Error: GCC_ANALYZER_WARNING (CWE-401): [#def1] crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c: scope_hint: In function 'make_runtime_spec_schema_config_vm_image' crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:508:11: warning[-Wanalyzer-malloc-leak]: leak of '<unknown>' crun-HEAD/libocispec/src/ocispec/json_common.h:9: included_from: Included from here. crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.h:7: included_from: Included from here. crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:8: included_from: Included from here. crun-HEAD/libocispec/yajl/src/api/yajl_tree.h:162:29: note: in expansion of macro 'YAJL_IS_STRING' crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:516:25: note: in expansion of macro 'YAJL_GET_STRING' crun-HEAD/libocispec/yajl/src/api/yajl_tree.h:162:29: note: in expansion of macro 'YAJL_IS_STRING' crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:528:25: note: in expansion of macro 'YAJL_GET_STRING' # 506| if (tree == NULL) # 507| return NULL; # 508|-> ret = calloc (1, sizeof (*ret)); # 509| if (ret == NULL) # 510| return NULL; Error: GCC_ANALYZER_WARNING (CWE-401): [#def2] crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:508:11: warning[-Wanalyzer-malloc-leak]: leak of 'resi' crun-HEAD/libocispec/yajl/src/api/yajl_tree.h:162:29: note: in expansion of macro 'YAJL_IS_STRING' crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:516:25: note: in expansion of macro 'YAJL_GET_STRING' crun-HEAD/libocispec/yajl/src/api/yajl_tree.h:162:29: note: in expansion of macro 'YAJL_IS_STRING' crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_vm.c:528:25: note: in expansion of macro 'YAJL_GET_STRING' # 506| if (tree == NULL) # 507| return NULL; # 508|-> ret = calloc (1, sizeof (*ret)); # 509| if (ret == NULL) # 510| return NULL; Error: COMPILER_WARNING (CWE-563): [#def3] crun-HEAD/src/libcrun/handlers/krun.c: scope_hint: In function 'libkrun_exec' crun-HEAD/src/libcrun/handlers/krun.c:412:13: warning[-Wunused-variable]: unused variable 'krun_set_vm_config' # 412 | int32_t (*krun_set_vm_config) (uint32_t ctx_id, uint8_t num_vcpus, uint32_t ram_mib); # | ^~~~~~~~~~~~~~~~~~ # 410| int32_t (*krun_set_log_level) (uint32_t level); # 411| int (*krun_start_enter) (uint32_t ctx_id); # 412|-> int32_t (*krun_set_vm_config) (uint32_t ctx_id, uint8_t num_vcpus, uint32_t ram_mib); # 413| int32_t (*krun_set_root) (uint32_t ctx_id, const char *root_path); # 414| int32_t (*krun_set_root_disk) (uint32_t ctx_id, const char *disk_path); Error: GCC_ANALYZER_WARNING (CWE-688): [#def4] crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'join_namespaces' crun-HEAD/src/libcrun/linux.c:4148:17: warning[-Wanalyzer-null-argument]: use of NULL 'cwd' where non-null expected /usr/include/unistd.h:517:12: note: argument 1 of 'chdir' must be non-null # 4146| if (value == CLONE_NEWNS) # 4147| { # 4148|-> ret = chdir (cwd); # 4149| if (UNLIKELY (ret < 0)) # 4150| return crun_make_error (err, errno, "chdir `%s`", cwd); Error: GCC_ANALYZER_WARNING (CWE-1341): [#def5] crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_join_process' crun-HEAD/src/libcrun/linux.c:5854:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'sync_socket_fd[0]' # 5852| exit: # 5853| if (sync_socket_fd[0] >= 0) # 5854|-> TEMP_FAILURE_RETRY (close (sync_socket_fd[0])); # 5855| if (sync_socket_fd[1] >= 0) # 5856| TEMP_FAILURE_RETRY (close (sync_socket_fd[1])); Error: GCC_ANALYZER_WARNING (CWE-1341): [#def6] crun-HEAD/src/libcrun/linux.c:5856:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'sync_socket_fd[1]' # 5854| TEMP_FAILURE_RETRY (close (sync_socket_fd[0])); # 5855| if (sync_socket_fd[1] >= 0) # 5856|-> TEMP_FAILURE_RETRY (close (sync_socket_fd[1])); # 5857| return ret; # 5858| } Error: GCC_ANALYZER_WARNING (CWE-401): [#def7] crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_make_runtime_mounts' crun-HEAD/src/libcrun/linux.c:6485:1: warning[-Wanalyzer-malloc-leak]: leak of 'data' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_make_runtime_mounts' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_make_runtime_mounts' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_make_runtime_mounts' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'libcrun_make_runtime_mounts' # 6483| # 6484| return run_in_container_namespace (status, do_mount_in_a_container, &args, err); # 6485|-> } # 6486| # 6487| int Error: GCC_ANALYZER_WARNING (CWE-1341): [#def8] crun-HEAD/src/libcrun/utils.h:108:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'client_fd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c:4093:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'cleanup_closep.part.0' # 106| int *pp = (int *) p; # 107| if (*pp >= 0) # 108|-> TEMP_FAILURE_RETRY (close (*pp)); # 109| } # 110| Error: GCC_ANALYZER_WARNING (CWE-1341): [#def9] crun-HEAD/src/libcrun/utils.h:108:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'dest_fd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'cleanup_closep.part.0' # 106| int *pp = (int *) p; # 107| if (*pp >= 0) # 108|-> TEMP_FAILURE_RETRY (close (*pp)); # 109| } # 110| Error: GCC_ANALYZER_WARNING (CWE-1341): [#def10] crun-HEAD/src/libcrun/utils.h:108:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'gid_fd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'cleanup_closep.part.0' # 106| int *pp = (int *) p; # 107| if (*pp >= 0) # 108|-> TEMP_FAILURE_RETRY (close (*pp)); # 109| } # 110| Error: GCC_ANALYZER_WARNING (CWE-1341): [#def11] crun-HEAD/src/libcrun/utils.h:108:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'map_fd' /usr/include/features.h:540: included_from: Included from here. /usr/include/bits/libc-header-start.h:33: included_from: Included from here. /usr/include/stdio.h:28: included_from: Included from here. crun-HEAD/src/libcrun/linux.h:21: included_from: Included from here. crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c:370:20: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'cleanup_closep.part.0' # 106| int *pp = (int *) p; # 107| if (*pp >= 0) # 108|-> TEMP_FAILURE_RETRY (close (*pp)); # 109| } # 110| Error: GCC_ANALYZER_WARNING (CWE-1341): [#def12] crun-HEAD/src/libcrun/utils.h:108:25: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'uid_fd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'cleanup_closep.part.0' crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'cleanup_closep.part.0' # 106| int *pp = (int *) p; # 107| if (*pp >= 0) # 108|-> TEMP_FAILURE_RETRY (close (*pp)); # 109| } # 110| Error: GCC_ANALYZER_WARNING (CWE-1341): [#def13] crun-HEAD/src/libcrun/utils.h:213:33: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor '**cgroup_dirfd.dirfd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' # 211| if (*fd >= 0) # 212| { # 213|-> ret = TEMP_FAILURE_RETRY (close (*fd)); # 214| if (LIKELY (ret == 0)) # 215| *fd = -1; Error: GCC_ANALYZER_WARNING (CWE-1341): [#def14] crun-HEAD/src/libcrun/utils.h:213:33: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'gid_fd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c:449:16: note: in expansion of macro 'crun_make_error' # 211| if (*fd >= 0) # 212| { # 213|-> ret = TEMP_FAILURE_RETRY (close (*fd)); # 214| if (LIKELY (ret == 0)) # 215| *fd = -1; Error: GCC_ANALYZER_WARNING (CWE-1341): [#def15] crun-HEAD/src/libcrun/utils.h:213:33: warning[-Wanalyzer-fd-double-close]: double 'close' of file descriptor 'targetfd' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c:4093:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'close_and_reset.part.0' # 211| if (*fd >= 0) # 212| { # 213|-> ret = TEMP_FAILURE_RETRY (close (*fd)); # 214| if (LIKELY (ret == 0)) # 215| *fd = -1; Error: GCC_ANALYZER_WARNING (CWE-457): [#def16] crun-HEAD/src/libcrun/utils.h: scope_hint: In function 'xstrdup' crun-HEAD/src/libcrun/utils.h:227:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value '*str' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'xstrdup' crun-HEAD/src/libcrun/linux.c:3863:12: note: in expansion of macro 'crun_make_error' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'xstrdup' crun-HEAD/src/libcrun/linux.c: scope_hint: In function 'xstrdup' crun-HEAD/libocispec/src/ocispec/json_common.h:7: included_from: Included from here. crun-HEAD/libocispec/src/ocispec/runtime_spec_schema_config_schema.h:7: included_from: Included from here. crun-HEAD/src/libcrun/linux.h:27: included_from: Included from here. /usr/include/string.h:202:14: note: argument 1 of 'strdup' must be a pointer to a null-terminated string # 225| return NULL; # 226| # 227|-> ret = strdup (str); # 228| if (ret == NULL) # 229| OOM ();
| analyzer-version-clippy | 1.94.1 |
| analyzer-version-cppcheck | 2.20.0 |
| analyzer-version-gcc | 16.0.1 |
| analyzer-version-gcc-analyzer | 16.0.1 |
| analyzer-version-shellcheck | 0.11.0 |
| analyzer-version-unicontrol | 0.0.2 |
| diffbase-analyzer-version-clippy | 1.94.1 |
| diffbase-analyzer-version-cppcheck | 2.20.0 |
| diffbase-analyzer-version-gcc | 16.0.1 |
| diffbase-analyzer-version-gcc-analyzer | 16.0.1 |
| diffbase-analyzer-version-shellcheck | 0.11.0 |
| diffbase-analyzer-version-unicontrol | 0.0.2 |
| diffbase-enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| diffbase-exit-code | 0 |
| diffbase-host | ip-172-16-1-59.us-west-2.compute.internal |
| diffbase-known-false-positives | /usr/share/csmock/known-false-positives.js |
| diffbase-known-false-positives-rpm | known-false-positives-0.0.0.20260320.200800.gd35503f.main-1.el9.noarch |
| diffbase-mock-config | fedora-rawhide-x86_64 |
| diffbase-project-name | crun-1.27-1.20260402151752063764.main.6.g0097db1d |
| diffbase-store-results-to | /tmp/tmpcgrdlxof/crun-1.27-1.20260402151752063764.main.6.g0097db1d.tar.xz |
| diffbase-time-created | 2026-04-17 08:18:33 |
| diffbase-time-finished | 2026-04-17 08:22:28 |
| diffbase-tool | csmock |
| diffbase-tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'cppcheck,gcc,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpcgrdlxof/crun-1.27-1.20260402151752063764.main.6.g0097db1d.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpcgrdlxof/crun-1.27-1.20260402151752063764.main.6.g0097db1d.src.rpm' |
| diffbase-tool-version | csmock-3.8.5-1.el9 |
| enabled-plugins | clippy, cppcheck, gcc, shellcheck, unicontrol |
| exit-code | 0 |
| host | ip-172-16-1-59.us-west-2.compute.internal |
| known-false-positives | /usr/share/csmock/known-false-positives.js |
| known-false-positives-rpm | known-false-positives-0.0.0.20260320.200800.gd35503f.main-1.el9.noarch |
| mock-config | fedora-rawhide-x86_64 |
| project-name | crun-1.27-1.20260417080956500687.pr1913.13.gacb904c6 |
| store-results-to | /tmp/tmpt2t_kg5u/crun-1.27-1.20260417080956500687.pr1913.13.gacb904c6.tar.xz |
| time-created | 2026-04-17 08:22:42 |
| time-finished | 2026-04-17 08:25:55 |
| title | Newly introduced findings |
| tool | csmock |
| tool-args | '/usr/bin/csmock' '-r' 'fedora-rawhide-x86_64' '-t' 'cppcheck,gcc,shellcheck,clippy,unicontrol' '-o' '/tmp/tmpt2t_kg5u/crun-1.27-1.20260417080956500687.pr1913.13.gacb904c6.tar.xz' '--gcc-analyze' '--unicontrol-notests' '--unicontrol-bidi-only' '--install' 'pam' '/tmp/tmpt2t_kg5u/crun-1.27-1.20260417080956500687.pr1913.13.gacb904c6.src.rpm' |
| tool-version | csmock-3.8.5-1.el9 |