);
#  839|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def50]
flatpak-1.17.2/common/flatpak-exports.c:838:32: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘selfpipe[1]’
flatpak-1.17.2/common/flatpak-exports.c:1126:1: enter_function: entry to ‘flatpak_exports_add_path_dir’
flatpak-1.17.2/common/flatpak-exports.c:1130:10: call_function: calling ‘_exports_path_expose’ from ‘flatpak_exports_add_path_dir’
#  836|   
#  837|     fcntl (selfpipe[0], F_SETFL, fcntl (selfpipe[0], F_GETFL) | O_NONBLOCK);
#  838|->   fcntl (selfpipe[1], F_SETFL, fcntl (selfpipe[1], F_GETFL) | O_NONBLOCK);
#  839|   
#  840|     pid = fork ();

Error: GCC_ANALYZER_WARNING (CWE-457): [#def51]
flatpak-1.17.2/common/flatpak-image-source-private.h:30:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘self’
flatpak-1.17.2/common/flatpak-image-source.c:236:1: enter_function: entry to ‘flatpak_image_source_new_for_location’
flatpak-1.17.2/common/flatpak-image-source.c:240:6: branch_false: following ‘false’ branch (when ‘__result == 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:249:12: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:249:11: branch_false: following ‘false’ branch (when ‘__result == 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:263:12: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:263:11: branch_true: following ‘true’ branch (when ‘__result != 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:267:24: branch_true: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:270:10: branch_false: following ‘false’ branch (when ‘__result != 0’)...
flatpak-1.17.2/common/flatpak-image-source.c:276:26: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:277:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-image-source.c:280:18: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:282:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-image-source.c:285:20: branch_false: ...to here
flatpak-1.17.2/common/flatpak-image-source.c:330:14: call_function: calling ‘flatpak_image_source_new’ from ‘flatpak_image_source_new_for_location’
#   28|   
#   29|   #define FLATPAK_TYPE_IMAGE_SOURCE flatpak_image_source_get_type ()
#   30|-> G_DECLARE_FINAL_TYPE (FlatpakImageSource,
#   31|                         flatpak_image_source,
#   32|                         FLATPAK, IMAGE_SOURCE,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def52]
flatpak-1.17.2/common/flatpak-installation.h:169:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘installation’
flatpak-1.17.2/app/flatpak-cli-transaction.c:1667:18: throw: if ‘flatpak_installation_new_for_dir’ throws an exception...
flatpak-1.17.2/app/flatpak-cli-transaction.c:1664:34: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakInstallation’ from ‘flatpak_cli_transaction_new’
#  167|   
#  168|   #ifdef G_DEFINE_AUTOPTR_CLEANUP_FUNC
#  169|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakInstallation, g_object_unref)
#  170|   #endif
#  171|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def53]
flatpak-1.17.2/common/flatpak-installed-ref.h:52:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘installed_ref’
flatpak-1.17.2/portal/flatpak-portal.c:1945:1: enter_function: entry to ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1963:18: call_function: calling ‘lookup_installation_for_path’ from ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1963:18: return_function: returning to ‘check_for_updates’ from ‘lookup_installation_for_path’
flatpak-1.17.2/portal/flatpak-portal.c:1964:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1966:7: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1955:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1950:34: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakInstalledRef’ from ‘check_for_updates’
#   50|   
#   51|   #ifdef G_DEFINE_AUTOPTR_CLEANUP_FUNC
#   52|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakInstalledRef, g_object_unref)
#   53|   #endif
#   54|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def54]
flatpak-1.17.2/common/flatpak-json-oci-private.h:257:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘signature’
flatpak-1.17.2/common/flatpak-oci-signatures.c:382:1: enter_function: entry to ‘flatpak_oci_signatures_verify’
flatpak-1.17.2/common/flatpak-oci-signatures.c:395:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:401:9: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:402:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:405:10: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:409:23: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:409:23: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:414:21: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:417:25: branch_true: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:419:19: call_function: calling ‘flatpak_oci_verify_signature’ from ‘flatpak_oci_signatures_verify’
flatpak-1.17.2/common/flatpak-oci-signatures.c:419:19: return_function: returning to ‘flatpak_oci_signatures_verify’ from ‘flatpak_oci_verify_signature’
flatpak-1.17.2/common/flatpak-oci-signatures.c:423:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: branch_true: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: throw: if ‘g_log’ throws an exception...
flatpak-1.17.2/common/flatpak-oci-signatures.c:417:25: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_oci_signatures_verify’
flatpak-1.17.2/common/flatpak-oci-signatures.c:416:38: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakOciSignature’ from ‘flatpak_oci_signatures_verify’
#  255|   
#  256|   #define FLATPAK_TYPE_OCI_SIGNATURE flatpak_oci_signature_get_type ()
#  257|-> G_DECLARE_FINAL_TYPE (FlatpakOciSignature, flatpak_oci_signature, FLATPAK, OCI_SIGNATURE, FlatpakJson)
#  258|   
#  259|   typedef struct

Error: GCC_ANALYZER_WARNING (CWE-457): [#def55]
flatpak-1.17.2/common/flatpak-oci-registry-private.h:41:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘registry’
flatpak-1.17.2/common/flatpak-image-collection.c:66:1: enter_function: entry to ‘flatpak_image_collection_new’
flatpak-1.17.2/common/flatpak-image-collection.c:75:10: call_function: calling ‘flatpak_image_collection_get_type’ from ‘flatpak_image_collection_new’
flatpak-1.17.2/common/flatpak-image-collection.c:71:33: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakOciRegistry’ from ‘flatpak_image_collection_new’
#   39|   GType flatpak_oci_registry_get_type (void);
#   40|   
#   41|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakOciRegistry, g_object_unref)
#   42|   
#   43|   #define FLATPAK_TYPE_OCI_LAYER_WRITER flatpak_oci_layer_writer_get_type ()

Error: GCC_ANALYZER_WARNING (CWE-457): [#def56]
flatpak-1.17.2/common/flatpak-oci-registry-private.h:51:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘layer_writer’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:620:1: enter_function: entry to ‘flatpak_builtin_build_bundle’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:637:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:640:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:640:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:643:6: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:643:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:646:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:661:8: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:661:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:669:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:669:7: call_function: calling ‘_repo_resolve_rev’ from ‘flatpak_builtin_build_bundle’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:669:7: return_function: returning to ‘flatpak_builtin_build_bundle’ from ‘_repo_resolve_rev’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:690:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:693:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:693:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:698:11: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:708:12: call_function: calling ‘build_oci’ from ‘flatpak_builtin_build_bundle’
#   49|   typedef struct FlatpakOciLayerWriter FlatpakOciLayerWriter;
#   50|   
#   51|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakOciLayerWriter, g_object_unref)
#   52|   
#   53|   

Error: GCC_ANALYZER_WARNING (CWE-476): [#def57]
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘local_error’
flatpak-1.17.2/common/flatpak-oci-signatures.c:382:1: enter_function: entry to ‘flatpak_oci_signatures_verify’
flatpak-1.17.2/common/flatpak-oci-signatures.c:395:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:401:9: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:402:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:405:10: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:409:23: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:409:23: branch_false: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:414:21: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:417:25: branch_true: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:417:25: release_memory: ‘local_error’ is NULL
flatpak-1.17.2/common/flatpak-oci-signatures.c:419:19: call_function: calling ‘flatpak_oci_verify_signature’ from ‘flatpak_oci_signatures_verify’
flatpak-1.17.2/common/flatpak-oci-signatures.c:419:19: return_function: returning to ‘flatpak_oci_signatures_verify’ from ‘flatpak_oci_verify_signature’
flatpak-1.17.2/common/flatpak-oci-signatures.c:423:10: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: branch_true: ...to here
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: release_memory: ‘local_error’ is NULL
flatpak-1.17.2/common/flatpak-oci-signatures.c:425:11: danger: dereference of NULL ‘local_error’
#  423|         if (signature == NULL)
#  424|           {
#  425|->           g_info ("Couldn't verify signature: %s", local_error->message);
#  426|             continue;
#  427|           }

Error: GCC_ANALYZER_WARNING (CWE-457): [#def58]
flatpak-1.17.2/common/flatpak-progress-private.h:31:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘progress’
flatpak-1.17.2/common/flatpak-installation.c:1877:1: enter_function: entry to ‘flatpak_installation_install_full’
flatpak-1.17.2/common/flatpak-installation.c:1897:9: call_function: inlined call to ‘flatpak_installation_get_dir’ from ‘flatpak_installation_install_full’
flatpak-1.17.2/common/flatpak-installation.c:1897:9: call_function: inlined call to ‘flatpak_installation_get_dir’ from ‘flatpak_installation_install_full’
flatpak-1.17.2/common/flatpak-installation.c:1898:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-installation.c:1901:9: branch_false: ...to here
flatpak-1.17.2/common/flatpak-installation.c:1902:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-installation.c:1905:16: branch_false: ...to here
flatpak-1.17.2/common/flatpak-installation.c:1906:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-installation.c:1908:7: branch_true: ...to here
flatpak-1.17.2/common/flatpak-installation.c:1894:20: call_function: inlined call to ‘glib_autoptr_cleanup_GFile’ from ‘flatpak_installation_install_full’
flatpak-1.17.2/common/flatpak-installation.c:1893:30: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakProgress’ from ‘flatpak_installation_install_full’
#   29|   #define FLATPAK_TYPE_PROGRESS flatpak_progress_get_type ()
#   30|   
#   31|-> G_DECLARE_FINAL_TYPE (FlatpakProgress, flatpak_progress, FLATPAK, PROGRESS, GObject);
#   32|   
#   33|   #define FLATKPAK_MAIN_CONTEXT_INIT {NULL}

Error: GCC_ANALYZER_WARNING (CWE-457): [#def59]
flatpak-1.17.2/common/flatpak-ref-utils-private.h:135:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘<unknown>’
flatpak-1.17.2/app/flatpak-builtins-ps.c:237:1: enter_function: entry to ‘flatpak_builtin_ps’
flatpak-1.17.2/app/flatpak-builtins-ps.c:251:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-ps.c:254:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-ps.c:254:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-ps.c:260:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-ps.c:261:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-ps.c:264:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-ps.c:264:10: call_function: calling ‘enumerate_instances’ from ‘flatpak_builtin_ps’
#  133|                                                                const char         *branch);
#  134|   
#  135|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDecomposed, flatpak_decomposed_unref)
#  136|   
#  137|   FlatpakKinds flatpak_kinds_from_bools (gboolean app,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def60]
flatpak-1.17.2/common/flatpak-ref-utils-private.h:135:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘dir_ref’
flatpak-1.17.2/common/flatpak-dir-utils.c:521:1: enter_function: entry to ‘flatpak_list_extensions’
flatpak-1.17.2/common/flatpak-dir-utils.c:535:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-dir-utils.c:539:11: branch_true: ...to here
flatpak-1.17.2/common/flatpak-dir-utils.c:564:19: call_function: calling ‘add_extension’ from ‘flatpak_list_extensions’
#  133|                                                                const char         *branch);
#  134|   
#  135|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDecomposed, flatpak_decomposed_unref)
#  136|   
#  137|   FlatpakKinds flatpak_kinds_from_bools (gboolean app,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def61]
flatpak-1.17.2/common/flatpak-ref-utils-private.h:135:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘parent_ref’
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:380:1: enter_function: entry to ‘flatpak_builtin_remote_ls’
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:396:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:400:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:406:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:411:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:411:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:413:11: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:413:10: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:417:11: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:422:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:424:29: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:440:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:443:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:443:10: branch_false: following ‘false’ branch (when ‘arches’ is non-NULL)...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:447:12: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:447:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:451:31: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:501:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:504:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-remote-ls.c:504:10: call_function: calling ‘ls_remote’ from ‘flatpak_builtin_remote_ls’
#  133|                                                                const char         *branch);
#  134|   
#  135|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDecomposed, flatpak_decomposed_unref)
#  136|   
#  137|   FlatpakKinds flatpak_kinds_from_bools (gboolean app,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def62]
flatpak-1.17.2/common/flatpak-ref-utils-private.h:135:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ref’
flatpak-1.17.2/common/flatpak-dir-utils.c:521:1: enter_function: entry to ‘flatpak_list_extensions’
flatpak-1.17.2/common/flatpak-dir-utils.c:535:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-dir-utils.c:539:11: branch_true: ...to here
flatpak-1.17.2/common/flatpak-dir-utils.c:564:19: call_function: calling ‘add_extension’ from ‘flatpak_list_extensions’
#  133|                                                                const char         *branch);
#  134|   
#  135|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDecomposed, flatpak_decomposed_unref)
#  136|   
#  137|   FlatpakKinds flatpak_kinds_from_bools (gboolean app,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def63]
flatpak-1.17.2/common/flatpak-ref-utils-private.h:135:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘runtime_ref’
flatpak-1.17.2/app/flatpak-builtins-run.c:98:1: enter_function: entry to ‘flatpak_builtin_run’
flatpak-1.17.2/app/flatpak-builtins-run.c:113:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_builtin_run’
flatpak-1.17.2/app/flatpak-builtins-run.c:111:20: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-run.c:108:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakContext’ from ‘flatpak_builtin_run’
flatpak-1.17.2/app/flatpak-builtins-run.c:104:32: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDecomposed’ from ‘flatpak_builtin_run’
#  133|                                                                const char         *branch);
#  134|   
#  135|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakDecomposed, flatpak_decomposed_unref)
#  136|   
#  137|   FlatpakKinds flatpak_kinds_from_bools (gboolean app,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def64]
flatpak-1.17.2/common/flatpak-remote-ref.h:59:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘remote_ref’
flatpak-1.17.2/portal/flatpak-portal.c:1945:1: enter_function: entry to ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1959:23: call_function: calling ‘update_monitor_get_installation_path’ from ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1955:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘check_for_updates’
flatpak-1.17.2/portal/flatpak-portal.c:1951:31: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakRemoteRef’ from ‘check_for_updates’
#   57|   
#   58|   #ifdef G_DEFINE_AUTOPTR_CLEANUP_FUNC
#   59|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakRemoteRef, g_object_unref)
#   60|   #endif
#   61|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def65]
flatpak-1.17.2/common/flatpak-repo-utils-private.h:268:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘progress’
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:258:1: enter_function: entry to ‘flatpak_builtin_build_commit_from’
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:281:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:284:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:284:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:287:3: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:337:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:340:14: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:341:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:344:7: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:347:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:349:22: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:350:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:353:22: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:355:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:363:14: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:371:7: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:372:10: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:372:10: branch_false: following ‘false’ branch (when ‘n_dst_refs != 0’)...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:372:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:413:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:418:30: branch_true: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:444:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:419:27: call_function: inlined call to ‘glib_autoptr_cleanup_GVariant’ from ‘flatpak_builtin_build_commit_from’
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:418:30: call_function: inlined call to ‘glib_auto_cleanup_GLnxConsoleRef’ from ‘flatpak_builtin_build_commit_from’
flatpak-1.17.2/app/flatpak-builtins-build-commit-from.c:417:44: call_function: inlined call to ‘glib_autoptr_cleanup_OstreeAsyncProgressFinish’ from ‘flatpak_builtin_build_commit_from’
#  266|   
#  267|   typedef OstreeAsyncProgress OstreeAsyncProgressFinish;
#  268|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (OstreeAsyncProgressFinish, flatpak_ostree_progress_finish);
#  269|   
#  270|   typedef OstreeRepo FlatpakRepoTransaction;

Error: GCC_ANALYZER_WARNING (CWE-401): [#def66]
flatpak-1.17.2/common/flatpak-run-x11.c:50:31: warning[-Wanalyzer-malloc-leak]: leak of ‘XauReadAuth(fopen(XauFileName(), "rb"))’
flatpak-1.17.2/common/flatpak-run-x11.c:99:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:105:14: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: acquire_memory: allocated here
flatpak-1.17.2/common/flatpak-run-x11.c:113:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:115:11: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:50:31: danger: ‘XauReadAuth(fopen(XauFileName(), "rb"))’ leaks here; was allocated at [(5)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/4)
#   48|   {
#   49|     /* ensure entry isn't for a different type of access */
#   50|->   if (family != FamilyWild && xa->family != family && xa->family != FamilyWild)
#   51|       return FALSE;
#   52|   

Error: GCC_ANALYZER_WARNING (CWE-401): [#def67]
flatpak-1.17.2/common/flatpak-run-x11.c:55:7: warning[-Wanalyzer-malloc-leak]: leak of ‘XauReadAuth(fopen(XauFileName(), "rb"))’
flatpak-1.17.2/common/flatpak-run-x11.c:89:1: enter_function: entry to ‘write_xauth’
flatpak-1.17.2/common/flatpak-run-x11.c:99:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:105:14: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: acquire_memory: allocated here
flatpak-1.17.2/common/flatpak-run-x11.c:113:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:115:11: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:115:11: call_function: calling ‘xauth_entry_should_propagate’ from ‘write_xauth’
#   53|     /* ensure entry isn't for remote access, except that if remote_hostname
#   54|      * is specified, then remote access to that hostname is OK */
#   55|->   if (xa->family != FamilyWild && xa->family != FamilyLocal &&
#   56|         (remote_hostname == NULL ||
#   57|          !auth_streq (remote_hostname, xa->address, xa->address_length)))

Error: GCC_ANALYZER_WARNING (CWE-775): [#def68]
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(XauFileName(), "rb")’
flatpak-1.17.2/common/flatpak-run-x11.c:99:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:105:14: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:106:7: acquire_resource: opened here
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: throw: if ‘XauReadAuth’ throws an exception...
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: danger: ‘fopen(XauFileName(), "rb")’ leaks here; was opened at [(3)](sarif:/runs/0/results/5/codeFlows/0/threadFlows/0/locations/2)
#  110|     while (TRUE)
#  111|       {
#  112|->       xa = XauReadAuth (f);
#  113|         if (xa == NULL)
#  114|           break;

Error: GCC_ANALYZER_WARNING (CWE-401): [#def69]
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(XauFileName(), "rb")’
flatpak-1.17.2/common/flatpak-run-x11.c:99:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:105:14: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:106:7: acquire_memory: allocated here
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-x11.c:107:6: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: throw: if ‘XauReadAuth’ throws an exception...
flatpak-1.17.2/common/flatpak-run-x11.c:112:12: danger: ‘fopen(XauFileName(), "rb")’ leaks here; was allocated at [(3)](sarif:/runs/0/results/6/codeFlows/0/threadFlows/0/locations/2)
#  110|     while (TRUE)
#  111|       {
#  112|->       xa = XauReadAuth (f);
#  113|         if (xa == NULL)
#  114|           break;

Error: GCC_ANALYZER_WARNING (CWE-457): [#def70]
flatpak-1.17.2/common/flatpak-transaction.h:94:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘transaction2’
flatpak-1.17.2/app/flatpak-quiet-transaction.c:187:1: enter_function: entry to ‘install_authenticator’
flatpak-1.17.2/app/flatpak-quiet-transaction.c:193:49: throw: if ‘flatpak_transaction_get_installation’ throws an exception...
flatpak-1.17.2/app/flatpak-quiet-transaction.c:192:21: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘install_authenticator’
flatpak-1.17.2/app/flatpak-quiet-transaction.c:191:34: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakTransaction’ from ‘install_authenticator’
#   92|   
#   93|   FLATPAK_EXTERN
#   94|-> G_DECLARE_DERIVABLE_TYPE (FlatpakTransaction, flatpak_transaction, FLATPAK, TRANSACTION, GObject)
#   95|   
#   96|   struct _FlatpakTransactionClass

Error: GCC_ANALYZER_WARNING (CWE-457): [#def71]
flatpak-1.17.2/common/flatpak-transaction.h:94:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘transaction’
flatpak-1.17.2/app/flatpak-builtins-install.c:329:1: enter_function: entry to ‘flatpak_builtin_install’
flatpak-1.17.2/app/flatpak-builtins-install.c:345:13: throw: if ‘g_option_context_new’ throws an exception...
flatpak-1.17.2/app/flatpak-builtins-install.c:342:25: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakDir’ from ‘flatpak_builtin_install’
flatpak-1.17.2/app/flatpak-builtins-install.c:341:33: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakTransaction’ from ‘flatpak_builtin_install’
#   92|   
#   93|   FLATPAK_EXTERN
#   94|-> G_DECLARE_DERIVABLE_TYPE (FlatpakTransaction, flatpak_transaction, FLATPAK, TRANSACTION, GObject)
#   95|   
#   96|   struct _FlatpakTransactionClass

Error: GCC_ANALYZER_WARNING (CWE-457): [#def72]
flatpak-1.17.2/common/flatpak-usb-private.h:78:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘usb_rule’
flatpak-1.17.2/common/flatpak-usb.c:200:11: throw: if ‘g_strsplit’ throws an exception...
flatpak-1.17.2/common/flatpak-usb.c:196:29: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakUsbRule’ from ‘flatpak_usb_parse_usb_rule’
#   76|   void flatpak_usb_rule_free (FlatpakUsbRule *usb_rule);
#   77|   
#   78|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakUsbRule, flatpak_usb_rule_free)
#   79|   
#   80|   FlatpakUsbQuery *flatpak_usb_query_new (void);

Error: GCC_ANALYZER_WARNING (CWE-457): [#def73]
flatpak-1.17.2/common/flatpak-usb-private.h:86:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘copy’
flatpak-1.17.2/common/flatpak-context.c:2675:1: enter_function: entry to ‘option_nousb_cb’
flatpak-1.17.2/common/flatpak-context.c:2683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-context.c:2686:3: branch_false: ...to here
flatpak-1.17.2/common/flatpak-context.c:2686:3: call_function: inlined call to ‘flatpak_context_add_nousb_query’ from ‘option_nousb_cb’
#   84|   void flatpak_usb_query_free (FlatpakUsbQuery *usb_query);
#   85|   
#   86|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakUsbQuery, flatpak_usb_query_free)
#   87|   
#   88|   gboolean flatpak_usb_parse_usb_rule (const char      *data,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def74]
flatpak-1.17.2/common/flatpak-usb-private.h:86:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘usb_query’
flatpak-1.17.2/common/flatpak-usb.c:236:1: enter_function: entry to ‘flatpak_usb_parse_usb’
flatpak-1.17.2/common/flatpak-usb.c:246:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-usb.c:252:15: branch_false: ...to here
flatpak-1.17.2/common/flatpak-usb.c:254:22: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-usb.c:256:33: branch_true: ...to here
flatpak-1.17.2/common/flatpak-usb.c:259:12: call_function: calling ‘flatpak_usb_parse_usb_rule’ from ‘flatpak_usb_parse_usb’
flatpak-1.17.2/common/flatpak-usb.c:259:12: return_function: returning to ‘flatpak_usb_parse_usb’ from ‘flatpak_usb_parse_usb_rule’
flatpak-1.17.2/common/flatpak-usb.c:259:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-usb.c:262:7: call_function: inlined call to ‘g_steal_pointer’ from ‘flatpak_usb_parse_usb’
flatpak-1.17.2/common/flatpak-usb.c:254:22: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-usb.c:265:3: branch_false: ...to here
flatpak-1.17.2/common/flatpak-usb.c:265:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/common/flatpak-usb.c:267:16: branch_true: ...to here
flatpak-1.17.2/common/flatpak-usb.c:241:25: call_function: inlined call to ‘glib_autoptr_cleanup_GHashTable’ from ‘flatpak_usb_parse_usb’
flatpak-1.17.2/common/flatpak-usb.c:240:30: call_function: inlined call to ‘glib_autoptr_cleanup_FlatpakUsbQuery’ from ‘flatpak_usb_parse_usb’
#   84|   void flatpak_usb_query_free (FlatpakUsbQuery *usb_query);
#   85|   
#   86|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakUsbQuery, flatpak_usb_query_free)
#   87|   
#   88|   gboolean flatpak_usb_parse_usb_rule (const char      *data,

Error: GCC_ANALYZER_WARNING (CWE-457): [#def75]
flatpak-1.17.2/common/flatpak-utils-http.c:380:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘header_list’
flatpak-1.17.2/common/flatpak-utils-http.c:867:1: enter_function: entry to ‘flatpak_download_http_uri’
flatpak-1.17.2/common/flatpak-utils-http.c:899:10: branch_false: following ‘false’ branch (when ‘n_retries_remaining > 4’)...
flatpak-1.17.2/common/flatpak-utils-http.c:905:18: branch_false: ...to here
flatpak-1.17.2/common/flatpak-utils-http.c:905:18: call_function: calling ‘flatpak_download_http_uri_once’ from ‘flatpak_download_http_uri’
#  378|   typedef struct curl_slist auto_curl_slist;
#  379|   
#  380|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (auto_curl_slist, curl_slist_free_all)
#  381|   
#  382|   struct FlatpakHttpSession {

Error: GCC_ANALYZER_WARNING (CWE-457): [#def76]
flatpak-1.17.2/common/flatpak-utils-http.c:953:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cache_data’
flatpak-1.17.2/common/flatpak-utils-http.c:1243:34: throw: if ‘g_path_get_dirname’ throws an exception...
flatpak-1.17.2/common/flatpak-utils-http.c:1241:28: call_function: inlined call to ‘glib_autoptr_cleanup_CacheHttpData’ from ‘flatpak_cache_http_uri’
#  951|   }
#  952|   
#  953|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (CacheHttpData, free_cache_http_data)
#  954|   
#  955|   static GBytes *

Error: GCC_ANALYZER_WARNING (CWE-457): [#def77]
flatpak-1.17.2/common/flatpak-utils-private.h:287:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘context’
flatpak-1.17.2/app/flatpak-builtins-build-update-repo.c:309:1: enter_function: entry to ‘generate_all_deltas’
flatpak-1.17.2/app/flatpak-builtins-build-update-repo.c:327:3: throw: if ‘g_print’ throws an exception...
flatpak-1.17.2/app/flatpak-builtins-build-update-repo.c:325:24: call_function: inlined call to ‘glib_autoptr_cleanup_GPtrArray’ from ‘generate_all_deltas’
flatpak-1.17.2/app/flatpak-builtins-build-update-repo.c:324:37: call_function: inlined call to ‘glib_autoptr_cleanup_GMainContextPopDefault’ from ‘generate_all_deltas’
#  285|   }
#  286|   
#  287|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (GMainContextPopDefault, flatpak_main_context_pop_default_destroy)
#  288|   
#  289|   #define AUTOLOCK(name) G_GNUC_UNUSED __attribute__((cleanup (flatpak_auto_unlock_helper))) GMutex * G_PASTE (auto_unlock, __LINE__) = flatpak_auto_lock_helper (&G_LOCK_NAME (name))

Error: GCC_ANALYZER_WARNING (CWE-457): [#def78]
flatpak-1.17.2/common/flatpak-utils-private.h:287:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘main_context’
flatpak-1.17.2/common/flatpak-utils-http.c:1227:1: enter_function: entry to ‘flatpak_cache_http_uri’
flatpak-1.17.2/common/flatpak-utils-http.c:1244:27: throw: if ‘g_path_get_basename’ throws an exception...
flatpak-1.17.2/common/flatpak-utils-http.c:1243:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘flatpak_cache_http_uri’
flatpak-1.17.2/common/flatpak-utils-http.c:1242:37: call_function: inlined call to ‘glib_autoptr_cleanup_GMainContextPopDefault’ from ‘flatpak_cache_http_uri’
#  285|   }
#  286|   
#  287|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (GMainContextPopDefault, flatpak_main_context_pop_default_destroy)
#  288|   
#  289|   #define AUTOLOCK(name) G_GNUC_UNUSED __attribute__((cleanup (flatpak_auto_unlock_helper))) GMutex * G_PASTE (auto_unlock, __LINE__) = flatpak_auto_lock_helper (&G_LOCK_NAME (name))

Error: CPPCHECK_WARNING (CWE-457): [#def79]
flatpak-1.17.2/common/flatpak-utils.c:1339: error[uninitvar]: Uninitialized variable: stbuf
# 1337|       }
# 1338|   
# 1339|->   if ((uid != -1 && uid != stbuf.st_uid) || (gid != -1 && gid != stbuf.st_gid))
# 1340|       {
# 1341|         if (TEMP_FAILURE_RETRY (fchownat (parent_dfd, rel_path, uid, gid, AT_SYMLINK_NOFOLLOW)) != 0)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def80]
flatpak-1.17.2/common/flatpak-utils.c:2128:7: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*<unknown>’
flatpak-1.17.2/common/flatpak-utils.c:2155:1: enter_function: entry to ‘flatpak_levenshtein_distance’
flatpak-1.17.2/common/flatpak-utils.c:2163:6: branch_true: following ‘true’ branch (when ‘ls < 0’)...
flatpak-1.17.2/common/flatpak-utils.c:2164:10: branch_true: ...to here
flatpak-1.17.2/common/flatpak-utils.c:2166:6: branch_false: following ‘false’ branch (when ‘lt >= 0’)...
flatpak-1.17.2/common/flatpak-utils.c:2169:7: branch_false: ...to here
flatpak-1.17.2/common/flatpak-utils.c:2171:15: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-utils.c:2175:10: branch_false: ...to here
flatpak-1.17.2/common/flatpak-utils.c:2175:10: call_function: calling ‘dist’ from ‘flatpak_levenshtein_distance’
# 2126|     int x, y;
# 2127|   
# 2128|->   if (d[i * (lt + 1) + j] >= 0)
# 2129|       return d[i * (lt + 1) + j];
# 2130|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def81]
flatpak-1.17.2/common/flatpak-xml-utils-private.h:49:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘appstream_root’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:465:1: enter_function: entry to ‘build_oci’
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:495:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:498:8: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:498:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:501:8: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:501:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:504:9: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:505:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:508:10: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:512:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:515:18: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:516:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:519:13: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:521:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:525:8: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:525:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:532:20: branch_false: ...to here
flatpak-1.17.2/app/flatpak-builtins-build-bundle.c:532:20: call_function: calling ‘generate_labels’ from ‘build_oci’
#   47|                                 FlatpakXml **prev_child_out);
#   48|   
#   49|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (FlatpakXml, flatpak_xml_free);
#   50|   
#   51|   FlatpakXml *flatpak_appstream_xml_new (void);

Error: GCC_ANALYZER_WARNING (CWE-404): [#def82]
flatpak-1.17.2/icon-validator/validate-icon.c:127:5: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/icon-validator/validate-icon.c:120:1: enter_function: entry to ‘add_args’
flatpak-1.17.2/icon-validator/validate-icon.c:125:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/icon-validator/validate-icon.c:126:10: branch_true: following ‘true’ branch (when ‘arg’ is non-NULL)...
flatpak-1.17.2/icon-validator/validate-icon.c:127:34: call_function: inlined call to ‘g_strdup_inline’ from ‘add_args’
flatpak-1.17.2/icon-validator/validate-icon.c:127:5: throw: if ‘g_ptr_array_add’ throws an exception...
flatpak-1.17.2/icon-validator/validate-icon.c:127:5: danger: missing call to ‘va_end’ to match ‘va_start’ at [(2)](sarif:/runs/0/results/5/codeFlows/0/threadFlows/0/locations/1)
#  125|     va_start (args, argv_array);
#  126|     while ((arg = va_arg (args, const gchar *)))
#  127|->     g_ptr_array_add (argv_array, g_strdup (arg));
#  128|     va_end (args);
#  129|   }

Error: GCC_ANALYZER_WARNING (CWE-476): [#def83]
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:337:7: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘error’
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:443:1: enter_function: entry to ‘handle_request_ref_tokens’
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:454:21: release_memory: ‘error’ is NULL
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:455:21: release_memory: ‘error’ is NULL
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:473:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:480:3: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:484:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:492:13: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:493:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:502:3: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:505:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:510:6: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:513:14: call_function: calling ‘lookup_auth_from_config’ from ‘handle_request_ref_tokens’
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:513:14: return_function: returning to ‘handle_request_ref_tokens’ from ‘lookup_auth_from_config’
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:519:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:548:12: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:549:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:550:7: branch_true: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:549:7: branch_true: following ‘true’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:552:38: branch_true: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:556:14: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:552:27: call_function: inlined call to ‘glib_autoptr_cleanup_GVariant’ from ‘handle_request_ref_tokens’
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:586:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:587:50: branch_true: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:587:12: branch_false: following ‘false’ branch...
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:587:12: branch_false: ...to here
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:587:12: release_memory: ‘anon_error’ is NULL
flatpak-1.17.2/oci-authenticator/flatpak-oci-authenticator.c:587:12: call_function: calling ‘error_request’ from ‘handle_request_ref_tokens’
#  335|     int error_code = -1;
#  336|   
#  337|->   if (error->domain == FLATPAK_ERROR)
#  338|       error_code = error->code;
#  339|   

Error: GCC_ANALYZER_WARNING (CWE-465): [#def84]
flatpak-1.17.2/portal/flatpak-portal.c:1531:6: warning[-Wanalyzer-deref-before-check]: check of ‘arg_cwd_path’ for NULL after already dereferencing it
flatpak-1.17.2/portal/flatpak-portal.c:746:1: enter_function: entry to ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:808:6: branch_false: following ‘false’ branch (when ‘fd_list’ is NULL)...
flatpak-1.17.2/portal/flatpak-portal.c:811:14: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:812:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:814:12: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:817:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:819:3: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:830:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:838:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:838:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:841:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:841:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:849:6: branch_false: following ‘false’ branch (when ‘arg_flags <= 511’)...
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:859:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:863:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:870:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:910:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:917:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:973:6: branch_false: following ‘false’ branch (when ‘fds’ is NULL)...
flatpak-1.17.2/portal/flatpak-portal.c:976:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:979:15: branch_false: following ‘false’ branch (when ‘i >= n_fds’)...
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:1023:21: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1028:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1036:14: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1037:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1045:18: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1046:36: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1097:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1099:38: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1162:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1207:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1208:15: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1236:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1319:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1346:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1358:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1358:6: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1362:26: call_function: calling ‘filesystem_sandbox_arg’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1362:26: return_function: returning to ‘handle_spawn’ from ‘filesystem_sandbox_arg’
flatpak-1.17.2/portal/flatpak-portal.c:1374:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1411:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1411:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1448:15: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1450:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1486:11: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1486:11: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1491:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1491:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1520:34: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1531:6: danger: pointer ‘arg_cwd_path’ is checked for NULL here but it was already dereferenced at [(10)](sarif:/runs/0/results/28/codeFlows/0/threadFlows/0/locations/9)
# 1529|       }
# 1530|   
# 1531|->   if (arg_cwd_path != NULL)
# 1532|       g_ptr_array_add (flatpak_argv, g_strdup_printf ("--cwd=%s", arg_cwd_path));
# 1533|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def85]
flatpak-1.17.2/portal/flatpak-portal.c:1632:1: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipe_fds[0]’
flatpak-1.17.2/portal/flatpak-portal.c:746:1: enter_function: entry to ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:812:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:814:12: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:817:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:819:3: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:830:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:838:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:841:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:849:6: branch_false: following ‘false’ branch (when ‘arg_flags <= 511’)...
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:859:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:863:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:870:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:910:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:917:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:973:6: branch_false: following ‘false’ branch (when ‘fds’ is NULL)...
flatpak-1.17.2/portal/flatpak-portal.c:976:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:979:15: branch_false: following ‘false’ branch (when ‘i >= n_fds’)...
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:1023:21: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1028:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1036:14: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1037:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1045:18: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1046:36: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1097:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1099:38: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1162:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1207:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1208:15: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1236:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1319:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1322:11: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1322:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1332:33: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1332:33: throw: if ‘g_unix_input_stream_new’ throws an exception...
flatpak-1.17.2/portal/flatpak-portal.c:1632:1: danger: ‘pipe_fds[0]’ leaks here
# 1630|     portal_flatpak_complete_spawn (object, invocation, NULL, pid);
# 1631|     return G_DBUS_METHOD_INVOCATION_HANDLED;
# 1632|-> }
# 1633|   
# 1634|   static gboolean

Error: GCC_ANALYZER_WARNING (CWE-775): [#def86]
flatpak-1.17.2/portal/flatpak-portal.c:1632:1: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipe_fds[1]’
flatpak-1.17.2/portal/flatpak-portal.c:746:1: enter_function: entry to ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:812:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:814:12: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:817:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:819:3: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:830:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:838:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:841:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:849:6: branch_false: following ‘false’ branch (when ‘arg_flags <= 511’)...
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:856:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:859:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:863:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:870:19: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:910:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:917:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:973:6: branch_false: following ‘false’ branch (when ‘fds’ is NULL)...
flatpak-1.17.2/portal/flatpak-portal.c:976:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:979:15: branch_false: following ‘false’ branch (when ‘i >= n_fds’)...
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1017:6: branch_false: following ‘false’ branch (when ‘testing == 0’)...
flatpak-1.17.2/portal/flatpak-portal.c:1023:21: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1028:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1036:14: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1037:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1045:18: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1046:36: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1097:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1099:38: call_function: inlined call to ‘g_strdup_inline’ from ‘handle_spawn’
flatpak-1.17.2/portal/flatpak-portal.c:1162:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1207:12: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1208:15: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1236:7: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1319:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1322:11: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1322:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:1332:33: branch_false: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:1332:33: throw: if ‘g_unix_input_stream_new’ throws an exception...
flatpak-1.17.2/portal/flatpak-portal.c:1632:1: danger: ‘pipe_fds[1]’ leaks here
# 1630|     portal_flatpak_complete_spawn (object, invocation, NULL, pid);
# 1631|     return G_DBUS_METHOD_INVOCATION_HANDLED;
# 1632|-> }
# 1633|   
# 1634|   static gboolean

Error: COMPILER_WARNING: [#def87]
flatpak-1.17.2/redhat-linux-build/app/parse-datetime.c: scope_hint: In function ‘yyparse’
flatpak-1.17.2/redhat-linux-build/app/parse-datetime.c:1323:9: warning[-Wunused-but-set-variable=]: variable ‘yynerrs’ set but not used
# 1323 |     int yynerrs = 0;
#      |         ^~~~~~~
# 1321|   
# 1322|       /* Number of syntax errors so far.  */
# 1323|->     int yynerrs = 0;
# 1324|   
# 1325|       yy_state_fast_t yystate = 0;

Error: GCC_ANALYZER_WARNING (CWE-457): [#def88]
flatpak-1.17.2/redhat-linux-build/app/parse-datetime.c:1558:3: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*<unknown>’
flatpak-1.17.2/app/parse-datetime.y:1268:1: enter_function: entry to ‘parse_datetime’
flatpak-1.17.2/app/parse-datetime.y:1294:6: branch_false: following ‘false’ branch (when ‘tmp’ is non-NULL)...
flatpak-1.17.2/app/parse-datetime.y:1294:6: branch_false: ...to here
flatpak-1.17.2/app/parse-datetime.y:1300:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/parse-datetime.y:1302:19: branch_true: ...to here
flatpak-1.17.2/app/parse-datetime.y:1306:24: branch_true: following ‘true’ branch...
flatpak-1.17.2/app/parse-datetime.y:1307:12: branch_true: ...to here
flatpak-1.17.2/app/parse-datetime.y:1320:19: call_function: calling ‘get_tz’ from ‘parse_datetime’
flatpak-1.17.2/app/parse-datetime.y:1320:19: return_function: returning to ‘parse_datetime’ from ‘get_tz’
flatpak-1.17.2/app/parse-datetime.y:1321:23: branch_false: following ‘false’ branch (when ‘tzsize <= 100’)...
flatpak-1.17.2/app/parse-datetime.y:1322:13: branch_false: ...to here
flatpak-1.17.2/app/parse-datetime.y:1322:30: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/parse-datetime.y:1324:13: branch_false: ...to here
flatpak-1.17.2/app/parse-datetime.y:1328:16: branch_false: following ‘false’ branch...
flatpak-1.17.2/app/parse-datetime.y:1332:13: branch_false: ...to here
flatpak-1.17.2/app/parse-datetime.y:1427:7: call_function: calling ‘yyparse’ from ‘parse_datetime’
# 1556|        unconditionally makes the parser a bit smaller, and it avoids a
# 1557|        GCC warning that YYVAL may be used uninitialized.  */
# 1558|->   yyval = yyvsp[1-yylen];
# 1559|   
# 1560|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def89]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:143:15: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(signals_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:132:1: enter_function: entry to ‘output_signals’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:137:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:138:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:138:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:143:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:144:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:144:5: call_function: calling ‘output_object_signals’ from ‘output_signals’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def90]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:143:15: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(signals_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:132:1: enter_function: entry to ‘output_signals’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:137:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:138:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:138:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:143:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:144:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:144:5: call_function: calling ‘output_object_signals’ from ‘output_signals’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def91]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:458:3: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def92]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:458:3: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def93]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:460:14: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def94]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:460:14: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def95]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:462:13: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def96]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:462:13: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(hierarchy_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:407:1: enter_function: entry to ‘output_object_hierarchy’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:414:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:415:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:419:3: call_function: inlined call to ‘output_hierarchy’ from ‘output_object_hierarchy’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def97]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:501:16: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(interfaces_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:468:13: enter_function: entry to ‘output_object_interfaces’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:473:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:474:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:478:3: call_function: inlined call to ‘output_interfaces’ from ‘output_object_interfaces’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def98]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:501:16: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(interfaces_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:468:13: enter_function: entry to ‘output_object_interfaces’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:473:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:474:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:478:3: call_function: inlined call to ‘output_interfaces’ from ‘output_object_interfaces’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def99]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:503:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(interfaces_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:468:13: enter_function: entry to ‘output_object_interfaces’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:473:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:474:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:478:3: call_function: inlined call to ‘output_interfaces’ from ‘output_object_interfaces’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def100]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:503:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(interfaces_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:468:13: enter_function: entry to ‘output_object_interfaces’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:473:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:474:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:478:3: call_function: inlined call to ‘output_interfaces’ from ‘output_object_interfaces’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def101]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:544:19: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(prerequisites_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:519:13: enter_function: entry to ‘output_interface_prerequisites’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:523:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:524:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: call_function: calling ‘output_prerequisites’ from ‘output_interface_prerequisites’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def102]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:544:19: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(prerequisites_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:519:13: enter_function: entry to ‘output_interface_prerequisites’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:523:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:524:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: call_function: calling ‘output_prerequisites’ from ‘output_interface_prerequisites’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def103]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:546:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(prerequisites_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:519:13: enter_function: entry to ‘output_interface_prerequisites’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:523:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:524:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: call_function: calling ‘output_prerequisites’ from ‘output_interface_prerequisites’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def104]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:546:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(prerequisites_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:519:13: enter_function: entry to ‘output_interface_prerequisites’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:523:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:524:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:528:3: call_function: calling ‘output_prerequisites’ from ‘output_interface_prerequisites’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def105]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:575:15: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(actions_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:564:1: enter_function: entry to ‘output_actions’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:569:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:570:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:570:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:575:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:576:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:576:5: call_function: calling ‘output_object_actions’ from ‘output_actions’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def106]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:575:15: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(actions_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:564:1: enter_function: entry to ‘output_actions’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:569:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:570:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:570:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:575:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:576:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:576:5: call_function: calling ‘output_object_actions’ from ‘output_actions’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def107]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:640:15: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(args_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:629:1: enter_function: entry to ‘output_args’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:634:8: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:635:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:635:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:640:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:641:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:641:5: call_function: calling ‘output_object_args’ from ‘output_args’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def108]
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:640:15: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(args_filename, "w")’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:629:1: enter_function: entry to ‘output_args’
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:634:8: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:635:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:635:6: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:640:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:641:5: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/flatpak-scan.c:641:5: call_function: calling ‘output_object_args’ from ‘output_args’

Error: GCC_ANALYZER_WARNING (CWE-457): [#def109]
flatpak-1.17.2/redhat-linux-build/portal/flatpak-portal-dbus.h:512:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2139:1: enter_function: entry to ‘handle_create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2170:52: call_function: calling ‘create_update_monitor’ from ‘handle_create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2170:52: return_function: returning to ‘handle_create_update_monitor’ from ‘create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2171:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/portal/flatpak-portal.c:2173:7: branch_true: ...to here
flatpak-1.17.2/portal/flatpak-portal.c:2148:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2147:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2146:20: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_create_update_monitor’
flatpak-1.17.2/portal/flatpak-portal.c:2144:49: call_function: inlined call to ‘glib_autoptr_cleanup_PortalFlatpakUpdateMonitorSkeleton’ from ‘handle_create_update_monitor’
#  510|   
#  511|   #if GLIB_CHECK_VERSION(2, 44, 0)
#  512|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (PortalFlatpakUpdateMonitorSkeleton, g_object_unref)
#  513|   #endif
#  514|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def110]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:68:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def111]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:68:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def112]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:68:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def113]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:68:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def114]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:81:24: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def115]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:81:24: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def116]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:81:24: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def117]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:81:24: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def118]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:93:11: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def119]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:93:11: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def120]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:93:11: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def121]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:93:11: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def122]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:99:3: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def123]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:99:3: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def124]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:99:3: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def125]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:99:3: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def126]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:102:16: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def127]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:102:16: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def128]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:102:16: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def129]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:102:16: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:704:20: call_function: calling ‘read_line’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-404): [#def130]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:120:9: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:599:1: enter_function: entry to ‘dump_error_quark’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:601:3: call_function: calling ‘escaped_printf’ from ‘dump_error_quark’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def131]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:138:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def132]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:138:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def133]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:138:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-401): [#def134]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:138:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’

Error: GCC_ANALYZER_WARNING (CWE-775): [#def135]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:685:25: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: throw: if ‘g_file_error_quark’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: danger: ‘fopen(input_filename, "rb")’ leaks here; was opened at [(5)](sarif:/runs/0/results/199/codeFlows/0/threadFlows/0/locations/4)

Error: GCC_ANALYZER_WARNING (CWE-401): [#def136]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:685:25: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: throw: if ‘g_file_error_quark’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:7: danger: ‘fopen(input_filename, "rb")’ leaks here; was allocated at [(5)](sarif:/runs/0/results/200/codeFlows/0/threadFlows/0/locations/4)

Error: GCC_ANALYZER_WARNING (CWE-775): [#def137]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:685:25: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: throw: if ‘g_file_error_from_errno’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: danger: ‘fopen(input_filename, "rb")’ leaks here; was opened at [(5)](sarif:/runs/0/results/203/codeFlows/0/threadFlows/0/locations/4)

Error: GCC_ANALYZER_WARNING (CWE-401): [#def138]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_true: following ‘true’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:685:25: branch_true: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: throw: if ‘g_file_error_from_errno’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:686:41: danger: ‘fopen(input_filename, "rb")’ leaks here; was allocated at [(5)](sarif:/runs/0/results/204/codeFlows/0/threadFlows/0/locations/4)

Error: GCC_ANALYZER_WARNING (CWE-775): [#def139]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: throw: if ‘g_hash_table_new’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: danger: ‘fopen(input_filename, "rb")’ leaks here; was opened at [(6)](sarif:/runs/0/results/205/codeFlows/0/threadFlows/0/locations/5)

Error: GCC_ANALYZER_WARNING (CWE-775): [#def140]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_resource: opened here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: throw: if ‘g_hash_table_new’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: danger: ‘fopen(output_filename, "wb")’ leaks here; was opened at [(8)](sarif:/runs/0/results/206/codeFlows/0/threadFlows/0/locations/7)

Error: GCC_ANALYZER_WARNING (CWE-401): [#def141]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(input_filename, "rb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: throw: if ‘g_hash_table_new’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: danger: ‘fopen(input_filename, "rb")’ leaks here; was allocated at [(6)](sarif:/runs/0/results/207/codeFlows/0/threadFlows/0/locations/5)

Error: GCC_ANALYZER_WARNING (CWE-401): [#def142]
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(output_filename, "wb")’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:630:1: enter_function: entry to ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:645:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:654:15: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:658:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:669:11: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:670:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:682:12: acquire_memory: allocated here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:683:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: branch_false: ...to here
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:696:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: call_function: calling ‘goutput_write’ from ‘dump_irepository’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:697:3: return_function: returning to ‘dump_irepository’ from ‘goutput_write’
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: throw: if ‘g_hash_table_new’ throws an exception...
flatpak-1.17.2/redhat-linux-build/tmp-introspecte5q6gzm8/Flatpak-1.0.c:699:18: danger: ‘fopen(output_filename, "wb")’ leaks here; was allocated at [(8)](sarif:/runs/0/results/208/codeFlows/0/threadFlows/0/locations/7)

Error: GCC_ANALYZER_WARNING (CWE-401): [#def143]
flatpak-1.17.2/revokefs/main.c:136:16: warning[-Wanalyzer-malloc-leak]: leak of ‘fdopendir(dfd)’
flatpak-1.17.2/revokefs/main.c:127:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/revokefs/main.c:132:8: branch_false: ...to here
flatpak-1.17.2/revokefs/main.c:132:8: acquire_memory: allocated here
flatpak-1.17.2/revokefs/main.c:133:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/revokefs/main.c:133:6: branch_false: ...to here
flatpak-1.17.2/revokefs/main.c:136:16: throw: if ‘readdir’ throws an exception...
flatpak-1.17.2/revokefs/main.c:136:16: danger: ‘fdopendir(dfd)’ leaks here; was allocated at [(3)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/2)
#  134|       return -errno;
#  135|   
#  136|->   while ((de = readdir (dp)) != NULL)
#  137|       {
#  138|         struct stat st;

Error: GCC_ANALYZER_WARNING (CWE-457): [#def144]
flatpak-1.17.2/session-helper/flatpak-session-helper.c:538:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘m_gai_conf’
flatpak-1.17.2/session-helper/flatpak-session-helper.c:794:22: throw: if ‘g_get_environ’ throws an exception...
flatpak-1.17.2/session-helper/flatpak-session-helper.c:788:26: call_function: inlined call to ‘glib_autoptr_cleanup_MonitorData’ from ‘main’
#  536|   }
#  537|   
#  538|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (MonitorData, monitor_data_free)
#  539|   
#  540|   static void

Error: GCC_ANALYZER_WARNING (CWE-404): [#def145]
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:102:3: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:120:1: enter_function: entry to ‘glnx_throw_errno_prefix’
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:126:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:127:3: call_function: inlined call to ‘glnx_real_set_prefix_error_from_errno_va’ from ‘glnx_throw_errno_prefix’
#  100|       return;
#  101|   
#  102|->   g_set_error_literal (error,
#  103|                          G_IO_ERROR,
#  104|                          g_io_error_from_errno (errsv),

Error: GCC_ANALYZER_WARNING (CWE-404): [#def146]
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:104:24: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:120:1: enter_function: entry to ‘glnx_throw_errno_prefix’
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:126:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/subprojects/libglnx/glnx-errors.c:127:3: call_function: inlined call to ‘glnx_real_set_prefix_error_from_errno_va’ from ‘glnx_throw_errno_prefix’
#  102|     g_set_error_literal (error,
#  103|                          G_IO_ERROR,
#  104|->                        g_io_error_from_errno (errsv),
#  105|                          g_strerror (errsv));
#  106|     glnx_real_set_prefix_error_va (*error, format, args);

Error: GCC_ANALYZER_WARNING (CWE-775): [#def147]
flatpak-1.17.2/subprojects/libglnx/glnx-local-alloc.h:70:11: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘fd’
flatpak-1.17.2/common/flatpak-run-dbus.c:114:1: enter_function: entry to ‘flatpak_run_maybe_start_dbus_proxy’
flatpak-1.17.2/common/flatpak-run-dbus.c:126:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-dbus.c:132:17: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-dbus.c:134:8: call_function: calling ‘add_bwrap_wrapper’ from ‘flatpak_run_maybe_start_dbus_proxy’
#   68|       {
#   69|         errsv = errno;
#   70|->       if (close (fd) < 0)
#   71|           g_assert (errno != EBADF);
#   72|         errno = errsv;

Error: GCC_ANALYZER_WARNING (CWE-775): [#def148]
flatpak-1.17.2/subprojects/libglnx/glnx-local-alloc.h:74:1: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘fd’
flatpak-1.17.2/common/flatpak-run-dbus.c:114:1: enter_function: entry to ‘flatpak_run_maybe_start_dbus_proxy’
flatpak-1.17.2/common/flatpak-run-dbus.c:126:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/common/flatpak-run-dbus.c:132:17: branch_false: ...to here
flatpak-1.17.2/common/flatpak-run-dbus.c:134:8: call_function: calling ‘add_bwrap_wrapper’ from ‘flatpak_run_maybe_start_dbus_proxy’
#   72|         errno = errsv;
#   73|       }
#   74|-> }
#   75|   
#   76|   /**

Error: GCC_ANALYZER_WARNING (CWE-688): [#def149]
flatpak-1.17.2/subprojects/libglnx/glnx-lockfile.c:91:22: warning[-Wanalyzer-null-argument]: use of NULL ‘p’ where non-null expected
flatpak-1.17.2/subprojects/libglnx/glnx-lockfile.c:64:1: enter_function: entry to ‘glnx_make_lock_file’
flatpak-1.17.2/subprojects/libglnx/glnx-lockfile.c:80:9: release_memory: ‘p’ is NULL
flatpak-1.17.2/subprojects/libglnx/glnx-lockfile.c:91:22: danger: argument 2 (‘p’) NULL where non-null expected
#   89|                   struct stat st;
#   90|   
#   91|->                 fd = openat(dfd, p, O_CREAT|O_RDWR|O_NOFOLLOW|O_CLOEXEC|O_NOCTTY, 0600);
#   92|                   if (fd < 0)
#   93|                           return glnx_throw_errno(error);

Error: CPPCHECK_WARNING (CWE-457): [#def150]
flatpak-1.17.2/subprojects/libglnx/glnx-xattrs.c:384: error[uninitvar]: Uninitialized variable: bytes_read
#  382|       return glnx_null_throw_errno_prefix (error, "lgetxattr(%s)", attribute);
#  383|   
#  384|->   g_autofree guint8 *buf = g_malloc (bytes_read);
#  385|     if (TEMP_FAILURE_RETRY (real_size = lgetxattr (pathbuf, attribute, buf, bytes_read)) < 0)
#  386|       return glnx_null_throw_errno_prefix (error, "lgetxattr(%s)", attribute);

Error: CPPCHECK_WARNING (CWE-457): [#def151]
flatpak-1.17.2/subprojects/libglnx/glnx-xattrs.c:388: error[uninitvar]: Uninitialized variable: real_size
#  386|       return glnx_null_throw_errno_prefix (error, "lgetxattr(%s)", attribute);
#  387|   
#  388|->   return g_bytes_new_take (g_steal_pointer (&buf), real_size);
#  389|   }
#  390|   

Error: CPPCHECK_WARNING (CWE-457): [#def152]
flatpak-1.17.2/subprojects/libglnx/glnx-xattrs.c:409: error[uninitvar]: Uninitialized variable: bytes_read
#  407|       return glnx_null_throw_errno_prefix (error, "fgetxattr(%s)", attribute);
#  408|   
#  409|->   g_autofree guint8 *buf = g_malloc (bytes_read);
#  410|     if (TEMP_FAILURE_RETRY (real_size = fgetxattr (fd, attribute, buf, bytes_read)) < 0)
#  411|       return glnx_null_throw_errno_prefix (error, "fgetxattr(%s)", attribute);

Error: CPPCHECK_WARNING (CWE-457): [#def153]
flatpak-1.17.2/subprojects/libglnx/glnx-xattrs.c:413: error[uninitvar]: Uninitialized variable: real_size
#  411|       return glnx_null_throw_errno_prefix (error, "fgetxattr(%s)", attribute);
#  412|   
#  413|->   return g_bytes_new_take (g_steal_pointer (&buf), real_size);
#  414|   }
#  415|   

Error: GCC_ANALYZER_WARNING (CWE-457): [#def154]
flatpak-1.17.2/system-helper/flatpak-system-helper.c:72:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘result’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1853:1: enter_function: entry to ‘flatpak_authorize_method_handler’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1869:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1878:12: branch_false: ...to here
flatpak-1.17.2/system-helper/flatpak-system-helper.c:2128:16: throw: if ‘polkit_authority_check_authorization_sync’ throws an exception...
flatpak-1.17.2/system-helper/flatpak-system-helper.c:2120:25: call_function: inlined call to ‘glib_autoptr_cleanup_GError’ from ‘flatpak_authorize_method_handler’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:2119:48: call_function: inlined call to ‘glib_autoptr_cleanup_AutoPolkitAuthorizationResult’ from ‘flatpak_authorize_method_handler’
#   70|   typedef PolkitSubject             AutoPolkitSubject;
#   71|   
#   72|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (AutoPolkitAuthorizationResult, g_object_unref)
#   73|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (AutoPolkitDetails, g_object_unref)
#   74|   G_DEFINE_AUTOPTR_CLEANUP_FUNC (AutoPolkitSubject, g_object_unref)

Error: GCC_ANALYZER_WARNING (CWE-457): [#def155]
flatpak-1.17.2/system-helper/flatpak-system-helper.c:154:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ongoing_pull’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:342:1: enter_function: entry to ‘handle_deploy’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:368:3: throw: if ‘g_log’ throws an exception...
flatpak-1.17.2/system-helper/flatpak-system-helper.c:365:21: call_function: calling ‘g_autoptr_cleanup_generic_gfree’ from ‘handle_deploy’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:364:26: call_function: inlined call to ‘glib_autoptr_cleanup_OngoingPull’ from ‘handle_deploy’
#  152|   }
#  153|   
#  154|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (OngoingPull, ongoing_pull_free);
#  155|   
#  156|   static void

Error: GCC_ANALYZER_WARNING (CWE-457): [#def156]
flatpak-1.17.2/system-helper/flatpak-system-helper.c:154:1: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘pull’
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1503:10: throw: if ‘g_slice_alloc’ throws an exception...
flatpak-1.17.2/system-helper/flatpak-system-helper.c:1498:26: call_function: inlined call to ‘glib_autoptr_cleanup_OngoingPull’ from ‘ongoing_pull_new’
#  152|   }
#  153|   
#  154|-> G_DEFINE_AUTOPTR_CLEANUP_FUNC (OngoingPull, ongoing_pull_free);
#  155|   
#  156|   static void

Error: GCC_ANALYZER_WARNING (CWE-775): [#def157]
flatpak-1.17.2/tests/test-update-portal.c:428:7: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipes[0]’
flatpak-1.17.2/tests/test-update-portal.c:388:6: branch_false: following ‘false’ branch (when ‘argc > 1’)...
flatpak-1.17.2/tests/test-update-portal.c:394:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:410:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/test-update-portal.c:416:9: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:417:6: branch_false: following ‘false’ branch (when ‘pid != -1’)...
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_true: following ‘true’ branch (when ‘pid != 0’)...
flatpak-1.17.2/tests/test-update-portal.c:428:7: branch_true: ...to here
flatpak-1.17.2/tests/test-update-portal.c:428:7: throw: if ‘close’ throws an exception...
flatpak-1.17.2/tests/test-update-portal.c:428:7: danger: ‘pipes[0]’ leaks here
#  426|   
#  427|         /* parent */
#  428|->       close (pipes[1]);
#  429|         if (read (pipes[0], &c, 1) != 1)
#  430|           return 1;

Error: GCC_ANALYZER_WARNING (CWE-775): [#def158]
flatpak-1.17.2/tests/test-update-portal.c:428:7: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipes[1]’
flatpak-1.17.2/tests/test-update-portal.c:388:6: branch_false: following ‘false’ branch (when ‘argc > 1’)...
flatpak-1.17.2/tests/test-update-portal.c:394:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:410:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/test-update-portal.c:416:9: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:417:6: branch_false: following ‘false’ branch (when ‘pid != -1’)...
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_true: following ‘true’ branch (when ‘pid != 0’)...
flatpak-1.17.2/tests/test-update-portal.c:428:7: branch_true: ...to here
flatpak-1.17.2/tests/test-update-portal.c:428:7: throw: if ‘close’ throws an exception...
flatpak-1.17.2/tests/test-update-portal.c:428:7: danger: ‘pipes[1]’ leaks here
#  426|   
#  427|         /* parent */
#  428|->       close (pipes[1]);
#  429|         if (read (pipes[0], &c, 1) != 1)
#  430|           return 1;

Error: GCC_ANALYZER_WARNING (CWE-775): [#def159]
flatpak-1.17.2/tests/test-update-portal.c:438:7: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipes[0]’
flatpak-1.17.2/tests/test-update-portal.c:388:6: branch_false: following ‘false’ branch (when ‘argc > 1’)...
flatpak-1.17.2/tests/test-update-portal.c:394:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:394:6: branch_true: following ‘true’ branch (when the strings are equal)...
flatpak-1.17.2/tests/test-update-portal.c:410:7: branch_true: ...to here
flatpak-1.17.2/tests/test-update-portal.c:410:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/test-update-portal.c:416:9: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:417:6: branch_false: following ‘false’ branch (when ‘pid != -1’)...
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: following ‘false’ branch (when ‘pid == 0’)...
flatpak-1.17.2/tests/test-update-portal.c:438:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:438:7: throw: if ‘close’ throws an exception...
flatpak-1.17.2/tests/test-update-portal.c:438:7: danger: ‘pipes[0]’ leaks here
#  436|         int res;
#  437|   
#  438|->       close (pipes[0]);
#  439|   
#  440|         res = run_test (pipes[1], argc > 2 ? argv[2] : "pid.out", test_callback);

Error: GCC_ANALYZER_WARNING (CWE-775): [#def160]
flatpak-1.17.2/tests/test-update-portal.c:438:7: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘pipes[1]’
flatpak-1.17.2/tests/test-update-portal.c:388:6: branch_false: following ‘false’ branch (when ‘argc > 1’)...
flatpak-1.17.2/tests/test-update-portal.c:394:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:394:6: branch_true: following ‘true’ branch (when the strings are equal)...
flatpak-1.17.2/tests/test-update-portal.c:410:7: branch_true: ...to here
flatpak-1.17.2/tests/test-update-portal.c:410:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/test-update-portal.c:416:9: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:417:6: branch_false: following ‘false’ branch (when ‘pid != -1’)...
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:423:6: branch_false: following ‘false’ branch (when ‘pid == 0’)...
flatpak-1.17.2/tests/test-update-portal.c:438:7: branch_false: ...to here
flatpak-1.17.2/tests/test-update-portal.c:438:7: throw: if ‘close’ throws an exception...
flatpak-1.17.2/tests/test-update-portal.c:438:7: danger: ‘pipes[1]’ leaks here
#  436|         int res;
#  437|   
#  438|->       close (pipes[0]);
#  439|   
#  440|         res = run_test (pipes[1], argc > 2 ? argv[2] : "pid.out", test_callback);

Error: GCC_ANALYZER_WARNING (CWE-685): [#def161]
flatpak-1.17.2/tests/testapp.c:150:7: warning[-Wanalyzer-va-list-exhausted]: ‘args’ has no more arguments (1 consumed)
flatpak-1.17.2/tests/testapp.c:160:1: enter_function: entry to ‘test_parse_numbers’
flatpak-1.17.2/tests/testapp.c:165:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 1 variadic argument
#  148|     for (i = 0; num[i]; i++)
#  149|       {
#  150|->       n = va_arg (args, int);
#  151|         g_assert_true (n == num[i]);
#  152|       }

Error: GCC_ANALYZER_WARNING (CWE-685): [#def162]
flatpak-1.17.2/tests/testapp.c:150:7: warning[-Wanalyzer-va-list-exhausted]: ‘args’ has no more arguments (2 consumed)
flatpak-1.17.2/tests/testapp.c:160:1: enter_function: entry to ‘test_parse_numbers’
flatpak-1.17.2/tests/testapp.c:165:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 1 variadic argument
flatpak-1.17.2/tests/testapp.c:165:3: return_function: returning to ‘test_parse_numbers’ from ‘assert_numbers’
flatpak-1.17.2/tests/testapp.c:166:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testapp.c:166:3: branch_true: ...to here
flatpak-1.17.2/tests/testapp.c:169:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 2 variadic arguments
#  148|     for (i = 0; num[i]; i++)
#  149|       {
#  150|->       n = va_arg (args, int);
#  151|         g_assert_true (n == num[i]);
#  152|       }

Error: GCC_ANALYZER_WARNING (CWE-404): [#def163]
flatpak-1.17.2/tests/testapp.c:151:7: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/tests/testapp.c:147:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/tests/testapp.c:148:15: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testapp.c:150:7: branch_true: ...to here
flatpak-1.17.2/tests/testapp.c:151:7: throw: if ‘g_assertion_message’ throws an exception...
flatpak-1.17.2/tests/testapp.c:151:7: danger: missing call to ‘va_end’ to match ‘va_start’ at [(1)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/0)
#  149|       {
#  150|         n = va_arg (args, int);
#  151|->       g_assert_true (n == num[i]);
#  152|       }
#  153|   

Error: GCC_ANALYZER_WARNING (CWE-685): [#def164]
flatpak-1.17.2/tests/testapp.c:154:3: warning[-Wanalyzer-va-list-exhausted]: ‘args’ has no more arguments (1 consumed)
flatpak-1.17.2/tests/testapp.c:160:1: enter_function: entry to ‘test_parse_numbers’
flatpak-1.17.2/tests/testapp.c:165:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 1 variadic argument
#  152|       }
#  153|   
#  154|->   n = va_arg (args, int);
#  155|     g_assert_true (n == 0);
#  156|     va_end (args);

Error: GCC_ANALYZER_WARNING (CWE-685): [#def165]
flatpak-1.17.2/tests/testapp.c:154:3: warning[-Wanalyzer-va-list-exhausted]: ‘args’ has no more arguments (2 consumed)
flatpak-1.17.2/tests/testapp.c:160:1: enter_function: entry to ‘test_parse_numbers’
flatpak-1.17.2/tests/testapp.c:165:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 1 variadic argument
flatpak-1.17.2/tests/testapp.c:165:3: return_function: returning to ‘test_parse_numbers’ from ‘assert_numbers’
flatpak-1.17.2/tests/testapp.c:166:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testapp.c:166:3: branch_true: ...to here
flatpak-1.17.2/tests/testapp.c:169:3: call_function: calling ‘assert_numbers’ from ‘test_parse_numbers’ with 2 variadic arguments
#  152|       }
#  153|   
#  154|->   n = va_arg (args, int);
#  155|     g_assert_true (n == 0);
#  156|     va_end (args);

Error: GCC_ANALYZER_WARNING (CWE-404): [#def166]
flatpak-1.17.2/tests/testapp.c:155:3: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’
flatpak-1.17.2/tests/testapp.c:147:3: acquire_resource: ‘va_start’ called here
flatpak-1.17.2/tests/testapp.c:155:3: branch_false: following ‘false’ branch (when ‘n != 0’)...
flatpak-1.17.2/tests/testapp.c:155:3: branch_false: ...to here
flatpak-1.17.2/tests/testapp.c:155:3: throw: if ‘g_assertion_message’ throws an exception...
flatpak-1.17.2/tests/testapp.c:155:3: danger: missing call to ‘va_end’ to match ‘va_start’ at [(1)](sarif:/runs/0/results/5/codeFlows/0/threadFlows/0/locations/0)
#  153|   
#  154|     n = va_arg (args, int);
#  155|->   g_assert_true (n == 0);
#  156|     va_end (args);
#  157|   }

Error: GCC_ANALYZER_WARNING (CWE-476): [#def167]
flatpak-1.17.2/tests/testlib.c:223:3: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘newline’
flatpak-1.17.2/tests/testlib.c:164:1: enter_function: entry to ‘tests_dbus_daemon_setup’
flatpak-1.17.2/tests/testlib.c:168:20: release_memory: ‘config_arg’ is NULL
flatpak-1.17.2/tests/testlib.c:169:20: release_memory: ‘config_arg’ is NULL
flatpak-1.17.2/tests/testlib.c:170:20: release_memory: ‘config_arg’ is NULL
flatpak-1.17.2/tests/testlib.c:175:3: branch_true: following ‘true’ branch (when ‘self’ is non-NULL)...
flatpak-1.17.2/tests/testlib.c:176:3: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:176:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testlib.c:177:3: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:177:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testlib.c:178:3: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:178:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testlib.c:180:20: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:186:3: call_function: calling ‘replace_tokens’ from ‘tests_dbus_daemon_setup’
flatpak-1.17.2/tests/testlib.c:186:3: return_function: returning to ‘tests_dbus_daemon_setup’ from ‘replace_tokens’
flatpak-1.17.2/tests/testlib.c:204:10: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/testlib.c:219:3: branch_false: ...to here
flatpak-1.17.2/tests/testlib.c:222:3: branch_false: following ‘false’ branch (when ‘newline’ is NULL)...
flatpak-1.17.2/tests/testlib.c:222:3: branch_false: ...to here
flatpak-1.17.2/tests/testlib.c:223:3: danger: dereference of NULL ‘newline’
#  221|     newline = strchr (address_buffer, '\n');
#  222|     g_assert_nonnull (newline);
#  223|->   *newline = '\0';
#  224|     self->dbus_address = g_strdup (address_buffer);
#  225|   }

Error: GCC_ANALYZER_WARNING (CWE-775): [#def168]
flatpak-1.17.2/tests/testlib.c:265:6: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(2, 1)’
flatpak-1.17.2/tests/testlib.c:262:6: branch_false: following ‘false’ branch...
flatpak-1.17.2/tests/testlib.c:265:7: branch_false: ...to here
flatpak-1.17.2/tests/testlib.c:265:7: acquire_resource: opened here
flatpak-1.17.2/tests/testlib.c:265:6: danger: ‘dup2(2, 1)’ leaks here; was opened at [(3)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/2)
#  263|       g_error ("fcntl F_DUPFD_CLOEXEC: %s", g_strerror (errno));
#  264|   
#  265|->   if (dup2 (STDERR_FILENO, STDOUT_FILENO) < 0)
#  266|       g_error ("dup2: %s", g_strerror (errno));
#  267|   

Error: GCC_ANALYZER_WARNING (CWE-775): [#def169]
flatpak-1.17.2/tests/testlib.c:279:6: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(*original.fd, 1)’
flatpak-1.17.2/tests/testlib.c:276:3: branch_true: following ‘true’ branch (when ‘original’ is non-NULL)...
flatpak-1.17.2/tests/testlib.c:277:3: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:277:3: branch_true: following ‘true’ branch...
flatpak-1.17.2/tests/testlib.c:279:7: branch_true: ...to here
flatpak-1.17.2/tests/testlib.c:279:7: acquire_resource: opened here
flatpak-1.17.2/tests/testlib.c:279:6: danger: ‘dup2(*original.fd, 1)’ leaks here; was opened at [(5)](sarif:/runs/0/results/3/codeFlows/0/threadFlows/0/locations/4)
#  277|     g_return_if_fail (original->fd >= 0);
#  278|   
#  279|->   if (dup2 (original->fd, STDOUT_FILENO) < 0)
#  280|       g_error ("dup2: %s", g_strerror (errno));
#  281|   

Error: GCC_ANALYZER_WARNING: [#def170]
flatpak-1.17.2/tests/try-syscall.c:166:15: warning[-Wanalyzer-fd-use-without-check]: ‘listen’ on possibly invalid file descriptor ‘-1’
flatpak-1.17.2/tests/try-syscall.c:84:15: branch_true: following ‘true’ branch (when ‘i < argc’)...
flatpak-1.17.2/tests/try-syscall.c:86:29: branch_true: ...to here
flatpak-1.17.2/tests/try-syscall.c:96:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:105:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:105:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:114:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:114:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:123:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:123:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:132:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:132:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:142:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:142:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:154:16: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:154:15: branch_false: following ‘false’ branch (when the strings are non-equal)...
flatpak-1.17.2/tests/try-syscall.c:163:15: branch_false: ...to here
flatpak-1.17.2/tests/try-syscall.c:163:14: branch_true: following ‘true’ branch (when the strings are equal)...
flatpak-1.17.2/tests/try-syscall.c:166:15: branch_true: ...to here
flatpak-1.17.2/tests/try-syscall.c:166:15: danger: ‘-1’ could be invalid
#  164|           {
#  165|             /* If not blocked by seccomp, this will fail with EBADF */
#  166|->           if (listen (-1, 42) != 0)
#  167|               {
#  168|                 errsv = errno;

Scan Properties