Error: GCC_ANALYZER_WARNING (CWE-404): [#def1] satyr-0.43/lib/core_unwind.c:103:18: warning[-Wanalyzer-va-list-leak]: missing call to 'va_end' satyr-0.43/lib/core_unwind.c:99:8: branch_false: following 'false' branch (when 'error_msg' is non-NULL)... satyr-0.43/lib/core_unwind.c:102:5: branch_false: ...to here satyr-0.43/lib/core_unwind.c:102:5: acquire_resource: 'va_start' called here satyr-0.43/lib/core_unwind.c:103:18: danger: missing call to 'va_end' to match 'va_start' at [(3)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/2) # 101| # 102| va_start(ap, fmt); # 103|-> *error_msg = g_strdup_vprintf(fmt, ap); # 104| va_end(ap); # 105| } Error: GCC_ANALYZER_WARNING (CWE-775): [#def2] satyr-0.43/lib/core_unwind.c:145:17: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'open(executable_file, 0)' satyr-0.43/lib/core_unwind.c:140:18: acquire_resource: opened here satyr-0.43/lib/core_unwind.c:141:12: branch_false: following 'false' branch... satyr-0.43/lib/core_unwind.c:144:22: branch_false: ...to here satyr-0.43/lib/core_unwind.c:145:17: danger: 'open(executable_file, 0)' leaks here; was opened at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 143| # 144| *file_name = realpath(executable_file, NULL); # 145|-> *elfp = elf_begin(fd, ELF_C_READ_MMAP, NULL); # 146| if (*elfp == NULL) # 147| { Error: GCC_ANALYZER_WARNING (CWE-775): [#def3] satyr-0.43/lib/core_unwind.c:224:5: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'open(elf_file, 0)' satyr-0.43/lib/core_unwind.c:210:8: branch_false: following 'false' branch... satyr-0.43/lib/core_unwind.c:217:14: branch_false: ...to here satyr-0.43/lib/core_unwind.c:217:14: acquire_resource: opened here satyr-0.43/lib/core_unwind.c:218:8: branch_false: following 'false' branch... satyr-0.43/lib/core_unwind.c:224:14: branch_false: ...to here satyr-0.43/lib/core_unwind.c:224:5: danger: 'open(elf_file, 0)' leaks here; was opened at [(3)](sarif:/runs/0/results/2/codeFlows/0/threadFlows/0/locations/2) # 222| } # 223| # 224|-> ch->eh = elf_begin(ch->fd, ELF_C_READ_MMAP, NULL); # 225| if (ch->eh == NULL) # 226| { Error: GCC_ANALYZER_WARNING (CWE-775): [#def4] satyr-0.43/lib/elves.c:135:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'open(filename, 0)' satyr-0.43/lib/elves.c:124:14: acquire_resource: opened here satyr-0.43/lib/elves.c:125:8: branch_false: following 'false' branch... satyr-0.43/lib/elves.c:135:16: branch_false: ...to here satyr-0.43/lib/elves.c:135:16: danger: 'open(filename, 0)' leaks here; was opened at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 133| # 134| /* Initialize libelf on the opened file. */ # 135|-> Elf *elf = elf_begin(fd, ELF_C_READ, NULL); # 136| if (!elf) # 137| { Error: GCC_ANALYZER_WARNING (CWE-775): [#def5] satyr-0.43/lib/elves.c:515:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor 'open(filename, 0)' satyr-0.43/lib/elves.c:505:14: acquire_resource: opened here satyr-0.43/lib/elves.c:506:8: branch_false: following 'false' branch... satyr-0.43/lib/elves.c:515:16: branch_false: ...to here satyr-0.43/lib/elves.c:515:16: danger: 'open(filename, 0)' leaks here; was opened at [(1)](sarif:/runs/0/results/1/codeFlows/0/threadFlows/0/locations/0) # 513| # 514| /* Initialize libelf on the opened file. */ # 515|-> Elf *elf = elf_begin(fd, ELF_C_READ, NULL); # 516| if (!elf) # 517| { Error: GCC_ANALYZER_WARNING (CWE-476): [#def6] satyr-0.43/lib/js_stacktrace.c:192:13: warning[-Wanalyzer-null-dereference]: dereference of NULL 'last_frame' satyr-0.43/lib/js_stacktrace.c:145:8: branch_false: following 'false' branch... satyr-0.43/lib/js_stacktrace.c:151:8: branch_false: ...to here satyr-0.43/lib/js_stacktrace.c:151:8: branch_true: following 'true' branch... satyr-0.43/lib/js_stacktrace.c:157:5: branch_true: ...to here satyr-0.43/lib/js_stacktrace.c:163:8: branch_false: following 'false' branch... satyr-0.43/lib/js_stacktrace.c:175:10: branch_false: ...to here satyr-0.43/lib/js_stacktrace.c:175:8: branch_true: following 'true' branch... branch_true: ...to here satyr-0.43/lib/js_stacktrace.c:182:12: branch_true: following 'true' branch... satyr-0.43/lib/js_stacktrace.c:184:45: branch_true: ...to here satyr-0.43/lib/js_stacktrace.c:186:12: branch_false: following 'false' branch... satyr-0.43/lib/js_stacktrace.c:189:13: branch_false: ...to here satyr-0.43/lib/js_stacktrace.c:189:12: branch_false: following 'false' branch... satyr-0.43/lib/js_stacktrace.c:192:13: branch_false: ...to here satyr-0.43/lib/js_stacktrace.c:192:13: danger: dereference of NULL 'last_frame' # 190| stacktrace->frames = current_frame; # 191| else # 192|-> last_frame->next = current_frame; # 193| # 194| /* Eat newline (except at the end of file). */ Error: GCC_ANALYZER_WARNING: [#def7] satyr-0.43/tests/dump_core.c:64:9: warning[-Wanalyzer-fd-use-without-check]: ‘dup2’ on possibly invalid file descriptor ‘fd’ satyr-0.43/tests/dump_core.c:98:1: enter_function: entry to ‘main’ satyr-0.43/tests/dump_core.c:106:10: call_function: calling ‘dump_core’ from ‘main’ # 62| fd = open("/dev/null", O_WRONLY); # 63| # 64|-> dup2(fd, STDOUT_FILENO); # 65| dup2(fd, STDERR_FILENO); # 66| Error: GCC_ANALYZER_WARNING: [#def8] satyr-0.43/tests/dump_core.c:65:9: warning[-Wanalyzer-fd-use-without-check]: ‘dup2’ on possibly invalid file descriptor ‘fd’ satyr-0.43/tests/dump_core.c:98:1: enter_function: entry to ‘main’ satyr-0.43/tests/dump_core.c:106:10: call_function: calling ‘dump_core’ from ‘main’ # 63| # 64| dup2(fd, STDOUT_FILENO); # 65|-> dup2(fd, STDERR_FILENO); # 66| # 67| close(fd); Error: GCC_ANALYZER_WARNING (CWE-775): [#def9] satyr-0.43/tests/dump_core.c:67:9: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘fd’ satyr-0.43/tests/dump_core.c:98:1: enter_function: entry to ‘main’ satyr-0.43/tests/dump_core.c:106:10: call_function: calling ‘dump_core’ from ‘main’ # 65| dup2(fd, STDERR_FILENO); # 66| # 67|-> close(fd); # 68| # 69| execv("/usr/bin/gcore", (char *const *) argv);
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-47.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | satyr-0.43-9.fc44 |
| store-results-to | /tmp/tmpi82v1vgy/satyr-0.43-9.fc44.tar.xz |
| time-created | 2025-10-28 20:29:42 |
| time-finished | 2025-10-28 20:31:37 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpi82v1vgy/satyr-0.43-9.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmpi82v1vgy/satyr-0.43-9.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |