Error: SHELLCHECK_WARNING (CWE-569): [#def1] /usr/bin/startxfce4:25:14: warning[SC2048]: Use "$@" (with quotes) to prevent whitespace problems. # 23| then # 24| OPTS="" # 25|-> for OPT in $* # 26| do # 27| if test "x$OPT" = "x--help" Error: SHELLCHECK_WARNING (CWE-277): [#def2] /usr/bin/startxfce4:72:19: warning[SC2174]: When used with -p, -m only applies to the deepest directory. # 70| echo "XDG_RUNTIME_DIR is invalid or does not exist!" # 71| echo "Creating XDG_RUNTIME_DIR..." # 72|-> mkdir -p -m 0700 "${XDG_RUNTIME_DIR}" || { # 73| echo "Unable to create runtime directory ${XDG_RUNTIME_DIR}!" # 74| exit 1 Error: SHELLCHECK_WARNING (CWE-457): [#def3] /usr/bin/startxfce4:254:53: warning[SC2154]: tty_num is referenced but not assigned. # 252| # 253| if [ -f $BASEDIR/xinitrc ]; then # 254|-> exec $prog $BASEDIR/xinitrc $CLIENTRC $SERVERRC vt${tty_num} # 255| elif [ -f $HOME/.xfce4/xinitrc ]; then # 256| mkdir -p $BASEDIR Error: SHELLCHECK_WARNING (CWE-156): [#def4] /usr/bin/xflock4:52:12: warning[SC2046]: Quote this to prevent word splitting. # 50| # $(((1<<31)-1)) is MAXINT, which disables timeout: see # 51| # https://dbus.freedesktop.org/doc/api/html/group__DBusPendingCall.html # 52|-> ret=$(echo $(dbus-send --session \ # 53| --dest=org.xfce.SessionManager \ # 54| --print-reply=literal \ Error: COMPILER_WARNING (CWE-477): [#def5] xfce4-session-4.20.3/libxfsm/xfsm-util.c: scope_hint: In function 'xfsm_start_application' xfce4-session-4.20.3/libxfsm/xfsm-util.c:79:42: warning[-Wdeprecated-declarations]: 'gdk_screen_get_number' is deprecated # 79 | gdk_screen_get_number (screen)); # | ^~~~~~~~~~~~~~~~~~~~~ /usr/include/gtk-3.0/gdk/gdkapplaunchcontext.h:31: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdk.h:32: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkx.h:28: included_from: Included from here. xfce4-session-4.20.3/libxfsm/xfsm-util.h:26: included_from: Included from here. xfce4-session-4.20.3/libxfsm/xfsm-util.c:39: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkscreen.h:56:14: note: declared here # 56 | gint gdk_screen_get_number (GdkScreen *screen); # | ^~~~~~~~~~~~~~~~~~~~~ # 77| # 78| screen_name = g_strdup_printf ("%s.%d", display_name, # 79|-> gdk_screen_get_number (screen)); # 80| } # 81| else Error: COMPILER_WARNING (CWE-477): [#def6] xfce4-session-4.20.3/libxfsm/xfsm-util.c:79:42: warning[-Wdeprecated-declarations]: 'gdk_screen_get_number' is deprecated # 77| # 78| screen_name = g_strdup_printf ("%s.%d", display_name, # 79|-> gdk_screen_get_number (screen)); # 80| } # 81| else Error: COMPILER_WARNING (CWE-477): [#def7] xfce4-session-4.20.3/libxfsm/xfsm-util.c:82:9: warning[-Wdeprecated-declarations]: 'gdk_screen_make_display_name' is deprecated # 82 | screen_name = gdk_screen_make_display_name (screen); # | ^~~~~~~~~~~ /usr/include/gtk-3.0/gdk/gdkscreen.h:71:14: note: declared here # 71 | gchar * gdk_screen_make_display_name (GdkScreen *screen); # | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~ # 80| } # 81| else # 82|-> screen_name = gdk_screen_make_display_name (screen); # 83| argv[argc++] = g_strdup ("env"); # 84| argv[argc++] = g_strdup_printf ("DISPLAY=%s", screen_name); Error: COMPILER_WARNING (CWE-477): [#def8] xfce4-session-4.20.3/libxfsm/xfsm-util.c:82:9: warning[-Wdeprecated-declarations]: 'gdk_screen_make_display_name' is deprecated # 80| } # 81| else # 82|-> screen_name = gdk_screen_make_display_name (screen); # 83| argv[argc++] = g_strdup ("env"); # 84| argv[argc++] = g_strdup_printf ("DISPLAY=%s", screen_name); Error: GCC_ANALYZER_WARNING (CWE-401): [#def9] xfce4-session-4.20.3/xfce4-session/ice-layer.c:231:8: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_cleanup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ # 229| mode = umask (0077); # 230| # 231|-> fd = g_file_open_tmp (".xfsm-ICE-XXXXXX", name, &error); # 232| if (fd < 0) # 233| { Error: GCC_ANALYZER_WARNING (CWE-401): [#def10] xfce4-session-4.20.3/xfce4-session/ice-layer.c:234:7: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_cleanup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ # 232| if (fd < 0) # 233| { # 234|-> g_warning ("Unable to open temporary file: %s", error->message); # 235| g_error_free (error); # 236| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def11] xfce4-session-4.20.3/xfce4-session/ice-layer.c:235:7: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_cleanup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ # 233| { # 234| g_warning ("Unable to open temporary file: %s", error->message); # 235|-> g_error_free (error); # 236| } # 237| else Error: GCC_ANALYZER_WARNING (CWE-401): [#def12] xfce4-session-4.20.3/xfce4-session/ice-layer.c:271:22: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:345:7: call_function: calling ‘ice_auth_add’ from ‘ice_setup_listeners’ # 269| # 270| entry.protocol_name = protocol; # 271|-> entry.network_id = IceGetListenConnectionString (ice_listener); # 272| entry.auth_name = "MIT-MAGIC-COOKIE-1"; # 273| entry.auth_data = IceGenerateMagicCookie (16); Error: GCC_ANALYZER_WARNING (CWE-401): [#def13] xfce4-session-4.20.3/xfce4-session/ice-layer.c:273:21: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:345:7: call_function: calling ‘ice_auth_add’ from ‘ice_setup_listeners’ # 271| entry.network_id = IceGetListenConnectionString (ice_listener); # 272| entry.auth_name = "MIT-MAGIC-COOKIE-1"; # 273|-> entry.auth_data = IceGenerateMagicCookie (16); # 274| entry.auth_data_length = 16; # 275| Error: GCC_ANALYZER_WARNING (CWE-401): [#def14] xfce4-session-4.20.3/xfce4-session/ice-layer.c:276:3: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:345:7: call_function: calling ‘ice_auth_add’ from ‘ice_setup_listeners’ # 274| entry.auth_data_length = 16; # 275| # 276|-> IceSetPaAuthData (1, &entry); # 277| # 278| fprintf (setup_fp, Error: GCC_ANALYZER_WARNING (CWE-401): [#def15] xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:12: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:12: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/6/codeFlows/0/threadFlows/0/locations/14) # 325| for (n = 0; n < num_listeners; n++) # 326| { # 327|-> fd = IceGetListenConnectionNumber (listen_objs[n]); # 328| # 329| /* Make sure we don't pass on these file descriptors to an Error: GCC_ANALYZER_WARNING (CWE-401): [#def16] xfce4-session-4.20.3/xfce4-session/ice-layer.c:332:13: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:332:13: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/7/codeFlows/0/threadFlows/0/locations/14) # 330| * exec'd child process. # 331| */ # 332|-> ret = fcntl (fd, F_SETFD, fcntl (fd, F_GETFD, 0) | FD_CLOEXEC); # 333| if (ret == -1) # 334| { Error: GCC_ANALYZER_WARNING (CWE-401): [#def17] xfce4-session-4.20.3/xfce4-session/ice-layer.c:332:33: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:332:33: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/8/codeFlows/0/threadFlows/0/locations/14) # 330| * exec'd child process. # 331| */ # 332|-> ret = fcntl (fd, F_SETFD, fcntl (fd, F_GETFD, 0) | FD_CLOEXEC); # 333| if (ret == -1) # 334| { Error: GCC_ANALYZER_WARNING (CWE-401): [#def18] xfce4-session-4.20.3/xfce4-session/ice-layer.c:335:11: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:333:10: branch_true: following ‘true’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:335:11: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:335:11: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/9/codeFlows/0/threadFlows/0/locations/14) # 333| if (ret == -1) # 334| { # 335|-> perror ("ice_setup_listeners: fcntl (fd, F_SETFD, fcntl (fd, F_GETFD, 0) | FD_CLOEXEC) failed"); # 336| } # 337| Error: GCC_ANALYZER_WARNING (CWE-401): [#def19] xfce4-session-4.20.3/xfce4-session/ice-layer.c:338:17: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:338:17: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/10/codeFlows/0/threadFlows/0/locations/14) # 336| } # 337| # 338|-> channel = g_io_channel_unix_new (fd); # 339| g_io_add_watch (channel, G_IO_ERR | G_IO_HUP | G_IO_IN, # 340| ice_connection_accept, Error: GCC_ANALYZER_WARNING (CWE-401): [#def20] xfce4-session-4.20.3/xfce4-session/ice-layer.c:339:7: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:339:7: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/11/codeFlows/0/threadFlows/0/locations/14) # 337| # 338| channel = g_io_channel_unix_new (fd); # 339|-> g_io_add_watch (channel, G_IO_ERR | G_IO_HUP | G_IO_IN, # 340| ice_connection_accept, # 341| listen_objs[n]); Error: GCC_ANALYZER_WARNING (CWE-401): [#def21] xfce4-session-4.20.3/xfce4-session/ice-layer.c:342:7: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:342:7: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/12/codeFlows/0/threadFlows/0/locations/14) # 340| ice_connection_accept, # 341| listen_objs[n]); # 342|-> g_io_channel_unref (channel); # 343| # 344| /* setup auth for this listener */ Error: GCC_ANALYZER_WARNING (CWE-401): [#def22] xfce4-session-4.20.3/xfce4-session/ice-layer.c:347:7: warning[-Wanalyzer-malloc-leak]: leak of ‘ice_tmpfile(&auth_setup_file)’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:296:1: enter_function: entry to ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:312:16: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:313:6: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: call_function: calling ‘ice_tmpfile’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:316:14: return_function: returning to ‘ice_setup_listeners’ from ‘ice_tmpfile’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:317:6: branch_false: following ‘false’ branch... branch_false: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:325:15: branch_true: following ‘true’ branch (when ‘n < num_listeners’)... xfce4-session-4.20.3/xfce4-session/ice-layer.c:327:53: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/ice-layer.c:345:7: call_function: calling ‘ice_auth_add’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:345:7: return_function: returning to ‘ice_setup_listeners’ from ‘ice_auth_add’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:346:7: call_function: calling ‘ice_auth_add’ from ‘ice_setup_listeners’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:346:7: return_function: returning to ‘ice_setup_listeners’ from ‘ice_auth_add’ xfce4-session-4.20.3/xfce4-session/ice-layer.c:347:7: danger: ‘ice_tmpfile(&auth_setup_file)’ leaks here; was allocated at [(15)](sarif:/runs/0/results/13/codeFlows/0/threadFlows/0/locations/14) # 345| ice_auth_add (setup_fp, cleanup_fp, "ICE", listen_objs[n]); # 346| ice_auth_add (setup_fp, cleanup_fp, "XSMP", listen_objs[n]); # 347|-> IceSetHostBasedAuthProc (listen_objs[n], ice_auth_proc); # 348| } # 349| Error: GCC_ANALYZER_WARNING (CWE-688): [#def23] xfce4-session-4.20.3/xfce4-session/main.c:119:8: warning[-Wanalyzer-null-argument]: use of NULL ‘authfile’ where non-null expected xfce4-session-4.20.3/xfce4-session/main.c:90:1: enter_function: entry to ‘setup_environment’ xfce4-session-4.20.3/xfce4-session/main.c:115:6: branch_true: following ‘true’ branch... xfce4-session-4.20.3/xfce4-session/main.c:116:16: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/main.c:119:8: danger: argument 1 (‘authfile’) NULL where non-null expected # 117| else # 118| authfile = xfce_get_homefile (".ICEauthority", NULL); # 119|-> fd = open (authfile, O_RDWR | O_CREAT, 0600); # 120| if (fd < 0) # 121| { Error: COMPILER_WARNING (CWE-477): [#def24] xfce4-session-4.20.3/xfce4-session/xfsm-compat-kde.c: scope_hint: In function ‘xfsm_compat_kde_startup’ xfce4-session-4.20.3/xfce4-session/xfsm-compat-kde.c:133:3: warning[-Wdeprecated-declarations]: ‘gdk_display_get_n_screens’ is deprecated # 133 | if (gdk_display_get_n_screens (gdk_display_get_default ()) > 1) # | ^~ /usr/include/gtk-3.0/gdk/gdkscreen.h:32: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkapplaunchcontext.h:31: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdk.h:32: included_from: Included from here. /usr/include/gtk-3.0/gtk/gtk.h:30: included_from: Included from here. xfce4-session-4.20.3/xfce4-session/xfsm-compat-kde.c:46: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkdisplay.h:54:13: note: declared here # 54 | gint gdk_display_get_n_screens (GdkDisplay *display); # | ^~~~~~~~~~~~~~~~~~~~~~~~~ # 131| # 132| /* tell kde if we are running multi-head */ # 133|-> if (gdk_display_get_n_screens (gdk_display_get_default ()) > 1) # 134| { # 135| g_snprintf (command, 256, Error: COMPILER_WARNING (CWE-477): [#def25] xfce4-session-4.20.3/xfce4-session/xfsm-compat-kde.c:133:3: warning[-Wdeprecated-declarations]: ‘gdk_display_get_n_screens’ is deprecated # 131| # 132| /* tell kde if we are running multi-head */ # 133|-> if (gdk_display_get_n_screens (gdk_display_get_default ()) > 1) # 134| { # 135| g_snprintf (command, 256, Error: GCC_ANALYZER_WARNING (CWE-404): [#def26] xfce4-session-4.20.3/xfce4-session/xfsm-error.c:76:13: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’ xfce4-session-4.20.3/xfce4-session/xfsm-error.c:75:3: acquire_resource: ‘va_start’ called here xfce4-session-4.20.3/xfce4-session/xfsm-error.c:76:13: danger: missing call to ‘va_end’ to match ‘va_start’ at [(1)](sarif:/runs/0/results/0/codeFlows/0/threadFlows/0/locations/0) # 74| # 75| va_start (args, format); # 76|-> message = g_strdup_vprintf (format, args); # 77| va_end (args); # 78| Error: GCC_ANALYZER_WARNING (CWE-404): [#def27] xfce4-session-4.20.3/xfce4-session/xfsm-global.c:124:3: warning[-Wanalyzer-va-list-leak]: missing call to ‘va_end’ xfce4-session-4.20.3/xfce4-session/xfsm-global.c:228:1: enter_function: entry to ‘xfsm_launch_desktop_files_on_run_hook’ xfce4-session-4.20.3/xfce4-session/xfsm-global.c:256:15: branch_true: following ‘true’ branch... xfce4-session-4.20.3/xfce4-session/xfsm-global.c:258:12: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/xfsm-global.c:259:11: branch_false: following ‘false’ branch... xfce4-session-4.20.3/xfce4-session/xfsm-global.c:262:7: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/xfsm-global.c:269:10: branch_false: following ‘false’ branch (when ‘run_hook_from_file == run_hook’)... xfce4-session-4.20.3/xfce4-session/xfsm-global.c:272:11: branch_false: ...to here xfce4-session-4.20.3/xfce4-session/xfsm-global.c:272:11: branch_true: following ‘true’ branch... xfce4-session-4.20.3/xfce4-session/xfsm-global.c:274:11: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/xfsm-global.c:274:11: branch_true: following ‘true’ branch... xfce4-session-4.20.3/xfce4-session/xfsm-global.c:274:11: branch_true: ...to here xfce4-session-4.20.3/xfce4-session/xfsm-global.c:274:11: call_function: calling ‘xfsm_verbose_real’ from ‘xfsm_launch_desktop_files_on_run_hook’ # 122| va_start (valist, format); # 123| vfprintf (fp, format, valist); # 124|-> fflush (fp); # 125| va_end (valist); # 126| } Error: COMPILER_WARNING (CWE-477): [#def28] xfce4-session-4.20.3/xfce4-session/xfsm-legacy.c: scope_hint: In function ‘xfsm_legacy_perform_session_save’ xfce4-session-4.20.3/xfce4-session/xfsm-legacy.c:335:7: warning[-Wdeprecated-declarations]: ‘wnck_screen_get’ is deprecated: Use 'wnck_handle_get_screen' instead # 335 | screen = wnck_screen_get (n); # | ^~~~~~ /usr/include/libwnck-3.0/libwnck/wnck-handle.h:26: included_from: Included from here. /usr/include/libwnck-3.0/libwnck/libwnck.h:26: included_from: Included from here. xfce4-session-4.20.3/xfce4-session/xfsm-legacy.c:71: included_from: Included from here. /usr/include/libwnck-3.0/libwnck/screen.h:203:16: note: declared here # 203 | WnckScreen* wnck_screen_get (int index); # | ^~~~~~~~~~~~~~~ # 333| for (n = 0; n < ScreenCount (gdk_x11_get_default_xdisplay ()); ++n) # 334| { # 335|-> screen = wnck_screen_get (n); # 336| wnck_screen_force_update (screen); # 337| Error: COMPILER_WARNING (CWE-477): [#def29] xfce4-session-4.20.3/xfce4-session/xfsm-legacy.c:335:7: warning[-Wdeprecated-declarations]: ‘wnck_screen_get’ is deprecated: Use 'wnck_handle_get_screen' instead # 333| for (n = 0; n < ScreenCount (gdk_x11_get_default_xdisplay ()); ++n) # 334| { # 335|-> screen = wnck_screen_get (n); # 336| wnck_screen_force_update (screen); # 337| Error: COMPILER_WARNING (CWE-477): [#def30] xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c: scope_hint: In function ‘xfsm_logout_dialog_screenshot_new’ xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c:527:3: warning[-Wdeprecated-declarations]: ‘gdk_screen_get_width’ is deprecated # 527 | screen_rect.width = gdk_screen_get_width (screen); # | ^~~~~~~~~~~ /usr/include/gtk-3.0/gdk/gdkapplaunchcontext.h:31: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdk.h:32: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkx.h:28: included_from: Included from here. xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c:48: included_from: Included from here. /usr/include/gtk-3.0/gdk/gdkscreen.h:58:14: note: declared here # 58 | gint gdk_screen_get_width (GdkScreen *screen); # | ^~~~~~~~~~~~~~~~~~~~ # 525| screen_rect.x = 0; # 526| screen_rect.y = 0; # 527|-> screen_rect.width = gdk_screen_get_width (screen); # 528| screen_rect.height = gdk_screen_get_height (screen); # 529| Error: COMPILER_WARNING (CWE-477): [#def31] xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c:527:3: warning[-Wdeprecated-declarations]: ‘gdk_screen_get_width’ is deprecated # 525| screen_rect.x = 0; # 526| screen_rect.y = 0; # 527|-> screen_rect.width = gdk_screen_get_width (screen); # 528| screen_rect.height = gdk_screen_get_height (screen); # 529| Error: COMPILER_WARNING (CWE-477): [#def32] xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c:528:3: warning[-Wdeprecated-declarations]: ‘gdk_screen_get_height’ is deprecated # 528 | screen_rect.height = gdk_screen_get_height (screen); # | ^~~~~~~~~~~ /usr/include/gtk-3.0/gdk/gdkscreen.h:60:14: note: declared here # 60 | gint gdk_screen_get_height (GdkScreen *screen); # | ^~~~~~~~~~~~~~~~~~~~~ # 526| screen_rect.y = 0; # 527| screen_rect.width = gdk_screen_get_width (screen); # 528|-> screen_rect.height = gdk_screen_get_height (screen); # 529| # 530| window = gdk_screen_get_root_window (screen); Error: COMPILER_WARNING (CWE-477): [#def33] xfce4-session-4.20.3/xfce4-session/xfsm-logout-dialog.c:528:3: warning[-Wdeprecated-declarations]: ‘gdk_screen_get_height’ is deprecated # 526| screen_rect.y = 0; # 527| screen_rect.width = gdk_screen_get_width (screen); # 528|-> screen_rect.height = gdk_screen_get_height (screen); # 529| # 530| window = gdk_screen_get_root_window (screen);
| analyzer-version-clippy | 1.90.0 |
| analyzer-version-cppcheck | 2.18.3 |
| analyzer-version-gcc | 15.2.1 |
| analyzer-version-gcc-analyzer | 16.0.0 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-199.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20250521.132812.g8eff701.main-1.el9.noarch |
| mock-config | fedora-rawhide-gcc-latest-x86_64 |
| project-name | xfce4-session-4.20.3-1.fc44 |
| store-results-to | /tmp/tmp186ftrr4/xfce4-session-4.20.3-1.fc44.tar.xz |
| time-created | 2025-10-28 20:44:17 |
| time-finished | 2025-10-28 20:46:52 |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-gcc-latest-x86_64' '-t' 'gcc,cppcheck,shellcheck,clippy,unicontrol' '-o' '/tmp/tmp186ftrr4/xfce4-session-4.20.3-1.fc44.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '--install=gcc-latest' '--gcc-analyzer-bin=/opt/gcc-latest/bin/gcc' '/tmp/tmp186ftrr4/xfce4-session-4.20.3-1.fc44.src.rpm' |
| tool-version | csmock-3.8.3.20251027.143044.ge6b947b-1.el9 |