Task #1177 - qemu-9.0.0-1.fc41/scan-results.err
back to task #1177download
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/accel/accel-system.c:76:5: warning[deadcode.DeadStores]: Value stored to 'ops' is never read
# 74|
# 75| ops_name = g_strdup_printf("%s" ACCEL_OPS_SUFFIX, ac_name);
# 76|-> ops = ACCEL_OPS_CLASS(module_object_class_by_name(ops_name));
# 77| oc = module_object_class_by_name(ops_name);
# 78| if (!oc) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/accel/kvm/kvm-accel-ops.c:41:5: warning[deadcode.DeadStores]: Value stored to 'r' is never read
# 39| current_cpu = cpu;
# 40|
# 41|-> r = kvm_init_vcpu(cpu, &error_fatal);
# 42| kvm_init_cpu_signals(cpu);
# 43|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:477:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/include/tcg/debug-assert.h:14:16: note: in definition of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/exec/translation-block.h:151:12: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:475:13: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
# 475| tcg_debug_assert(!(tb_cflags(last_tb) & CF_PCREL));
# 476| assert(cc->set_pc);
# 477|-> cc->set_pc(cpu, last_tb->pc);
# 478| }
# 479| if (qemu_loglevel_mask(CPU_LOG_EXEC)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:477:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘last_tb’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/include/tcg/debug-assert.h:14:16: note: in definition of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/exec/translation-block.h:151:12: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_tb_exec’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:475:13: note: in expansion of macro ‘tcg_debug_assert’
# 475| tcg_debug_assert(!(tb_cflags(last_tb) & CF_PCREL));
# 476| assert(cc->set_pc);
# 477|-> cc->set_pc(cpu, last_tb->pc);
# 478| }
# 479| if (qemu_loglevel_mask(CPU_LOG_EXEC)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_loop_exec_tb’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:937:42: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-hash.h:48:24: note: in expansion of macro ‘TARGET_PAGE_BITS’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_loop_exec_tb’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_loop_exec_tb’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘cpu_loop_exec_tb’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:923:12: note: in expansion of macro ‘icount_enabled’
# 935| * insns_left instructions in it.
# 936| */
# 937|-> if (insns_left > 0 && insns_left < tb->icount) {
# 938| assert(insns_left <= CF_COUNT_MASK);
# 939| assert(cpu->icount_extra == 0);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:43: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/internal-target.h: scope_hint: In function ‘log_pc’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/internal-target.h:92:18: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tb’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:53: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-common.h:11: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-all.h:22: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/arm/cpu.h:2964: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/exec-all.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c:248:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘log_pc’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cpu-exec.c: scope_hint: In function ‘log_pc’
# 90| return cpu->cc->get_pc(cpu);
# 91| } else {
# 92|-> return tb->pc;
# 93| }
# 94| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/user-exec.c:966: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/ldst_atomicity.c.inc:206:20: warning[core.NullDereference]: Dereference of null pointer (loaded from variable 'p')
# 204| #ifdef CONFIG_USER_ONLY
# 205| if (!page_check_range(h2g(p), 16, PAGE_WRITE_ORG)) {
# 206|-> return *p;
# 207| }
# 208| #endif
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c: scope_hint: In function ‘tb_page_remove’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:313:34: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘pd’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:38:15: note: in definition of macro ‘TB_FOR_EACH_TAGGED’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:732:5: note: in expansion of macro ‘PAGE_FOR_EACH_TB’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c: scope_hint: In function ‘tb_page_remove’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c: scope_hint: In function ‘tb_page_remove’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-common.h:11: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/cputlb.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:1110:5: note: in expansion of macro ‘tcg_debug_assert’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:38:15: note: in definition of macro ‘TB_FOR_EACH_TAGGED’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:1116:5: note: in expansion of macro ‘PAGE_FOR_EACH_TB’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:39:10: note: in definition of macro ‘TB_FOR_EACH_TAGGED’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:1116:5: note: in expansion of macro ‘PAGE_FOR_EACH_TB’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c: scope_hint: In function ‘tb_page_remove’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c: scope_hint: In function ‘tb_page_remove’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:38:15: note: in definition of macro ‘TB_FOR_EACH_TAGGED’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/tb-maint.c:732:5: note: in expansion of macro ‘PAGE_FOR_EACH_TB’
# 311| typedef int PageForEachNext;
# 312| #define PAGE_FOR_EACH_TB(start, last, pagedesc, tb, n) \
# 313|-> TB_FOR_EACH_TAGGED((pagedesc)->first_tb, tb, n, page_next)
# 314|
# 315| #ifdef CONFIG_DEBUG_TCG
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/translate-all.c:87:14: warning[core.NullDereference]: Dereference of null pointer
# 85| byte |= 0x80;
# 86| }
# 87|-> *p++ = byte;
# 88| } while (more);
# 89|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/audio/audio.c: scope_hint: In function ‘audio_driver_init’
qemu-9.0.0-build/qemu-9.0.0/audio/audio.c:1564:24: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘drv’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/audio/audio.c:25: included_from: Included from here.
# 1562| Error *local_err = NULL;
# 1563|
# 1564|-> s->drv_opaque = drv->init(dev, &local_err);
# 1565|
# 1566| if (s->drv_opaque) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/audio/jackaudio.c:410:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'client_name'
# 408|
# 409| if (c->state == QJACK_STATE_RUNNING) {
# 410|-> return 0;
# 411| }
# 412|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/audio/pwaudio.c:672:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 670| v->muted = vol->mute;
# 671| float val = v->muted ? 1.f : 0.f;
# 672|-> ret = pw_stream_set_control(v->stream, SPA_PROP_mute, 1, &val, 0);
# 673| pw_thread_loop_unlock(c->thread_loop);
# 674| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/audio/pwaudio.c:795:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'pw'
# 793| }
# 794| g_clear_pointer(&pw->context, pw_context_destroy);
# 795|-> g_clear_pointer(&pw->thread_loop, pw_thread_loop_destroy);
# 796| return NULL;
# 797| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-lkcf.c:531:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'sess'
# 529|
# 530| default:
# 531|-> error_report("Unsupported asym alg %u", sess_info->algo);
# 532| return -VIRTIO_CRYPTO_NOTSUPP;
# 533| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost-user.c: scope_hint: In function ‘cryptodev_vhost_user_init’
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost-user.c:202:24: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost-user.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost-user.c:139:9: note: in expansion of macro ‘error_setg’
# 200| for (i = 0; i < queues; i++) {
# 201| cc = cryptodev_backend_new_client();
# 202|-> cc->info_str = g_strdup_printf("cryptodev-vhost-user%zu to %s ",
# 203| i, chr->label);
# 204| cc->queue_index = i;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost.c: scope_hint: In function ‘vhost_set_vring_enable’
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost.c:157:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘cc’
# 155| const VhostOps *vhost_ops;
# 156|
# 157|-> cc->vring_enable = enable;
# 158|
# 159| if (!crypto) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost.c: scope_hint: In function ‘cryptodev_vhost_start’
qemu-9.0.0-build/qemu-9.0.0/backends/cryptodev-vhost.c:198:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘cc’
# 196| * properly.
# 197| */
# 198|-> if (cc->type == QCRYPTODEV_BACKEND_TYPE_VHOST_USER) {
# 199| dev->use_guest_notifier_mask = false;
# 200| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c: scope_hint: In function ‘dbus_vmstate_post_load’
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c:205:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘err’
/usr/include/glib-2.0/glib/glib-autocleanups.h:103:1: note: in expansion of macro ‘G_DEFINE_AUTO_CLEANUP_FREE_FUNC’
/usr/include/glib-2.0/glib/glib-autocleanups.h:103:1: note: in expansion of macro ‘G_DEFINE_AUTO_CLEANUP_FREE_FUNC’
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c: scope_hint: In function ‘dbus_vmstate_post_load’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
/usr/include/glib-2.0/glib/glib-autocleanups.h:57:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
/usr/include/glib-2.0/glib/glib-autocleanups.h:57:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
# 203| proxies = dbus_get_proxies(self, &err);
# 204| if (!proxies) {
# 205|-> error_report("%s: Failed to get proxies: %s", __func__, err->message);
# 206| return -1;
# 207| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c: scope_hint: In function ‘dbus_vmstate_pre_save’
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c:354:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘err’
/usr/include/glib-2.0/glib/glib-autocleanups.h:103:1: note: in expansion of macro ‘G_DEFINE_AUTO_CLEANUP_FREE_FUNC’
/usr/include/glib-2.0/glib/glib-autocleanups.h:103:1: note: in expansion of macro ‘G_DEFINE_AUTO_CLEANUP_FREE_FUNC’
qemu-9.0.0-build/qemu-9.0.0/backends/dbus-vmstate.c: scope_hint: In function ‘dbus_vmstate_pre_save’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
/usr/include/glib-2.0/glib/glib-autocleanups.h:57:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
/usr/include/glib-2.0/glib/glib-autocleanups.h:57:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
# 352| proxies = dbus_get_proxies(self, &err);
# 353| if (!proxies) {
# 354|-> error_report("%s: Failed to get proxies: %s", __func__, err->message);
# 355| return -1;
# 356| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/backends/tpm/tpm_util.c:255:13: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 253| }
# 254|
# 255|-> if (be32_to_cpu(tpm_resp.hdr.len) != sizeof(tpm_resp) ||
# 256| be32_to_cpu(tpm_resp.len) != sizeof(uint32_t)) {
# 257| trace_tpm_util_get_buffer_size_hdr_len(
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/backends/tpm/tpm_util.c:304:13: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 302| }
# 303|
# 304|-> if (be32_to_cpu(tpm2_resp.hdr.len) != sizeof(tpm2_resp) ||
# 305| be32_to_cpu(tpm2_resp.count) != 2) {
# 306| trace_tpm_util_get_buffer_size_hdr_len2(
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/blkio.c:750:9: warning[deadcode.DeadStores]: Value stored to 'fd' is never read
# 748| /* Failed to give the FD to libblkio, close it */
# 749| qemu_close(fd);
# 750|-> fd = -1;
# 751| }
# 752|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/bochs.c:240:25: warning[core.UndefinedBinaryOperatorResult]: The left operand of '>>' is a garbage value
# 238| }
# 239|
# 240|-> if (!((bitmap_entry >> (extent_offset % 8)) & 1)) {
# 241| return 0; /* not allocated */
# 242| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/export/fuse.c: scope_hint: In function ‘fuse_do_truncate’
qemu-9.0.0-build/qemu-9.0.0/block/export/fuse.c:480:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘blk_shared_perm’
# 478| if (add_resize_perm) {
# 479| /* Must succeed, because we are only giving up the RESIZE permission */
# 480|-> ret_check = blk_set_perm(exp->common.blk, blk_perm,
# 481| blk_shared_perm, &error_abort);
# 482| assert(ret_check == 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/file-posix.c:1340:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'rep'
# 1338| } while (ret != 0 && errno == EINTR);
# 1339| if (ret != 0) {
# 1340|-> error_report("%d: ioctl BLKREPORTZONE at %" PRId64 " failed %d",
# 1341| fd, offset, errno);
# 1342| return -errno;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/file-posix.c:2131:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'rep'
# 2129| }
# 2130|
# 2131|-> *nr_zones = n;
# 2132| return 0;
# 2133| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/io_uring.c:345:40: warning[core.NullDereference]: Access to field 'iov' results in a dereference of a null pointer (loaded from field 'qiov')
# 343| switch (type) {
# 344| case QEMU_AIO_WRITE:
# 345|-> io_uring_prep_writev(sqes, fd, luringcb->qiov->iov,
# 346| luringcb->qiov->niov, offset);
# 347| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/io_uring.c:349:40: warning[core.NullDereference]: Access to field 'iov' results in a dereference of a null pointer (loaded from field 'qiov')
# 347| break;
# 348| case QEMU_AIO_ZONE_APPEND:
# 349|-> io_uring_prep_writev(sqes, fd, luringcb->qiov->iov,
# 350| luringcb->qiov->niov, offset);
# 351| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/io_uring.c:353:39: warning[core.NullDereference]: Access to field 'iov' results in a dereference of a null pointer (loaded from field 'qiov')
# 351| break;
# 352| case QEMU_AIO_READ:
# 353|-> io_uring_prep_readv(sqes, fd, luringcb->qiov->iov,
# 354| luringcb->qiov->niov, offset);
# 355| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/mirror.c:389:9: warning[core.NullDereference]: Dereference of null pointer
# 387| size_t remaining = op->bytes - op->qiov.size;
# 388|
# 389|-> QSIMPLEQ_REMOVE_HEAD(&s->buf_free, next);
# 390| s->buf_free_count--;
# 391| qemu_iovec_add(&op->qiov, buf, MIN(s->granularity, remaining));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/mirror.c:608:13: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 606|
# 607| if (s->ret < 0) {
# 608|-> ret = 0;
# 609| goto fail;
# 610| }
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c:432:12: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c:430:20: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c: scope_hint: In function ‘nfs_client_open’
/usr/include/string.h:273:14: note: argument 1 of ‘strrchr’ must be non-null
# 430| client->path = g_strdup(opts->path);
# 431|
# 432|-> strp = strrchr(client->path, '/');
# 433| if (strp == NULL) {
# 434| error_setg(errp, "Invalid URL specified");
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c: scope_hint: In function ‘nfs_client_open’
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c:432:12: warning[-Wanalyzer-null-argument]: use of NULL ‘*client.path’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c:430:20: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/nfs.c: scope_hint: In function ‘nfs_client_open’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:273:14: note: argument 1 of ‘strrchr’ must be non-null
# 430| client->path = g_strdup(opts->path);
# 431|
# 432|-> strp = strrchr(client->path, '/');
# 433| if (strp == NULL) {
# 434| error_setg(errp, "Invalid URL specified");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/parallels-ext.c:171:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'l1_table'
# 169| }
# 170|
# 171|-> ret = parallels_load_bitmap_data(bs, l1_table, bf.l1_size, bitmap, errp);
# 172| if (ret < 0) {
# 173| bdrv_release_dirty_bitmap(bitmap);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-cluster.c:249:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 247| s->l1_table_offset + L1E_SIZE * l1_start_index, bufsize, false);
# 248| if (ret < 0) {
# 249|-> return ret;
# 250| }
# 251|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:94:22: warning[core.NullDereference]: Array access (via field 'refcount_table') results in a null pointer dereference
# 92| {
# 93| unsigned i = s->refcount_table_size - 1;
# 94|-> while (i > 0 && (s->refcount_table[i] & REFT_OFFSET_MASK) == 0) {
# 95| i--;
# 96| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:1679:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'l2_table'
# 1677| ret = bdrv_co_pread(bs->file, l2_offset, l2_size_bytes, l2_table, 0);
# 1678| if (ret < 0) {
# 1679|-> fprintf(stderr, "ERROR: I/O error in check_refcounts_l2\n");
# 1680| res->check_errors++;
# 1681| return ret;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:1894:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'l1_table'
# 1892| ret = bdrv_co_pread(bs->file, l1_table_offset, l1_size_bytes, l1_table, 0);
# 1893| if (ret < 0) {
# 1894|-> fprintf(stderr, "ERROR: I/O error in check_refcounts_l1\n");
# 1895| res->check_errors++;
# 1896| return ret;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-snapshot.c:120:31: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 118| offset += sizeof(h);
# 119| sn = s->snapshots + i;
# 120|-> sn->l1_table_offset = be64_to_cpu(h.l1_table_offset);
# 121| sn->l1_size = be32_to_cpu(h.l1_size);
# 122| sn->vm_state_size = be32_to_cpu(h.vm_state_size);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-snapshot.c:455:27: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 453| }
# 454|
# 455|-> s->snapshots_offset = be64_to_cpu(snapshot_table_pointer.snapshots_offset);
# 456| s->nb_snapshots = be32_to_cpu(snapshot_table_pointer.nb_snapshots);
# 457|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c: scope_hint: In function ‘preallocate_co’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:3295:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cur_bytes’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c:4302:10: note: in expansion of macro ‘QEMU_IS_ALIGNED’
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.c: scope_hint: In function ‘preallocate_co’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
# 3293| }
# 3294|
# 3295|-> if (host_offset + cur_bytes > file_length) {
# 3296| if (mode == PREALLOC_MODE_METADATA) {
# 3297| mode = PREALLOC_MODE_OFF;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/qcow2.h:615:12: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 613| {
# 614| idx *= l2_entry_size(s) / sizeof(uint64_t);
# 615|-> return be64_to_cpu(l2_slice[idx]);
# 616| }
# 617|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qed.c:59:18: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 57| static void qed_header_le_to_cpu(const QEDHeader *le, QEDHeader *cpu)
# 58| {
# 59|-> cpu->magic = le32_to_cpu(le->magic);
# 60| cpu->cluster_size = le32_to_cpu(le->cluster_size);
# 61| cpu->table_size = le32_to_cpu(le->table_size);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_strchr’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:126:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘p’
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:179:11: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:179:11: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_strchr’
# 124| char *p;
# 125|
# 126|-> for (p = src; *p; ++p) {
# 127| if (*p == delim) {
# 128| return p;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:157:19: warning[core.NullDereference]: Dereference of null pointer (loaded from variable 'src')
# 155| char *p;
# 156|
# 157|-> for (p = src; *src; ++src, ++p) {
# 158| if (*src == '\\' && src[1] != '\0') {
# 159| src++;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:871:10: warning[core.NullDereference]: Access to field 'has_server' results in a dereference of a null pointer (loaded from variable 'opts')
# 869| int i, cnt;
# 870|
# 871|-> if (!opts->has_server) {
# 872| return NULL;
# 873| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_mon_host’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:871:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘opts’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:1075:16: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_mon_host’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:1080:16: note: in expansion of macro ‘g_strdup’
# 869| int i, cnt;
# 870|
# 871|-> if (!opts->has_server) {
# 872| return NULL;
# 873| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:908:13: warning[core.NullDereference]: Access to field 'key_secret' results in a dereference of a null pointer (loaded from variable 'opts')
# 906|
# 907| if (secretid) {
# 908|-> if (opts->key_secret) {
# 909| error_setg(errp,
# 910| "Legacy 'password-secret' clashes with 'key-secret'");
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_connect’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:908:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘opts’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:1075:16: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c: scope_hint: In function ‘qemu_rbd_connect’
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:1080:16: note: in expansion of macro ‘g_strdup’
# 906|
# 907| if (secretid) {
# 908|-> if (opts->key_secret) {
# 909| error_setg(errp,
# 910| "Legacy 'password-secret' clashes with 'key-secret'");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:923:31: warning[core.NullDereference]: Access to field 'user' results in a dereference of a null pointer (loaded from variable 'opts')
# 921| }
# 922|
# 923|-> r = rados_create(cluster, opts->user);
# 924| if (r < 0) {
# 925| error_setg_errno(errp, -r, "error initializing");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/rbd.c:1126:24: warning[core.NullDereference]: Access to field 'snapshot' results in a dereference of a null pointer (loaded from variable 'opts')
# 1124| }
# 1125|
# 1126|-> s->snap = g_strdup(opts->snapshot);
# 1127| s->image_name = g_strdup(opts->image);
# 1128|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:68:14: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sn_tab’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:656:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/include/block/snapshot.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:657:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:60:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
# 66| }
# 67| for (i = 0; i < nb_sns; i++) {
# 68|-> sn = &sn_tab[i];
# 69| if (!strcmp(sn->name, name)) {
# 70| *sn_info = *sn;
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:75:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘sn_tab’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:656:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:657:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:60:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:391:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:392:5: note: in expansion of macro ‘GRAPH_RDLOCK_GUARD_MAINLOOP’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:192:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c:164:5: note: in expansion of macro ‘GLOBAL_STATE_CODE’
qemu-9.0.0-build/qemu-9.0.0/block/snapshot.c: scope_hint: In function ‘bdrv_snapshot_find’
# 73| }
# 74| }
# 75|-> g_free(sn_tab);
# 76| return ret;
# 77| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/ssh.c:866:9: warning[core.NullDereference]: Access to field 'type' results in a dereference of a null pointer (loaded from field 'attrs')
# 864| ssh_set_blocking(s->session, 0);
# 865|
# 866|-> if (s->attrs->type == SSH_FILEXFER_TYPE_REGULAR) {
# 867| bs->supported_truncate_flags = BDRV_REQ_ZERO_WRITE;
# 868| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/ssh.c:889:35: warning[core.NullDereference]: Access to field 'size' results in a dereference of a null pointer (loaded from field 'attrs')
# 887| /* offset must be strictly greater than the current size so we do
# 888| * not overwrite anything */
# 889|-> assert(offset > 0 && offset > s->attrs->size);
# 890|
# 891| ssh_set_blocking(s->session, 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vhdx-log.c:849:5: warning[deadcode.DeadStores]: Value stored to 'data' is never read
# 847| memcpy(&desc->trailing_bytes, data, 4);
# 848| desc->trailing_bytes = cpu_to_le32(desc->trailing_bytes);
# 849|-> data += 4;
# 850|
# 851| sector->sequence_high = (uint32_t) (seq >> 32);
Error: GCC_ANALYZER_WARNING (CWE-131):
qemu-9.0.0-build/qemu-9.0.0/block/vhdx.c: scope_hint: In function ‘vhdx_create_bat’
qemu-9.0.0-build/qemu-9.0.0/block/vhdx.c:1753:16: warning[-Wanalyzer-allocation-size]: allocated buffer size is not a multiple of the pointee's size
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/vhdx.c:18: included_from: Included from here.
# 1751| has_zero_init == 0) {
# 1752| /* for a fixed file, the default BAT entry is not zero */
# 1753|-> s->bat = g_try_malloc0(length);
# 1754| if (length && s->bat == NULL) {
# 1755| error_setg(errp, "Failed to allocate memory for the BAT");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:1952:20: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 1950| marker = (VmdkGrainMarker *)cluster_buf;
# 1951| compressed_data = marker->data;
# 1952|-> data_len = le32_to_cpu(marker->size);
# 1953| }
# 1954| if (!data_len || data_len > buf_bytes) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_pwritev’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:2127:19: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cluster_offset’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_pwritev’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:26: included_from: Included from here.
# 2125| }
# 2126| } else {
# 2127|-> ret = vmdk_write_extent(extent, cluster_offset, offset_in_cluster,
# 2128| qiov, bytes_done, n_bytes, offset);
# 2129| if (ret) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c: scope_hint: In function ‘vmdk_co_check’
qemu-9.0.0-build/qemu-9.0.0/block/vmdk.c:2999:32: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘cluster_offset’
# 2997| break;
# 2998| }
# 2999|-> if (cluster_offset >= extent_len) {
# 3000| fprintf(stderr,
# 3001| "ERROR: cluster offset for sector %"
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vpc.c:567:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'bitmap'
# 565| /* Check if sector_num is valid */
# 566| if ((offset < 0) || (offset > bs->total_sectors * BDRV_SECTOR_SIZE)) {
# 567|-> return -EINVAL;
# 568| }
# 569|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vvfat.c:699:5: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 697| s->sectors_per_fat * 0x200 / s->fat.item_size - 1);
# 698| }
# 699|-> memset(s->fat.pointer,0,s->fat.size);
# 700|
# 701| switch(s->fat_type) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vvfat.c:1940:29: warning[core.NonNullParamChecker]: Null pointer passed to 2nd parameter expecting 'nonnull'
# 1938| const char* basename = get_basename(mapping->path);
# 1939|
# 1940|-> if (strcmp(basename, basename2))
# 1941| copy_it = 1;
# 1942| first_mapping_index = array_index(&(s->mapping), mapping);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/vvfat.c:2255:37: warning[core.NullDereference]: Access to field 'begin' results in a dereference of a null pointer (loaded from variable 'mapping')
# 2253| mapping = array_get(&(s->mapping), index);
# 2254| }
# 2255|-> if (index >= s->mapping.next || mapping->begin > begin) {
# 2256| mapping = array_insert(&(s->mapping), index, 1);
# 2257| mapping->path = NULL;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/contrib/ivshmem-client/ivshmem-client.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/contrib/ivshmem-client/ivshmem-client.c:57: warning[uninitvar]: Uninitialized variable: *index
# 55| }
# 56|
# 57|-> *index = GINT64_FROM_LE(*index);
# 58| *fd = -1;
# 59|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/contrib/ivshmem-client/main.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/contrib/vhost-user-blk/vhost-user-blk.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/contrib/vhost-user-scsi/vhost-user-scsi.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/afsplit.c:116:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'block'
# 114| block,
# 115| out + (i * blocklen));
# 116|-> return 0;
# 117| }
# 118|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/afsplit.c:145:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'block'
# 143| block,
# 144| out);
# 145|-> return 0;
# 146| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/block-luks.c:916:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'splitkey'
# 914| possiblekey, luks->header.master_key_len,
# 915| errp) < 0) {
# 916|-> return -1;
# 917| }
# 918|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/block-luks.c:1744:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'tmpkey'
# 1742|
# 1743| if (keyslot < 0 || keyslot >= QCRYPTO_BLOCK_LUKS_NUM_KEY_SLOTS) {
# 1744|-> error_setg(errp,
# 1745| "Invalid keyslot %i specified, must be between 0 and %i",
# 1746| keyslot, QCRYPTO_BLOCK_LUKS_NUM_KEY_SLOTS - 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/block.c:408:12: warning[unix.Malloc]: Potential leak of memory pointed to by 'iv'
# 406| }
# 407|
# 408|-> return 0;
# 409| }
# 410|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/pbkdf.c:132:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'out'
# 130| cleanup:
# 131| memset(out, 0, nout);
# 132|-> return ret;
# 133| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/rsakey.c:85: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/crypto/rsakey-builtin.c.inc:132:5: warning[deadcode.DeadStores]: Value stored to 'decode_ret' is never read
# 130| seq_length = decode_ret;
# 131|
# 132|-> decode_ret = qcrypto_der_decode_int(&seq, &seq_length, extract_version,
# 133| &version, errp);
# 134|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/secret_common.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/secret_common.c:55:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'key'
# 53|
# 54| if (keylen != 32) {
# 55|-> error_setg(errp, "Key should be 32 bytes in length");
# 56| return;
# 57| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/tlscredsx509.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/crypto/tlssession.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/disas/disas.c:94:12: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 92| info->fprintf_func(info->stream, "unable to read memory");
# 93| }
# 94|-> return n;
# 95| }
# 96|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/disas/m68k.c: scope_hint: In function ‘print_insn_m68k’
qemu-9.0.0-build/qemu-9.0.0/disas/m68k.c:1901:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘opc_pointer[<unknown>]’
# 1899|
# 1900| for (i = 0; i < m68k_numopcodes; i++)
# 1901|-> *opc_pointer[(m68k_opcodes[i].opcode >> 28) & 15]++ = &m68k_opcodes[i];
# 1902| }
# 1903|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/disas/sparc.c: scope_hint: In function ‘print_insn_sparc’
qemu-9.0.0-build/qemu-9.0.0/disas/sparc.c:2691:27: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘sorted_opcodes’
# 2689| /* Reset the sorted table so we can resort it. */
# 2690| for (i = 0; i < sparc_num_opcodes; ++i)
# 2691|-> sorted_opcodes[i] = &sparc_opcodes[i];
# 2692| qsort ((char *) sorted_opcodes, sparc_num_opcodes,
# 2693| sizeof (sorted_opcodes[0]), compare_opcodes);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/dump/dump.c:1618:11: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 1616| }
# 1617|
# 1618|-> ret = write_cache(&page_desc, NULL, 0, true);
# 1619| if (ret < 0) {
# 1620| error_setg(errp, "dump: failed to sync cache for page_desc");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/dump/win_dump.c:400:13: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 398|
# 399| for (i = 0; i < WIN_DUMP_FIELD(NumberProcessors); i++) {
# 400|-> if (cpu_memory_rw_debug(first_cpu, saved_ctx[i].addr,
# 401| &saved_ctx[i].ctx, win_dump_ctx_size(x64), 1)) {
# 402| warn_report("win-dump: failed to restore CPU #%d context", i);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ebpf/ebpf_rss.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ebpf/rss.bpf.skeleton.h:174:2: warning[unix.Malloc]: Potential leak of memory pointed to by 's'
# 172| err:
# 173| bpf_object__destroy_skeleton(s);
# 174|-> return err;
# 175| }
# 176|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c: scope_hint: In function ‘gdb_next_attached_cpu’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:284:37: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 282|
# 283| while (cpu) {
# 284|-> if (gdb_get_cpu_process(cpu)->attached) {
# 285| break;
# 286| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c: scope_hint: In function ‘gdb_first_attached_cpu’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:300:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 298| GDBProcess *process = gdb_get_cpu_process(cpu);
# 299|
# 300|-> if (!process->attached) {
# 301| return gdb_next_attached_cpu(cpu);
# 302| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c: scope_hint: In function ‘gdb_get_cpu’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:338:27: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-core.h:8: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/core/cpu.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/hw_accel.h:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:41: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/core/cpu.h:593:26: note: in expansion of macro ‘QTAILQ_FOREACH_RCU’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:240:5: note: in expansion of macro ‘CPU_FOREACH’
# 336| process = gdb_get_cpu_process(cpu);
# 337|
# 338|-> if (pid && process->pid != pid) {
# 339| return NULL;
# 340| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:342:21: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/hw/core/cpu.h:593:26: note: in expansion of macro ‘QTAILQ_FOREACH_RCU’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:240:5: note: in expansion of macro ‘CPU_FOREACH’
# 340| }
# 341|
# 342|-> if (!process->attached) {
# 343| return NULL;
# 344| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:735:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'newstates'
# 733| while (*p) {
# 734| if (*p++ != ';') {
# 735|-> return -ENOTSUP;
# 736| }
# 737|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c: scope_hint: In function ‘gdb_set_stop_cpu’
qemu-9.0.0-build/qemu-9.0.0/gdbstub/gdbstub.c:2195:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 2193| GDBProcess *p = gdb_get_cpu_process(cpu);
# 2194|
# 2195|-> if (!p->attached) {
# 2196| /*
# 2197| * Having a stop CPU corresponding to a process that is not attached
Error: GCC_ANALYZER_WARNING (CWE-686):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p-proxy.c: scope_hint: In function ‘v9fs_request’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p-proxy.c:506:14: warning[-Wanalyzer-va-arg-type-mismatch]: ‘va_arg’ expected ‘int’ but received ‘size_t’ {aka ‘long unsigned int’} for variadic argument 1 of ‘ap’
# 504| break;
# 505| case T_LGETXATTR:
# 506|-> size = va_arg(ap, int);
# 507| path = va_arg(ap, V9fsString *);
# 508| name = va_arg(ap, V9fsString *);
Error: GCC_ANALYZER_WARNING (CWE-686):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p-proxy.c:517:14: warning[-Wanalyzer-va-arg-type-mismatch]: ‘va_arg’ expected ‘int’ but received ‘size_t’ {aka ‘long unsigned int’} for variadic argument 1 of ‘ap’
# 515| break;
# 516| case T_LLISTXATTR:
# 517|-> size = va_arg(ap, int);
# 518| path = va_arg(ap, V9fsString *);
# 519| retval = proxy_marshal(iovec, PROXY_HDR_SZ, "ds", size, path);
Error: GCC_ANALYZER_WARNING (CWE-686):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p-proxy.c:529:14: warning[-Wanalyzer-va-arg-type-mismatch]: ‘va_arg’ expected ‘int’ but received ‘size_t’ {aka ‘long unsigned int’} for variadic argument 4 of ‘ap’
# 527| name = va_arg(ap, V9fsString *);
# 528| value = va_arg(ap, V9fsString *);
# 529|-> size = va_arg(ap, int);
# 530| flags = va_arg(ap, int);
# 531| retval = proxy_marshal(iovec, PROXY_HDR_SZ, "sssdd",
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_version’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1410:10: warning[-Wanalyzer-null-argument]: use of NULL ‘version.data’ where non-null expected
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_version’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:19: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 1 of ‘strcmp’ must be non-null
# 1408| virtfs_reset(pdu);
# 1409|
# 1410|-> if (!strcmp(version.data, "9P2000.u")) {
# 1411| s->proto_version = V9FS_PROTO_2000U;
# 1412| } else if (!strcmp(version.data, "9P2000.L")) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_attach’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1469:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘afid’
# 1467| goto out_nofid;
# 1468| }
# 1469|-> trace_v9fs_attach(pdu->tag, pdu->id, fid, afid, uname.data, aname.data);
# 1470|
# 1471| fidp = alloc_fid(s, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_getattr’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1592:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘request_mask’
# 1590| goto out_nofid;
# 1591| }
# 1592|-> trace_v9fs_getattr(pdu->tag, pdu->id, fid, request_mask);
# 1593|
# 1594| fidp = get_fid(pdu, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_setattr’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1669:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘v9iattr.mtime_sec’
# 1667| }
# 1668|
# 1669|-> trace_v9fs_setattr(pdu->tag, pdu->id, fid,
# 1670| v9iattr.valid, v9iattr.mode, v9iattr.uid, v9iattr.gid,
# 1671| v9iattr.size, v9iattr.atime_sec, v9iattr.mtime_sec);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘name_is_illegal’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1767:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘name’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘name_is_illegal’
# 1765| static bool name_is_illegal(const char *name)
# 1766| {
# 1767|-> return !*name || strchr(name, '/') != NULL;
# 1768| }
# 1769|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_walk’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1801:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘nwnames’
# 1799| offset += err;
# 1800|
# 1801|-> trace_v9fs_walk(pdu->tag, pdu->id, fid, newfid, nwnames);
# 1802|
# 1803| if (nwnames > P9_MAXWELEM) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_open’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1989:14: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘modebyte’
# 1987| uint8_t modebyte;
# 1988| err = pdu_unmarshal(pdu, offset, "db", &fid, &modebyte);
# 1989|-> mode = modebyte;
# 1990| }
# 1991| if (err < 0) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:1994:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘mode’
# 1992| goto out_nofid;
# 1993| }
# 1994|-> trace_v9fs_open(pdu->tag, pdu->id, fid, mode);
# 1995|
# 1996| fidp = get_fid(pdu, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_lcreate’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2085:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘gid’
# 2083| goto out_nofid;
# 2084| }
# 2085|-> trace_v9fs_lcreate(pdu->tag, pdu->id, dfid, flags, mode, gid);
# 2086|
# 2087| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_fsync’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2154:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘datasync’
# 2152| goto out_nofid;
# 2153| }
# 2154|-> trace_v9fs_fsync(pdu->tag, pdu->id, fid, datasync);
# 2155|
# 2156| fidp = get_fid(pdu, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_read’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2358:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘max_count’
# 2356| goto out_nofid;
# 2357| }
# 2358|-> trace_v9fs_read(pdu->tag, pdu->id, fid, off, max_count);
# 2359|
# 2360| fidp = get_fid(pdu, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_readdir’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2575:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘max_count’
# 2573| goto out_nofid;
# 2574| }
# 2575|-> trace_v9fs_readdir(pdu->tag, pdu->id, fid, initial_offset, max_count);
# 2576|
# 2577| /* Enough space for a R_readdir header: size[4] Rreaddir tag[2] count[4] */
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_write’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2681:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘count’
# 2679| }
# 2680| offset += err;
# 2681|-> v9fs_init_qiov_from_pdu(&qiov_full, pdu, offset, count, true);
# 2682| trace_v9fs_write(pdu->tag, pdu->id, fid, off, count, qiov_full.niov);
# 2683|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_create’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2768:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘mode’
# 2766| goto out_nofid;
# 2767| }
# 2768|-> trace_v9fs_create(pdu->tag, pdu->id, fid, name.data, perm, mode);
# 2769|
# 2770| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_symlink’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:2962:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘gid’
# 2960| goto out_nofid;
# 2961| }
# 2962|-> trace_v9fs_symlink(pdu->tag, pdu->id, dfid, name.data, symname.data, gid);
# 2963|
# 2964| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_link’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3055:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘oldfid’
# 3053| goto out_nofid;
# 3054| }
# 3055|-> trace_v9fs_link(pdu->tag, pdu->id, dfid, oldfid, name.data);
# 3056|
# 3057| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_wstat’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3469:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘v9stat.mtime’
# 3467| goto out_nofid;
# 3468| }
# 3469|-> trace_v9fs_wstat(pdu->tag, pdu->id, fid,
# 3470| v9stat.mode, v9stat.atime, v9stat.mtime);
# 3471|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_mknod’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3655:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘minor’
# 3653| goto out_nofid;
# 3654| }
# 3655|-> trace_v9fs_mknod(pdu->tag, pdu->id, fid, mode, major, minor);
# 3656|
# 3657| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_lock’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3719:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘flock.length’
# 3717| goto out_nofid;
# 3718| }
# 3719|-> trace_v9fs_lock(pdu->tag, pdu->id, fid,
# 3720| flock.type, flock.start, flock.length);
# 3721|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_getlock’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3770:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘glock.length’
# 3768| goto out_nofid;
# 3769| }
# 3770|-> trace_v9fs_getlock(pdu->tag, pdu->id, fid,
# 3771| glock.type, glock.start, glock.length);
# 3772|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_mkdir’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3817:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘gid’
# 3815| goto out_nofid;
# 3816| }
# 3817|-> trace_v9fs_mkdir(pdu->tag, pdu->id, fid, name.data, mode, gid);
# 3818|
# 3819| if (name_is_illegal(name.data)) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_xattrwalk’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3873:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘newfid’
# 3871| goto out_nofid;
# 3872| }
# 3873|-> trace_v9fs_xattrwalk(pdu->tag, pdu->id, fid, newfid, name.data);
# 3874|
# 3875| file_fidp = get_fid(pdu, fid);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c: scope_hint: In function ‘v9fs_xattrcreate’
qemu-9.0.0-build/qemu-9.0.0/hw/9pfs/9p.c:3997:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘flags’
# 3995| goto out_nofid;
# 3996| }
# 3997|-> trace_v9fs_xattrcreate(pdu->tag, pdu->id, fid, name.data, size, flags);
# 3998|
# 3999| if (flags & ~(P9_XATTR_CREATE | P9_XATTR_REPLACE)) {
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c: scope_hint: In function ‘bios_linker_find_file’
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c:163:14: warning[-Wanalyzer-null-argument]: use of NULL ‘name’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c:198:34: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c: scope_hint: In function ‘bios_linker_find_file’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
/usr/include/glib-2.0/glib.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/bios-linker-loader.c:162:18: note: in expansion of macro ‘g_array_index’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 2 of ‘strcmp’ must be non-null
# 161| for (i = 0; i < linker->file_list->len; i++) {
# 162| entry = &g_array_index(linker->file_list, BiosLinkerFileEntry, i);
# 163|-> if (!strcmp(entry->name, name)) {
# 164| return entry;
# 165| }
Error: GCC_ANALYZER_WARNING (CWE-835):
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/cpu.c: scope_hint: In function ‘cpu_hotplug_wr’
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/cpu.c:166:35: warning[-Wanalyzer-infinite-loop]: infinite loop
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/trace.h:1: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/cpu.c:7: included_from: Included from here.
# 164|
# 165| do {
# 166|-> cdev = &cpu_st->devs[iter];
# 167| if (cdev->is_inserting || cdev->is_removing ||
# 168| cdev->fw_remove) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/acpi/hmat.c:141:27: warning[unix.Malloc]: Use of memory allocated with size zero
# 139| lb_data->target;
# 140|
# 141|-> entry_list[index] = (uint16_t)(lb_data->data / hmat_lb->base);
# 142| }
# 143|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/alpha/dp264.c:82:28: warning[core.NullDereference]: Dereference of null pointer
# 80| * See init_hwrpb() in the PALcode.
# 81| */
# 82|-> cpus[0]->env.trap_arg0 = ram_size;
# 83| cpus[0]->env.trap_arg1 = 0;
# 84| cpus[0]->env.trap_arg2 = smp_cpus | (!machine->enable_graphics << 6);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c:169:18: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 167| case FIXUP_BOOTREG:
# 168| case FIXUP_DSB:
# 169|-> insn = fixupcontext[fixup];
# 170| break;
# 171| default:
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c: scope_hint: In function ‘arm_setup_direct_kernel_boot’
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c:973:11: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘elf_entry’
# 971| }
# 972| }
# 973|-> entry = elf_entry;
# 974| if (kernel_size < 0) {
# 975| uint64_t loadaddr = info->loader_start + KERNEL_NOLOAD_ADDR;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/boot.c:973:11: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 971| }
# 972| }
# 973|-> entry = elf_entry;
# 974| if (kernel_size < 0) {
# 975| uint64_t loadaddr = info->loader_start + KERNEL_NOLOAD_ADDR;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/realview.c:202:15: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 200| uint32_t gic_addr = is_pb ? 0x1e000000 : 0x10040000;
# 201| /* For now just create the nIRQ GIC, and ignore the others. */
# 202|-> dev = sysbus_create_simple(TYPE_REALVIEW_GIC, gic_addr, cpu_irq[0]);
# 203| }
# 204| for (n = 0; n < 64; n++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/virt.c:1980:9: warning[deadcode.DeadStores]: Value stored to 'max_cpus' during its initialization is never read
# 1978| static void virt_cpu_post_init(VirtMachineState *vms, MemoryRegion *sysmem)
# 1979| {
# 1980|-> int max_cpus = MACHINE(vms)->smp.max_cpus;
# 1981| bool aarch64, pmu, steal_time;
# 1982| CPUState *cpu;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/virt.c:1985:5: warning[deadcode.DeadStores]: Value stored to 'pmu' is never read
# 1983|
# 1984| aarch64 = object_property_get_bool(OBJECT(first_cpu), "aarch64", NULL);
# 1985|-> pmu = object_property_get_bool(OBJECT(first_cpu), "pmu", NULL);
# 1986| steal_time = object_property_get_bool(OBJECT(first_cpu),
# 1987| "kvm-steal-time", NULL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/virt.c:1986:5: warning[deadcode.DeadStores]: Value stored to 'steal_time' is never read
# 1984| aarch64 = object_property_get_bool(OBJECT(first_cpu), "aarch64", NULL);
# 1985| pmu = object_property_get_bool(OBJECT(first_cpu), "pmu", NULL);
# 1986|-> steal_time = object_property_get_bool(OBJECT(first_cpu),
# 1987| "kvm-steal-time", NULL);
# 1988|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/arm/xilinx_zynq.c:255:5: warning[deadcode.DeadStores]: Value stored to 'n' is never read
# 253| n = zynq_init_spi_flashes(0xE0006000, pic[58 - IRQ_OFFSET], false, 0);
# 254| n = zynq_init_spi_flashes(0xE0007000, pic[81 - IRQ_OFFSET], false, n);
# 255|-> n = zynq_init_spi_flashes(0xE000D000, pic[51 - IRQ_OFFSET], true, n);
# 256|
# 257| sysbus_create_simple(TYPE_CHIPIDEA, 0xE0002000, pic[53 - IRQ_OFFSET]);
Error: GCC_ANALYZER_WARNING (CWE-835):
qemu-9.0.0-build/qemu-9.0.0/hw/audio/ac97.c: scope_hint: In function ‘write_bup’
qemu-9.0.0-build/qemu-9.0.0/hw/audio/ac97.c:946:12: warning[-Wanalyzer-infinite-loop]: infinite loop
qemu-9.0.0-build/qemu-9.0.0/hw/audio/ac97.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:31: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:28: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/hw/audio/ac97.c:947:20: note: in expansion of macro ‘MIN’
# 944| }
# 945|
# 946|-> while (elapsed) {
# 947| int temp = MIN(elapsed, sizeof(s->silence));
# 948| while (temp) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/adlib.c:93:13: warning[deadcode.DeadStores]: Value stored to 'delta' is never read
# 91| uint64_t delta;
# 92|
# 93|-> delta = AUD_get_elapsed_usec_out (s->voice, &s->ats);
# 94| ldebug (
# 95| "delta = %f dexp = %f expired => %d\n",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/cs4231a.c:369:5: warning[deadcode.DeadStores]: Value stored to 'iaddr' is never read
# 367|
# 368| saddr = addr;
# 369|-> iaddr = ~0U;
# 370|
# 371| switch (saddr) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/fmopl.c:1090:30: warning[deadcode.DeadStores]: Value stored to 'ptr' is never read
# 1088| memset(ptr,0,state_size);
# 1089| OPL = (FM_OPL *)ptr; ptr+=sizeof(FM_OPL);
# 1090|-> OPL->P_CH = (OPL_CH *)ptr; ptr+=sizeof(OPL_CH)*max_ch;
# 1091| /* set channel state pointer */
# 1092| OPL->clock = clock;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/gusemu_hal.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/gusemu_mixer.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/virtio-snd.c:228:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'pcm_info'
# 226| stream = virtio_snd_pcm_get_stream(s, stream_id);
# 227| if (!stream) {
# 228|-> error_report("Invalid stream id: %"PRIu32, stream_id);
# 229| cmd->resp.code = cpu_to_le32(VIRTIO_SND_S_BAD_MSG);
# 230| return;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/virtio-snd.c:773:13: warning[unix.Malloc]: Use of memory after it is freed
# 771|
# 772| /* process command */
# 773|-> process_cmd(s, cmd);
# 774|
# 775| QTAILQ_REMOVE(&s->cmdq, cmd, next);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/audio/virtio-snd.c:1376:13: warning[unix.Malloc]: Use of memory after it is freed
# 1374| while (!QTAILQ_EMPTY(&vsnd->cmdq)) {
# 1375| cmd = QTAILQ_FIRST(&vsnd->cmdq);
# 1376|-> QTAILQ_REMOVE(&vsnd->cmdq, cmd, next);
# 1377| virtio_snd_ctrl_cmd_free(cmd);
# 1378| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/block/dataplane/xen-block.c:647:9: warning[unix.Malloc]: Use of memory after it is freed
# 645| while (!QLIST_EMPTY(&dataplane->freelist)) {
# 646| request = QLIST_FIRST(&dataplane->freelist);
# 647|-> QLIST_REMOVE(request, list);
# 648| qemu_iovec_destroy(&request->v);
# 649| qemu_vfree(request->buf);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/block/fdc.c:348:13: warning[deadcode.DeadStores]: Value stored to 'parse' is never read
# 346| if (match == -1) {
# 347| if (size_match != -1) {
# 348|-> parse = &fd_formats[size_match];
# 349| FLOPPY_DPRINTF("User requested floppy drive type '%s', "
# 350| "but inserted medium appears to be a "
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/block/fdc.c: scope_hint: In function ‘get_cur_drv’
qemu-9.0.0-build/qemu-9.0.0/hw/block/fdc.c:1172:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 1170| FDrive *cur_drv = get_drv(fdctrl, fdctrl->cur_drv);
# 1171|
# 1172|-> if (!cur_drv->blk) {
# 1173| /*
# 1174| * Kludge: empty drive line selected. Create an anonymous
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/block/virtio-blk.c:1574:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'vqs'
# 1572|
# 1573| if (!iothread_by_id(name)) {
# 1574|-> error_setg(errp, "IOThread \"%s\" object does not exist", name);
# 1575| return false;
# 1576| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c: scope_hint: In function ‘xen_block_drive_destroy’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:854:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘drive’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:13: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:904:9: note: in expansion of macro ‘error_setg’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:853:5: note: in expansion of macro ‘ERRP_GUARD’
# 852| {
# 853| ERRP_GUARD();
# 854|-> char *node_name = drive->node_name;
# 855|
# 856| if (node_name) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:854:23: warning[core.NullDereference]: Access to field 'node_name' results in a dereference of a null pointer (loaded from variable 'drive')
# 852| {
# 853| ERRP_GUARD();
# 854|-> char *node_name = drive->node_name;
# 855|
# 856| if (node_name) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c: scope_hint: In function ‘xen_block_device_create’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:1094:70: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:8: included_from: Included from here.
/usr/include/glib-2.0/glib/glist.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/ghash.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:52: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
/usr/include/glib-2.0/glib/gmem.h:332:57: note: in expansion of macro ‘_G_NEW’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:911:13: note: in expansion of macro ‘g_new0’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c:872:5: note: in expansion of macro ‘ERRP_GUARD’
/usr/lib64/glib-2.0/include/glibconfig.h:9: included_from: Included from here.
/usr/include/glib-2.0/glib/gtypes.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/galloca.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/error.h:520:1: note: in expansion of macro ‘G_DEFINE_AUTO_CLEANUP_CLEAR_FUNC’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c: scope_hint: In function ‘xen_block_device_create’
qemu-9.0.0-build/qemu-9.0.0/hw/block/xen-block.c: scope_hint: In function ‘xen_block_device_create’
# 1092| }
# 1093|
# 1094|-> if (!object_property_set_str(OBJECT(xendev), "iothread", iothread->id,
# 1095| errp)) {
# 1096| error_prepend(errp, "failed to set 'iothread': ");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/char/ibex_uart.c:398:55: warning[core.DivideZero]: Division by zero
# 396| uint64_t baud = ibex_uart_get_baud(s);
# 397|
# 398|-> s->char_tx_time = (NANOSECONDS_PER_SECOND / baud) * 10;
# 399| }
# 400| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/char/ibex_uart.c:458:47: warning[core.DivideZero]: Division by zero
# 456| uint64_t baud = ibex_uart_get_baud(s);
# 457|
# 458|-> s->char_tx_time = (NANOSECONDS_PER_SECOND / baud) * 10;
# 459| }
# 460|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/char/imx_serial.c:260:14: warning[deadcode.DeadStores]: Value stored to 'chr' during its initialization is never read
# 258| {
# 259| IMXSerialState *s = (IMXSerialState *)opaque;
# 260|-> Chardev *chr = qemu_chr_fe_get_driver(&s->chr);
# 261| unsigned char ch;
# 262|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/core/irq.c:117:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'old_irqs'
# 115| gpio_in[i]->opaque = &old_irqs[i];
# 116| }
# 117|-> }
# 118|
# 119| static const TypeInfo irq_type_info = {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/core/platform-bus.c:134:32: warning[core.BitwiseShift]: Right operand is negative in left shift
# 132| MemoryRegion *sbdev_mr = sysbus_mmio_get_region(sbdev, n);
# 133| uint64_t size = memory_region_size(sbdev_mr);
# 134|-> uint64_t alignment = (1ULL << (63 - clz64(size + size - 1)));
# 135| uint64_t off;
# 136| bool found_region = false;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/core/ptimer.c:260:27: warning[core.DivideZero]: Division by zero
# 258| div += 1;
# 259| }
# 260|-> counter = rem / div;
# 261|
# 262| if (s->policy_mask & PTIMER_POLICY_WRAP_AFTER_ONE_PERIOD) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-clock.c: scope_hint: In function ‘qdev_alias_clock’
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-clock.c:203:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-clock.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/clock.h:18: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-clock.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-clock.c:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-clock.c:151:5: note: in expansion of macro ‘QLIST_FOREACH’
# 201| ncl = qdev_get_clocklist(dev, name);
# 202|
# 203|-> qdev_init_clocklist(alias_dev, alias_name, ncl->output, ncl->clock);
# 204|
# 205| return ncl->clock;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-properties.c: scope_hint: In function ‘qdev_prop_set_enum’
qemu-9.0.0-build/qemu-9.0.0/hw/core/qdev-properties.c:848:50: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 846| prop = qdev_prop_find(dev, name);
# 847| object_property_set_str(OBJECT(dev), name,
# 848|-> qapi_enum_lookup(prop->info->enum_table, value),
# 849| &error_abort);
# 850| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c: scope_hint: In function ‘add_amd_xgbe_fdt_node’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:401:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘intp’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:371:5: note: in expansion of macro ‘qemu_fdt_setprop_cells’
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:371:5: note: in expansion of macro ‘qemu_fdt_setprop_cells’
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-core.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/sysbus.h:6: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/platform-bus.h:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/core/sysbus-fdt.c:396:9: note: in expansion of macro ‘QLIST_FOREACH’
# 399| }
# 400| }
# 401|-> if (intp->flags & VFIO_IRQ_INFO_AUTOMASKED) {
# 402| irq_attr[3 * i + 2] = cpu_to_be32(GIC_FDT_IRQ_FLAGS_LEVEL_HI);
# 403| } else {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/cxl/cxl-cdat.c:69:27: warning[unix.Malloc]: Potential leak of memory pointed to by 'cdat_header'
# 67| if (cdat->built_buf_len <= 0) {
# 68| /* Build later as not all data available yet */
# 69|-> cdat->to_update = true;
# 70| return;
# 71| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/cxl/cxl-host.c:40:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'fw'
# 38| fw->enc_int_ways = cxl_interleave_ways_enc(fw->num_targets, errp);
# 39| if (*errp) {
# 40|-> return;
# 41| }
# 42|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/edid-generate.c:411:9: warning[deadcode.DeadStores]: Value stored to 'dpi' is never read
# 409| width_mm = info->width_mm;
# 410| height_mm = info->height_mm;
# 411|-> dpi = qemu_edid_dpi_from_mm(width_mm, info->prefx);
# 412| } else {
# 413| width_mm = qemu_edid_dpi_to_mm(dpi, info->prefx);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/pl110.c:134: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/display/pl110_template.h:183:9: warning[deadcode.DeadStores]: Value stored to 'data' is never read
# 181| data >>= 6;
# 182| MSB = (data & 0x1f) << 3;
# 183|-> data >>= 5;
# 184| COPY_PIXEL(d, rgb_to_pixel32(r, g, b));
# 185| #undef MSB
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/pl110_template.h:251:9: warning[deadcode.DeadStores]: Value stored to 'data' is never read
# 249| data >>= 5;
# 250| MSB = (data & 0x1f) << 3;
# 251|-> data >>= 6;
# 252| COPY_PIXEL(d, rgb_to_pixel32(r, g, b));
# 253| #undef MSB
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/pl110_template.h:289:9: warning[deadcode.DeadStores]: Value stored to 'data' is never read
# 287| data >>= 4;
# 288| MSB = (data & 0xf) << 4;
# 289|-> data >>= 8;
# 290| COPY_PIXEL(d, rgb_to_pixel32(r, g, b));
# 291| #undef MSB
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/virtio-gpu-rutabaga.c:638:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'res'
# 636| }
# 637|
# 638|-> CHECK(!result, cmd);
# 639|
# 640| QTAILQ_INSERT_HEAD(&g->reslist, res, next);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/virtio-gpu.c:1563:9: warning[unix.Malloc]: Use of memory after it is freed
# 1561| while (!QTAILQ_EMPTY(&g->cmdq)) {
# 1562| cmd = QTAILQ_FIRST(&g->cmdq);
# 1563|-> QTAILQ_REMOVE(&g->cmdq, cmd, next);
# 1564| g_free(cmd);
# 1565| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/display/virtio-gpu.c:1569:9: warning[unix.Malloc]: Use of memory after it is freed
# 1567| while (!QTAILQ_EMPTY(&g->fenceq)) {
# 1568| cmd = QTAILQ_FIRST(&g->fenceq);
# 1569|-> QTAILQ_REMOVE(&g->fenceq, cmd, next);
# 1570| g->inflight--;
# 1571| g_free(cmd);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/hv-balloon-page_range_tree.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/hv-balloon-page_range_tree.c:80: warning[uninitvar]: Uninitialized variable: intersection
# 78|
# 79| if (!node ||
# 80|-> (!intersection && !joinable)) {
# 81| /*
# 82| * !node case: the tree is empty or the very first node in the tree
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/hv-balloon-page_range_tree.c:80: warning[uninitvar]: Uninitialized variable: joinable
# 78|
# 79| if (!node ||
# 80|-> (!intersection && !joinable)) {
# 81| /*
# 82| * !node case: the tree is empty or the very first node in the tree
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/hv-balloon-page_range_tree.c:113: warning[uninitvar]: Uninitialized variable: range
# 111|
# 112| intersection = page_range_intersection_size(rangecur,
# 113|-> range->start, range->count);
# 114| joinable = page_range_joinable_left(rangecur,
# 115| range->start, range->count);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c: scope_hint: In function ‘sgl_from_gpa_ranges’
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:1023:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘hdr.rangecount’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:10: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c: scope_hint: In function ‘sgl_from_gpa_ranges’
# 1021| len -= sizeof(hdr);
# 1022|
# 1023|-> num = (len - hdr.rangecount * sizeof(vmbus_gpa_range)) / sizeof(uint64_t);
# 1024| if (num < 0) {
# 1025| return -EIO;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:1041:31: warning[core.UndefinedBinaryOperatorResult]: The left operand of '&' is a garbage value
# 1039| len -= sizeof(range);
# 1040|
# 1041|-> if (range.byte_offset & TARGET_PAGE_MASK) {
# 1042| goto eio;
# 1043| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/hyperv/vmbus.c:1352:5: warning[core.NullDereference]: Access to field 'tql_next' results in a dereference of a null pointer (loaded from field 'tql_prev')
# 1350| {
# 1351| assert(chan->state == VMCHAN_INIT);
# 1352|-> QTAILQ_REMOVE(&chan->vmbus->channel_list, chan, link);
# 1353| unregister_chan_id(chan);
# 1354| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i2c/smbus_eeprom.c:195:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'eeprom_buf'
# 193| eeprom_buf + (i * SMBUS_EEPROM_SIZE));
# 194| }
# 195|-> }
# 196|
# 197| /* Generate SDRAM SPD EEPROM data describing a module of type and size */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i2c/smbus_eeprom.c:225:15: warning[core.BitwiseShift]: Right operand is negative in left shift
# 223| size = ram_size >> 20; /* work in terms of megabytes */
# 224| sz_log2 = 31 - clz32(size);
# 225|-> size = 1U << sz_log2;
# 226| assert(ram_size == size * MiB);
# 227| assert(sz_log2 >= min_log2);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/amd_iommu.c:208:21: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 206| {
# 207| int index = start / 64, bitpos = start % 64;
# 208|-> uint64_t mask = MAKE_64BIT_MASK(start, length);
# 209| buffer[index] &= ~mask;
# 210| buffer[index] |= (value << bitpos) & mask;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/amd_iommu.c:380:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'entry'
# 378| g_hash_table_replace(s->iotlb, key, entry);
# 379| }
# 380|-> }
# 381|
# 382| static void amdvi_completion_wait(AMDVIState *s, uint64_t *cmd)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/amd_iommu.c:380:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'key'
# 378| g_hash_table_replace(s->iotlb, key, entry);
# 379| }
# 380|-> }
# 381|
# 382| static void amdvi_completion_wait(AMDVIState *s, uint64_t *cmd)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:951:16: warning[core.UndefinedBinaryOperatorResult]: The left operand of '>>' is a garbage value
# 949| if (s->root_scalable) {
# 950| vtd_ce_get_rid2pasid_entry(s, ce, &pe, pasid);
# 951|-> return VTD_PE_GET_LEVEL(&pe);
# 952| }
# 953|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:1038:26: warning[core.UndefinedBinaryOperatorResult]: The left operand of '&' is a garbage value
# 1036| if (s->root_scalable) {
# 1037| vtd_ce_get_rid2pasid_entry(s, ce, &pe, pasid);
# 1038|-> return pe.val[0] & VTD_SM_PASID_ENTRY_SLPTPTR;
# 1039| }
# 1040|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:1551:16: warning[core.UndefinedBinaryOperatorResult]: The left operand of '&' is a garbage value
# 1549| if (s->root_scalable) {
# 1550| vtd_ce_get_rid2pasid_entry(s, ce, &pe, pasid);
# 1551|-> return VTD_SM_PASID_ENTRY_DID(pe.val[1]);
# 1552| }
# 1553|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:2461:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 2459| /* Invalidation completed. Change something to show */
# 2460| vtd_set_clear_mask_quad(s, DMAR_CCMD_REG, VTD_CCMD_ICC, 0ULL);
# 2461|-> ret = vtd_set_clear_mask_quad(s, DMAR_CCMD_REG, VTD_CCMD_CAIG_MASK,
# 2462| ret);
# 2463| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:2482:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 2480| /* Invalidation completed. Change something to show */
# 2481| vtd_set_clear_mask_quad(s, DMAR_IOTLB_REG, VTD_TLB_IVT, 0ULL);
# 2482|-> ret = vtd_set_clear_mask_quad(s, DMAR_IOTLB_REG,
# 2483| VTD_TLB_FLUSH_GRANU_MASK_A, ret);
# 2484| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/intel_iommu.c:3871:5: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'translated_addr')
# 3869| map.iova = n->start;
# 3870| map.size = total - 1; /* Inclusive */
# 3871|-> iova_tree_remove(as->iova_tree, map);
# 3872| }
# 3873|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/kvm/xenstore_impl.c: scope_hint: In function ‘fire_watches.part.0’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/kvm/xenstore_impl.c:310:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘l’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/i386/kvm/xenstore_impl.c:12: included_from: Included from here.
# 308| if (!w) {
# 309| /* Fire the parent nodes from 'op' if asked to */
# 310|-> w = l->data;
# 311| l = l->next;
# 312| continue;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/kvm/xenstore_impl.c:1622:17: warning[core.UndefinedBinaryOperatorResult]: The left operand of '==' is a garbage value
# 1620| XsNode *child;
# 1621|
# 1622|-> if (path[0] == '\0') {
# 1623| return n;
# 1624| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/kvm/xenstore_impl.c:1870:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'base_t.root'
# 1868| * responsibility to rebuild everything precisely as it was before.
# 1869| */
# 1870|-> ret = transaction_commit(s, &base_t);
# 1871| if (ret) {
# 1872| return ret;
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/microvm.c: scope_hint: In function ‘microvm_fix_kernel_cmdline’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/microvm.c:413:59: warning[-Wanalyzer-null-argument]: use of NULL ‘cmdline’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/i386/microvm.c:18: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/i386/microvm.c:390:15: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/microvm.c: scope_hint: In function ‘microvm_fix_kernel_cmdline’
<built-in>: note: argument 1 of ‘__builtin_strlen’ must be non-null
# 411| }
# 412|
# 413|-> fw_cfg_modify_i32(x86ms->fw_cfg, FW_CFG_CMDLINE_SIZE, strlen(cmdline) + 1);
# 414| fw_cfg_modify_string(x86ms->fw_cfg, FW_CFG_CMDLINE_DATA, cmdline);
# 415|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/sgx.c: scope_hint: In function ‘hmp_info_sgx’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/sgx.c:247:24: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 245| }
# 246| monitor_printf(mon, "SGX support: %s\n",
# 247|-> info->sgx ? "enabled" : "disabled");
# 248| monitor_printf(mon, "SGX1 support: %s\n",
# 249| info->sgx1 ? "enabled" : "disabled");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/sgx.c:255:18: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 253| info->flc ? "enabled" : "disabled");
# 254|
# 255|-> section_list = info->sections;
# 256| for (section = section_list; section; section = section->next) {
# 257| monitor_printf(mon, "NUMA node #%" PRId64 ": ",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/i386/vapic.c:465:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 463|
# 464| async_safe_run_on_cpu(cs, do_patch_instruction, RUN_ON_CPU_HOST_PTR(info));
# 465|-> }
# 466|
# 467| void vapic_report_tpr_access(DeviceState *dev, CPUState *cs, target_ulong ip,
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c: scope_hint: In function ‘x86_cpu_plug’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c:228:20: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 226|
# 227| found_cpu = x86_find_cpu_slot(MACHINE(x86ms), cpu->apic_id, NULL);
# 228|-> found_cpu->cpu = CPU(dev);
# 229| out:
# 230| error_propagate(errp, local_err);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c: scope_hint: In function ‘x86_cpu_unplug_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c:270:20: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 268|
# 269| found_cpu = x86_find_cpu_slot(MACHINE(x86ms), cpu->apic_id, NULL);
# 270|-> found_cpu->cpu = NULL;
# 271| qdev_unrealize(dev);
# 272|
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c: scope_hint: In function ‘x86_load_linux’
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c:828:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(kernel_filename, "rb")’
# 826|
# 827| kernel_size = get_file_size(f);
# 828|-> if (!kernel_size ||
# 829| fread(header, 1, MIN(ARRAY_SIZE(header), kernel_size), f) !=
# 830| MIN(ARRAY_SIZE(header), kernel_size)) {
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/hw/i386/x86.c:828:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(kernel_filename, "rb")’
# 826|
# 827| kernel_size = get_file_size(f);
# 828|-> if (!kernel_size ||
# 829| fread(header, 1, MIN(ARRAY_SIZE(header), kernel_size), f) !=
# 830| MIN(ARRAY_SIZE(header), kernel_size)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c: scope_hint: In function ‘handle_reg_h2d_fis’
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c:1233:36: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c:24: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/trace/trace-hw_ide.h:305: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ide/trace.h:1: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c:43: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/trace/trace-hw_ide.h:2124:5: note: in expansion of macro ‘QEMU_HANDLE_CMD_FIS_DUMP_ENABLED’
qemu-9.0.0-build/qemu-9.0.0/trace/control.h:125:25: note: in expansion of macro ‘TRACE_HANDLE_CMD_FIS_DUMP_BACKEND_DSTATE’
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c:1382:9: note: in expansion of macro ‘trace_event_get_state_backends’
# 1231| AHCICmdHdr *cmd = get_cmd_header(s, port, slot);
# 1232| AHCIDevice *ad = &s->dev[port];
# 1233|-> uint16_t opts = le16_to_cpu(cmd->opts);
# 1234|
# 1235| if (cmd_fis[1] & 0x0F) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c: scope_hint: In function ‘handle_cmd’
qemu-9.0.0-build/qemu-9.0.0/hw/ide/ahci.c:1370:16: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 1368| }
# 1369|
# 1370|-> tbl_addr = le64_to_cpu(cmd->tbl_addr);
# 1371| cmd_len = 0x80;
# 1372| cmd_fis = dma_memory_map(s->as, tbl_addr, &cmd_len,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/apic.c:706:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'deliver_bitmask'
# 704| foreach_apic(apic_iter, deliver_bitmask,
# 705| apic_startup(apic_iter, vector_num) );
# 706|-> return;
# 707| }
# 708|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/apic.c:902:5: warning[core.uninitialized.UndefReturn]: Undefined or garbage value returned to caller
# 900| apic_register_read(index, &val);
# 901|
# 902|-> return val;
# 903| }
# 904|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/arm_gic.c:583:41: warning[core.BitwiseShift]: Left shift by '32' overflows the capacity of 'int'
# 581| assert(s->sgi_pending[irq][cpu] != 0);
# 582| src = ctz32(s->sgi_pending[irq][cpu]);
# 583|-> s->sgi_pending[irq][cpu] &= ~(1 << src);
# 584| if (s->sgi_pending[irq][cpu] == 0) {
# 585| gic_clear_pending(s, irq, cpu);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/arm_gicv3_its.c:203:9: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 201| trace_gicv3_its_cte_read_fault(icid);
# 202| } else {
# 203|-> trace_gicv3_its_cte_read(icid, cte->valid, cte->rdbase);
# 204| }
# 205| return res;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/arm_gicv3_its.c:312:9: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 310| trace_gicv3_its_dte_read_fault(devid);
# 311| } else {
# 312|-> trace_gicv3_its_dte_read(devid, dte->valid, dte->size, dte->ittaddr);
# 313| }
# 314| return res;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/pnv_xive.c:660:30: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 658| static uint64_t pnv_xive_edt_size(PnvXive *xive, uint64_t type)
# 659| {
# 660|-> uint64_t edt_size = 1ull << pnv_xive_edt_shift(xive);
# 661| uint64_t size = 0;
# 662| int i;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/pnv_xive.c:1705:33: warning[core.BitwiseShift]: Right shift by '64' overflows the capacity of 'hwaddr'
# 1703| {
# 1704| PnvXive *xive = PNV_XIVE(opaque);
# 1705|-> uint64_t edt_index = offset >> pnv_xive_edt_shift(xive);
# 1706| uint64_t edt_type = 0;
# 1707| uint64_t edt_offset;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/pnv_xive.c:1748:33: warning[core.BitwiseShift]: Right shift by '64' overflows the capacity of 'hwaddr'
# 1746| {
# 1747| PnvXive *xive = PNV_XIVE(opaque);
# 1748|-> uint64_t edt_index = offset >> pnv_xive_edt_shift(xive);
# 1749| uint64_t edt_type = 0;
# 1750| uint64_t edt_offset;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/spapr_xive.c:550:16: warning[deadcode.DeadStores]: Value stored to 'xive' during its initialization is never read
# 548| static int vmstate_spapr_xive_pre_save(void *opaque)
# 549| {
# 550|-> SpaprXive *xive = SPAPR_XIVE(opaque);
# 551|
# 552| if (spapr_xive_in_kernel(xive)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/spapr_xive.c:565:16: warning[deadcode.DeadStores]: Value stored to 'xive' during its initialization is never read
# 563| static int spapr_xive_post_load(SpaprInterruptController *intc, int version_id)
# 564| {
# 565|-> SpaprXive *xive = SPAPR_XIVE(intc);
# 566|
# 567| if (spapr_xive_in_kernel(xive)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/xics.c:599:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'flags'
# 597| }
# 598|
# 599|-> if (kvm_irqchip_in_kernel()) {
# 600| Error *local_err = NULL;
# 601|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/xive.c:759:15: warning[deadcode.DeadStores]: Value stored to 'tctx' during its initialization is never read
# 757| static int vmstate_xive_tctx_pre_save(void *opaque)
# 758| {
# 759|-> XiveTCTX *tctx = XIVE_TCTX(opaque);
# 760| Error *local_err = NULL;
# 761| int ret;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/xive.c:776:15: warning[deadcode.DeadStores]: Value stored to 'tctx' during its initialization is never read
# 774| static int vmstate_xive_tctx_post_load(void *opaque, int version_id)
# 775| {
# 776|-> XiveTCTX *tctx = XIVE_TCTX(opaque);
# 777| Error *local_err = NULL;
# 778| int ret;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/loongarch/virt.c:839:9: warning[deadcode.DeadStores]: Value stored to 'cpu_model' is never read
# 837|
# 838| if (!cpu_model) {
# 839|-> cpu_model = LOONGARCH_CPU_TYPE_NAME("la464");
# 840| }
# 841|
Error: GCC_ANALYZER_WARNING (CWE-674):
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c: scope_hint: In function ‘m5206_mbar_readw’
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c:412:15: warning[-Wanalyzer-infinite-recursion]: infinite recursion
# 410| if (m5206_mbar_width[offset >> 2] > 1) {
# 411| uint16_t val;
# 412|-> val = m5206_mbar_readw(opaque, offset & ~1);
# 413| if ((offset & 1) == 0) {
# 414| val >>= 8;
Error: GCC_ANALYZER_WARNING (CWE-674):
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c: scope_hint: In function ‘m5206_mbar_readl’
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c:434:15: warning[-Wanalyzer-infinite-recursion]: infinite recursion
# 432| if (width > 2) {
# 433| uint32_t val;
# 434|-> val = m5206_mbar_readl(opaque, offset & ~3);
# 435| if ((offset & 3) == 0)
# 436| val >>= 16;
Error: GCC_ANALYZER_WARNING (CWE-674):
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c: scope_hint: In function ‘m5206_mbar_readb’
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c:440:15: warning[-Wanalyzer-infinite-recursion]: infinite recursion
# 438| } else if (width < 2) {
# 439| uint16_t val;
# 440|-> val = m5206_mbar_readb(opaque, offset) << 8;
# 441| val |= m5206_mbar_readb(opaque, offset + 1);
# 442| return val;
Error: GCC_ANALYZER_WARNING (CWE-674):
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c: scope_hint: In function ‘m5206_mbar_readw’
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/mcf5206.c:460:15: warning[-Wanalyzer-infinite-recursion]: infinite recursion
# 458| if (width < 4) {
# 459| uint32_t val;
# 460|-> val = m5206_mbar_readw(opaque, offset) << 16;
# 461| val |= m5206_mbar_readw(opaque, offset + 2);
# 462| return val;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/q800.c:646:13: warning[deadcode.DeadStores]: Value stored to 'initrd_base' is never read
# 644| initrd_size);
# 645| } else {
# 646|-> initrd_base = 0;
# 647| initrd_size = 0;
# 648| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/q800.c:647:13: warning[deadcode.DeadStores]: Value stored to 'initrd_size' is never read
# 645| } else {
# 646| initrd_base = 0;
# 647|-> initrd_size = 0;
# 648| }
# 649| BOOTINFO0(param_ptr, BI_LAST);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/virt.c:204:5: warning[deadcode.DeadStores]: Value stored to 'dev' is never read
# 202|
# 203| /* virt controller */
# 204|-> dev = sysbus_create_simple(TYPE_VIRT_CTRL, VIRT_CTRL_MMIO_BASE,
# 205| PIC_GPIO(VIRT_CTRL_IRQ_BASE));
# 206|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/virt.c:298:13: warning[deadcode.DeadStores]: Value stored to 'initrd_base' is never read
# 296| initrd_size);
# 297| } else {
# 298|-> initrd_base = 0;
# 299| initrd_size = 0;
# 300| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/m68k/virt.c:299:13: warning[deadcode.DeadStores]: Value stored to 'initrd_size' is never read
# 297| } else {
# 298| initrd_base = 0;
# 299|-> initrd_size = 0;
# 300| }
# 301| BOOTINFO0(param_ptr, BI_LAST);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/mem/cxl_type3.c:526:46: warning[unix.Malloc]: Use of memory after it is freed
# 524| cxl_err = QTAILQ_FIRST(&ct3d->error_list);
# 525| for (i = 0; i < CXL_RAS_ERR_HEADER_NUM; i++) {
# 526|-> stl_le_p(header_log + i, cxl_err->header[i]);
# 527| }
# 528| capctrl = FIELD_DP32(capctrl, CXL_RAS_ERR_CAP_CTRL,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/mips/loongson3_bootp.c:143:5: warning[deadcode.DeadStores]: Value stored to 'p' is never read
# 141| init_special_info(p);
# 142| lp->special_offset = cpu_to_le64((uintptr_t)p - (uintptr_t)lp);
# 143|-> p += ROUND_UP(sizeof(struct loongson_special_attribute), 64);
# 144| }
# 145|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/mips/mipssim.c:86:5: warning[deadcode.DeadStores]: Value stored to 'initrd_size' is never read
# 84|
# 85| /* load initrd */
# 86|-> initrd_size = 0;
# 87| initrd_offset = 0;
# 88| if (loaderparams.initrd_filename) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/mips/mipssim.c:87:5: warning[deadcode.DeadStores]: Value stored to 'initrd_offset' is never read
# 85| /* load initrd */
# 86| initrd_size = 0;
# 87|-> initrd_offset = 0;
# 88| if (loaderparams.initrd_filename) {
# 89| initrd_size = get_image_size(loaderparams.initrd_filename);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/applesmc.c:266:5: warning[unix.Malloc]: Use of memory after it is freed
# 264| def->data = data;
# 265|
# 266|-> QLIST_INSERT_HEAD(&s->data_def, def, node);
# 267| }
# 268|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_hace.c:281:9: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 279|
# 280| for (; i > 0; i--) {
# 281|-> address_space_unmap(&s->dram_as, iov[i - 1].iov_base,
# 282| iov[i - 1].iov_len, false,
# 283| iov[i - 1].iov_len);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c: scope_hint: In function ‘aspeed_lpc_read’
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c:332:28: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c: scope_hint: In function ‘aspeed_lpc_read’
# 330|
# 331| channel = aspeed_kcs_get_channel_by_register(reg);
# 332|-> if (s->regs[channel->str] & STR_IBF) {
# 333| enum aspeed_lpc_subdevice subdev;
# 334|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c: scope_hint: In function ‘aspeed_lpc_write’
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c:368:56: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/misc/aspeed_lpc.c: scope_hint: In function ‘aspeed_lpc_write’
# 366| case ODR3:
# 367| case ODR4:
# 368|-> s->regs[aspeed_kcs_get_channel_by_register(reg)->str] |= STR_OBF;
# 369| break;
# 370| default:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/imx6_src.c:159:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'ri'
# 157|
# 158| async_run_on_cpu(cpu, imx6_clear_reset_bit, RUN_ON_CPU_HOST_PTR(ri));
# 159|-> }
# 160|
# 161|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/imx7_src.c:164:1: warning[unix.Malloc]: Potential leak of memory pointed to by 'ri'
# 162|
# 163| async_run_on_cpu(cpu, imx7_clear_reset_bit, RUN_ON_CPU_HOST_PTR(ri));
# 164|-> }
# 165|
# 166|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/mips_cpc.c:47:15: warning[deadcode.DeadStores]: Value stored to 'cs' during its initialization is never read
# 45| static void cpc_run_vp(MIPSCPCState *cpc, uint64_t vp_run)
# 46| {
# 47|-> CPUState *cs = first_cpu;
# 48|
# 49| CPU_FOREACH(cs) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/misc/mips_cpc.c:65:15: warning[deadcode.DeadStores]: Value stored to 'cs' during its initialization is never read
# 63| static void cpc_stop_vp(MIPSCPCState *cpc, uint64_t vp_stop)
# 64| {
# 65|-> CPUState *cs = first_cpu;
# 66|
# 67| CPU_FOREACH(cs) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/can/xlnx-versal-canfd.c:959:13: warning[deadcode.DeadStores]: Value stored to 'dlc' during its initialization is never read
# 957| int i;
# 958| bool is_canfd_frame;
# 959|-> uint8_t dlc = frame->can_dlc;
# 960| uint8_t rx_reg_num = 0;
# 961| uint32_t dlc_reg_val = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/can/xlnx-versal-canfd.c:1198:9: warning[core.CallAndMessage]: 4th function call argument is an uninitialized value
# 1196| path = object_get_canonical_path(OBJECT(s));
# 1197|
# 1198|-> trace_xlnx_canfd_rx_data(path, frame->can_id, frame->can_dlc,
# 1199| frame->flags);
# 1200| canfd_update_irq(s);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/can/xlnx-versal-canfd.c:1390:13: warning[core.CallAndMessage]: 4th function call argument is an uninitialized value
# 1388| g_autofree char *path = object_get_canonical_path(OBJECT(s));
# 1389|
# 1390|-> trace_xlnx_canfd_tx_data(path, frame.can_id, frame.can_dlc,
# 1391| frame.flags);
# 1392| can_bus_client_send(&s->bus_client, &frame, 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/can/xlnx-versal-canfd.c:2009:5: warning[deadcode.DeadStores]: Value stored to 'pos' is never read
# 2007| pos = canfd_populate_regarray(s, r_array, pos,
# 2008| s->af_regs, NUM_AF * NUM_REG_PER_AF);
# 2009|-> pos = canfd_populate_regarray(s, r_array, pos,
# 2010| s->txe_regs, NUM_TXE * NUM_REG_PER_TXE);
# 2011|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/e1000.c:960:60: warning[core.UndefinedBinaryOperatorResult]: The left operand of '-' is a garbage value
# 958| }
# 959| do {
# 960|-> iov_copy = MIN(copy_size, iov->iov_len - iov_ofs);
# 961| pci_dma_write(d, ba, iov->iov_base + iov_ofs, iov_copy);
# 962| copy_size -= iov_copy;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/i82596.c:651:17: warning[deadcode.DeadStores]: Value stored to 'rba' is never read
# 649| address_space_write(&address_space_memory, rba,
# 650| MEMTXATTRS_UNSPECIFIED, crc_ptr, crccount);
# 651|-> rba += crccount;
# 652| crc_ptr += crccount;
# 653| len -= crccount;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:520:14: warning[deadcode.DeadStores]: Value stored to 'buf' during its initialization is never read
# 518| uint32_t tx_buf_addr, tx_buf_len;
# 519| uint16_t length = 0;
# 520|-> uint8_t *buf = tx_send_buffer;
# 521| uint32_t prev_buf_size = 0;
# 522| int csum = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:535:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 533| NPCM_DMA_STATUS_TX_RUNNING_FETCHING_STATE);
# 534| if (gmac_read_tx_desc(desc_addr, &tx_desc)) {
# 535|-> qemu_log_mask(LOG_GUEST_ERROR,
# 536| "TX Descriptor @ 0x%x can't be read\n",
# 537| desc_addr);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/npcm_gmac.c:617:13: warning[deadcode.DeadStores]: Value stored to 'buf' is never read
# 615| qemu_send_packet(qemu_get_queue(gmac->nic), tx_send_buffer, length);
# 616| trace_npcm_gmac_packet_sent(DEVICE(gmac)->canonical_path, length);
# 617|-> buf = tx_send_buffer;
# 618| length = 0;
# 619| }
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c: scope_hint: In function ‘rocker_world_type_by_name’
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c:1258:13: warning[-Wanalyzer-null-argument]: use of NULL ‘name’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c:18: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c:1278:25: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c:1278:25: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker.c: scope_hint: In function ‘rocker_world_type_by_name’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 1 of ‘strcmp’ must be non-null
# 1256|
# 1257| for (i = 0; i < ROCKER_WORLD_TYPE_MAX; i++) {
# 1258|-> if (strcmp(name, world_name(r->worlds[i])) == 0) {
# 1259| return r->worlds[i];
# 1260| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/net/rocker/rocker_of_dpa.c:1057:12: warning[unix.Malloc]: Potential leak of memory pointed to by 'iov_copy'
# 1055| of_dpa_flow_ig_tbl(&fc, ROCKER_OF_DPA_TABLE_ID_INGRESS_PORT);
# 1056|
# 1057|-> return iov_size(iov, iovcnt);
# 1058| }
# 1059|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c: scope_hint: In function ‘vhost_net_stop_one’
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:335:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘net’
# 333| struct vhost_vring_file file = { .fd = -1 };
# 334|
# 335|-> if (net->nc->info->type == NET_CLIENT_DRIVER_TAP) {
# 336| for (file.index = 0; file.index < net->dev.nvqs; ++file.index) {
# 337| int r = vhost_net_set_backend(&net->dev, &file);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c: scope_hint: In function ‘vhost_net_start’
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:388:16: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 386| * properly.
# 387| */
# 388|-> if (net->nc->info->type == NET_CLIENT_DRIVER_VHOST_USER) {
# 389| dev->use_guest_notifier_mask = false;
# 390| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c: scope_hint: In function ‘vhost_set_vring_enable’
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:550:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘nc’
# 548| * net/vhost-vdpa.c.
# 549| */
# 550|-> if (nc->info->type == NET_CLIENT_DRIVER_VHOST_VDPA) {
# 551| return 0;
# 552| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c: scope_hint: In function ‘vhost_net_virtqueue_reset’
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:587:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:16: included_from: Included from here.
# 585| idx = vhost_ops->vhost_get_vq_index(&net->dev, vq_index);
# 586|
# 587|-> if (net->nc->info->type == NET_CLIENT_DRIVER_TAP) {
# 588| file.index = idx;
# 589| int r = vhost_net_set_backend(&net->dev, &file);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c: scope_hint: In function ‘vhost_net_virtqueue_restart’
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:624:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 622| }
# 623|
# 624|-> if (net->nc->info->type == NET_CLIENT_DRIVER_TAP) {
# 625| file.index = idx;
# 626| file.fd = net->backend;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/net/vhost_net.c:639:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 637| error_report("Error when restarting the queue.");
# 638|
# 639|-> if (net->nc->info->type == NET_CLIENT_DRIVER_TAP) {
# 640| file.fd = VHOST_FILE_UNBIND;
# 641| file.index = idx;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/nvme/dif.c:334:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'zeroes'
# 332|
# 333| if (memcmp(bufp, zeroes, ns->lbasz) == 0) {
# 334|-> memset(mbuf + pil, 0xff, nvme_pi_tuple_size(ns));
# 335| }
# 336| } else {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/nvme/ns.c:444:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'ruhid'
# 442| while ((token = qemu_strsep(&p, ";")) != NULL) {
# 443| if (qemu_strtoui(token, &endptr, 0, &n) < 0) {
# 444|-> error_setg(errp, "cannot parse reclaim unit handle identifier");
# 445| free(r);
# 446| return false;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/nvram/fw_cfg.c: scope_hint: In function ‘fw_cfg_dma_transfer’
qemu-9.0.0-build/qemu-9.0.0/hw/nvram/fw_cfg.c:383:49: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 381|
# 382| while (dma.length > 0 && !(dma.control & FW_CFG_DMA_CTL_ERROR)) {
# 383|-> if (s->cur_entry == FW_CFG_INVALID || !e->data ||
# 384| s->cur_offset >= e->len) {
# 385| len = dma.length;
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_read’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:331:19: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘table’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:53: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:27:5: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:301:9: note: in expansion of macro ‘phb_error’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_read’
# 329| if (!tptr) {
# 330| /* Special PESTA case */
# 331|-> if (table == IODA3_TBL_PESTA) {
# 332| return ((uint64_t)(phb->ioda_PEST_AB[idx] & 1)) << 63;
# 333| } else if (table == IODA3_TBL_PESTB) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:331:19: warning[core.UndefinedBinaryOperatorResult]: The left operand of '==' is a garbage value
# 329| if (!tptr) {
# 330| /* Special PESTA case */
# 331|-> if (table == IODA3_TBL_PESTA) {
# 332| return ((uint64_t)(phb->ioda_PEST_AB[idx] & 1)) << 63;
# 333| } else if (table == IODA3_TBL_PESTB) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_write’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:350:19: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘table’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:45:43: note: in definition of macro ‘unlikely’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:27:5: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:301:9: note: in expansion of macro ‘phb_error’
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c: scope_hint: In function ‘pnv_phb4_ioda_write’
# 348| if (!tptr) {
# 349| /* Special PESTA case */
# 350|-> if (table == IODA3_TBL_PESTA) {
# 351| phb->ioda_PEST_AB[idx] &= ~1;
# 352| phb->ioda_PEST_AB[idx] |= (val >> 63) & 1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/pci-host/pnv_phb4.c:350:19: warning[core.UndefinedBinaryOperatorResult]: The left operand of '==' is a garbage value
# 348| if (!tptr) {
# 349| /* Special PESTA case */
# 350|-> if (table == IODA3_TBL_PESTA) {
# 351| phb->ioda_PEST_AB[idx] &= ~1;
# 352| phb->ioda_PEST_AB[idx] |= (val >> 63) & 1;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/pci/pci.c: scope_hint: In function ‘pci_device_iommu_address_space’
qemu-9.0.0-build/qemu-9.0.0/hw/pci/pci.c:2696:48: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘iommu_bus’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/pci/pci.c:25: included_from: Included from here.
# 2694| iommu_bus = parent_bus;
# 2695| }
# 2696|-> if (!pci_bus_bypass_iommu(bus) && iommu_bus->iommu_ops) {
# 2697| return iommu_bus->iommu_ops->get_address_space(bus,
# 2698| iommu_bus->iommu_opaque, devfn);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:376:18: warning[deadcode.DeadStores]: Value stored to 'env' during its initialization is never read
# 374| unsigned int smp_cpus = machine->smp.cpus;
# 375| const PPCE500MachineClass *pmc = PPCE500_MACHINE_GET_CLASS(pms);
# 376|-> CPUPPCState *env = cpu_env(first_cpu);
# 377| int ret = -1;
# 378| uint64_t mem_reg_property[] = { 0, cpu_to_be64(machine->ram_size) };
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c: scope_hint: In function ‘mmubooke_create_initial_mapping’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:763:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/kvm.h:214: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:31: included_from: Included from here.
# 761| ps = booke206_initial_map_tsize(env);
# 762| size = (ps << MAS1_TSIZE_SHIFT);
# 763|-> tlb->mas1 = MAS1_VALID | size;
# 764| tlb->mas2 = 0;
# 765| tlb->mas7_3 = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:867:32: warning[deadcode.DeadStores]: Value stored to 'pmc' during its initialization is never read
# 865| IrqLines *irqs)
# 866| {
# 867|-> const PPCE500MachineClass *pmc = PPCE500_MACHINE_GET_CLASS(pms);
# 868| DeviceState *dev = NULL;
# 869| SysBusDevice *s;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:986:5: warning[deadcode.DeadStores]: Value stored to 'env' is never read
# 984| }
# 985|
# 986|-> env = firstenv;
# 987|
# 988| if (!QEMU_IS_ALIGNED(machine->ram_size, RAM_SIZES_ALIGN)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:1253:9: warning[deadcode.DeadStores]: Value stored to 'cur_base' is never read
# 1251| }
# 1252|
# 1253|-> cur_base = initrd_base + initrd_size;
# 1254| }
# 1255|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500plat.c:35:26: warning[deadcode.DeadStores]: Value stored to 'pmc' during its initialization is never read
# 33| static void e500plat_init(MachineState *machine)
# 34| {
# 35|-> PPCE500MachineClass *pmc = PPCE500_MACHINE_GET_CLASS(machine);
# 36| /* Older KVM versions don't support EPR which breaks guests when we announce
# 37| MPIC variants that support EPR. Revert to an older one for those */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_newworld.c:304:9: warning[core.NullDereference]: Access to field 'bus_model' results in a dereference of a null pointer (loaded from variable 'env')
# 302| sysbus_mmio_get_region(s, 0));
# 303|
# 304|-> if (PPC_INPUT(env) == PPC_FLAGS_INPUT_970) {
# 305| machine_arch = ARCH_MAC99_U3;
# 306| /* 970 gets a U3 bus */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/pnv_lpc.c:296:9: warning[deadcode.DeadStores]: Value stored to 'success' is never read
# 294| data[3] = lpc->eccb_data_reg;
# 295|
# 296|-> success = opb_write(lpc, opb_addr, data, sz);
# 297| lpc->eccb_stat_reg = ECCB_STAT_OP_DONE;
# 298| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/ppc440_uc.c:945:9: warning[deadcode.DeadStores]: Value stored to 'size' is never read
# 943| s->reg_mask = val;
# 944| /* FIXME: how is size encoded? */
# 945|-> size = (val == 0x7001 ? 4096 : ~(val & 0xfffffffe) + 1);
# 946| break;
# 947| case PEGPL_SPECIAL:
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/ppce500_spin.c: scope_hint: In function ‘mmubooke_create_initial_mapping’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/ppce500_spin.c:82:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/kvm.h:214: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/hw_accel.h:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/ppce500_spin.c:35: included_from: Included from here.
# 80|
# 81| size = (booke206_page_size_to_tlb(len) << MAS1_TSIZE_SHIFT);
# 82|-> tlb->mas1 = MAS1_VALID | size;
# 83| tlb->mas2 = (va & TARGET_PAGE_MASK) | MAS2_M;
# 84| tlb->mas7_3 = pa & TARGET_PAGE_MASK;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/sam460ex.c:377:5: warning[deadcode.DeadStores]: Value stored to 'dev' is never read
# 375| i2c_slave_create_simple(i2c, "m41t80", 0x68);
# 376|
# 377|-> dev = sysbus_create_simple(TYPE_PPC4xx_I2C, 0x4ef600800,
# 378| qdev_get_gpio_in(uic[0], 3));
# 379|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:211:20: warning[unix.Malloc]: Potential leak of memory pointed to by 'servers_prop'
# 209| ret = fdt_setprop_cell(fdt, offset, "cpu-version", cpu->compat_pvr);
# 210| if (ret < 0) {
# 211|-> return ret;
# 212| }
# 213| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:225:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'gservers_prop'
# 223| servers_prop, sizeof(*servers_prop) * smt_threads);
# 224| if (ret < 0) {
# 225|-> return ret;
# 226| }
# 227| ret = fdt_setprop(fdt, offset, "ibm,ppc-interrupt-gserver#s",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:690:32: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 688| /* mem_start != 0 here */
# 689| if (ctzl(mem_start) < ctzl(sizetmp)) {
# 690|-> sizetmp = 1ULL << ctzl(mem_start);
# 691| }
# 692|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:1477:24: warning[deadcode.DeadStores]: Value stored to 'spapr' during its initialization is never read
# 1475| static target_ulong spapr_encode_hpt_for_kvm_pr(PPCVirtualHypervisor *vhyp)
# 1476| {
# 1477|-> SpaprMachineState *spapr = SPAPR_MACHINE(vhyp);
# 1478|
# 1479| assert(kvm_enabled());
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:2609:9: warning[deadcode.DeadStores]: Value stored to 'kvm_smt' during its initialization is never read
# 2607| Error *local_err = NULL;
# 2608| bool vsmt_user = !!spapr->vsmt;
# 2609|-> int kvm_smt = kvmppc_smt_threads();
# 2610| int ret;
# 2611| unsigned int smp_threads = ms->smp.threads;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr.c:4560:19: warning[deadcode.DeadStores]: Value stored to 'ms' during its initialization is never read
# 4558| {
# 4559| SpaprMachineState *spapr = SPAPR_MACHINE(qdev_get_machine());
# 4560|-> MachineState *ms = MACHINE(spapr);
# 4561| int vcpu_id;
# 4562|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_caps.c:237:13: warning[deadcode.DeadStores]: Value stored to 'kvm_val' during its initialization is never read
# 235| {
# 236| ERRP_GUARD();
# 237|-> uint8_t kvm_val = kvmppc_get_cap_safe_cache();
# 238|
# 239| if (tcg_enabled() && val) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_caps.c:262:13: warning[deadcode.DeadStores]: Value stored to 'kvm_val' during its initialization is never read
# 260| {
# 261| ERRP_GUARD();
# 262|-> uint8_t kvm_val = kvmppc_get_cap_safe_bounds_check();
# 263|
# 264| if (tcg_enabled() && val) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_caps.c:290:13: warning[deadcode.DeadStores]: Value stored to 'kvm_val' during its initialization is never read
# 288| {
# 289| ERRP_GUARD();
# 290|-> uint8_t kvm_val = kvmppc_get_cap_safe_indirect_branch();
# 291|
# 292| if (tcg_enabled() && val) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_caps.c:539:22: warning[deadcode.DeadStores]: Value stored to 'pcc' during its initialization is never read
# 537| ERRP_GUARD();
# 538| PowerPCCPU *cpu = POWERPC_CPU(first_cpu);
# 539|-> PowerPCCPUClass *pcc = POWERPC_CPU_GET_CLASS(cpu);
# 540|
# 541| if (!val) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_caps.c:597:13: warning[deadcode.DeadStores]: Value stored to 'kvm_val' during its initialization is never read
# 595| {
# 596| ERRP_GUARD();
# 597|-> uint8_t kvm_val = kvmppc_get_cap_count_cache_flush_assist();
# 598|
# 599| if (tcg_enabled() && val) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c: scope_hint: In function ‘rtas_event_log_contains’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:491:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/notify.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/runstate.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:486:5: note: in expansion of macro ‘QTAILQ_FOREACH’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c: scope_hint: In function ‘rtas_event_log_contains’
/usr/lib64/glib-2.0/include/glibconfig.h:9: included_from: Included from here.
/usr/include/glib-2.0/glib/gtypes.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/galloca.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:28: included_from: Included from here.
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:415:5: note: in expansion of macro ‘g_assert’
# 489| spapr_event_log_entry_type(entry));
# 490|
# 491|-> if (source->mask & event_mask) {
# 492| return true;
# 493| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/spapr_events.c:962:9: warning[deadcode.DeadStores]: Value stored to 'len' is never read
# 960|
# 961| if (event_len < len) {
# 962|-> len = event_len;
# 963| }
# 964|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:911:15: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 909| }
# 910| } else if (cmpserv("call-method", 0, 0)) {
# 911|-> ret = vof_call_method(ms, vof, args[0], args[1], args[2], args[3],
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:911:15: warning[core.CallAndMessage]: 4th function call argument is an uninitialized value
# 909| }
# 910| } else if (cmpserv("call-method", 0, 0)) {
# 911|-> ret = vof_call_method(ms, vof, args[0], args[1], args[2], args[3],
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:911:15: warning[core.CallAndMessage]: 5th function call argument is an uninitialized value
# 909| }
# 910| } else if (cmpserv("call-method", 0, 0)) {
# 911|-> ret = vof_call_method(ms, vof, args[0], args[1], args[2], args[3],
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:911:15: warning[core.CallAndMessage]: 6th function call argument is an uninitialized value
# 909| }
# 910| } else if (cmpserv("call-method", 0, 0)) {
# 911|-> ret = vof_call_method(ms, vof, args[0], args[1], args[2], args[3],
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:914:15: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
# 914|-> ret = vof_call_interpret(args[0], args[1], args[2], rets);
# 915| } else if (cmpserv("milliseconds", 0, 1)) {
# 916| ret = qemu_clock_get_ms(QEMU_CLOCK_VIRTUAL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:914:15: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
# 914|-> ret = vof_call_interpret(args[0], args[1], args[2], rets);
# 915| } else if (cmpserv("milliseconds", 0, 1)) {
# 916| ret = qemu_clock_get_ms(QEMU_CLOCK_VIRTUAL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/vof.c:914:15: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 912| args[4], args[5], rets);
# 913| } else if (cmpserv("interpret", 0, 0)) {
# 914|-> ret = vof_call_interpret(args[0], args[1], args[2], rets);
# 915| } else if (cmpserv("milliseconds", 0, 1)) {
# 916| ret = qemu_clock_get_ms(QEMU_CLOCK_VIRTUAL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/riscv/sifive_u.c:518:18: warning[deadcode.DeadStores]: Value stored to 'start_addr' during its initialization is never read
# 516| MemoryRegion *system_memory = get_system_memory();
# 517| MemoryRegion *flash0 = g_new(MemoryRegion, 1);
# 518|-> target_ulong start_addr = memmap[SIFIVE_U_DEV_DRAM].base;
# 519| target_ulong firmware_end_addr, kernel_start_addr;
# 520| const char *firmware_name;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/riscv/virt.c:776:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'intc_phandles'
# 774| }
# 775|
# 776|-> if (kvm_enabled() && virt_use_kvm_aia(s)) {
# 777| *irq_mmio_phandle = xplic_phandles[0];
# 778| *irq_virtio_phandle = xplic_phandles[0];
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/riscv/virt.c:1229:5: warning[deadcode.DeadStores]: Value stored to 'aplic_s' is never read
# 1227|
# 1228| /* Per-socket S-level APLIC */
# 1229|-> aplic_s = riscv_aplic_create(memmap[VIRT_APLIC_S].base +
# 1230| socket * memmap[VIRT_APLIC_S].size,
# 1231| memmap[VIRT_APLIC_S].size,
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c: scope_hint: In function ‘s390_ipl_prepare_pv_header’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c:709:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c: scope_hint: In function ‘s390_ipl_prepare_pv_header’
# 707| IplParameterBlock *ipib = s390_ipl_get_iplb_pv();
# 708| IPLBlockPV *ipib_pv = &ipib->pv;
# 709|-> void *hdr = g_malloc(ipib_pv->pv_header_len);
# 710| int rc;
# 711|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c: scope_hint: In function ‘s390_ipl_pv_unpack’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c:725:28: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/ipl.c: scope_hint: In function ‘s390_ipl_pv_unpack’
# 723| int i, rc = 0;
# 724|
# 725|-> for (i = 0; i < ipib_pv->num_comp; i++) {
# 726| rc = s390_pv_unpack(ipib_pv->components[i].addr,
# 727| TARGET_PAGE_ALIGN(ipib_pv->components[i].size),
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/s390-pci-vfio.c:46:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 44|
# 45| if (ioctl(fd, VFIO_IOMMU_GET_INFO, info)) {
# 46|-> return false;
# 47| }
# 48|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_dev_tmp_pre_save’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:71:30: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_dev_tmp_pre_save’
# 69| VirtIODevice *vdev = virtio_bus_get_device(&dev->bus);
# 70|
# 71|-> tmp->config_vector = vdev->config_vector;
# 72|
# 73| return 0;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_dev_tmp_post_load’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:82:25: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_dev_tmp_post_load’
# 80| VirtIODevice *vdev = virtio_bus_get_device(&dev->bus);
# 81|
# 82|-> vdev->config_vector = tmp->config_vector;
# 83| return 0;
# 84| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:389:30: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
# 387| /* Don't offer legacy features for modern devices. */
# 388| features.features = (uint32_t)
# 389|-> (vdev->host_features & ~vdc->legacy_features);
# 390| } else {
# 391| features.features = (uint32_t)vdev->host_features;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:391:55: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
# 389| (vdev->host_features & ~vdc->legacy_features);
# 390| } else {
# 391|-> features.features = (uint32_t)vdev->host_features;
# 392| }
# 393| } else if ((features.index == 1) && (dev->revision >= 1)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:398:52: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
# 396| * negotiated at least revision 1.
# 397| */
# 398|-> features.features = (uint32_t)(vdev->host_features >> 32);
# 399| } else {
# 400| /* Return zeroes if the guest supports more feature bits. */
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:432:42: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:30: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:425:19: note: in expansion of macro ‘ccw_dstream_read’
# 430| if (features.index == 0) {
# 431| virtio_set_features(vdev,
# 432|-> (vdev->guest_features & 0xffffffff00000000ULL) |
# 433| features.features);
# 434| } else if ((features.index == 1) && (dev->revision >= 1)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:441:42: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:425:19: note: in expansion of macro ‘ccw_dstream_read’
# 439| */
# 440| virtio_set_features(vdev,
# 441|-> (vdev->guest_features & 0x00000000ffffffffULL) |
# 442| ((uint64_t)features.features << 32));
# 443| } else {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:461:33: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
# 459| case CCW_CMD_READ_CONF:
# 460| if (check_len) {
# 461|-> if (ccw.count > vdev->config_len) {
# 462| ret = -EINVAL;
# 463| break;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:479:33: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
# 477| case CCW_CMD_WRITE_CONF:
# 478| if (check_len) {
# 479|-> if (ccw.count > vdev->config_len) {
# 480| ret = -EINVAL;
# 481| break;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:509:67: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/kvm.h:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:510:41: note: in expansion of macro ‘MEMTXATTRS_UNSPECIFIED’
# 507| ret = -EFAULT;
# 508| } else {
# 509|-> address_space_stb(&address_space_memory, ccw.cda, vdev->status,
# 510| MEMTXATTRS_UNSPECIFIED, NULL);
# 511| sch->curr_status.scsw.count = ccw.count - sizeof(vdev->status);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:537:25: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:529:19: note: in expansion of macro ‘ccw_dstream_read’
# 535| }
# 536| if (virtio_set_status(vdev, status) == 0) {
# 537|-> if (vdev->status == 0) {
# 538| virtio_ccw_reset_virtio(dev);
# 539| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_set_guest_notifier’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:1046:43: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_set_guest_notifier’
# 1044| * need to manually trigger any guest masking callbacks here.
# 1045| */
# 1046|-> if (k->guest_notifier_mask && vdev->use_guest_notifier_mask) {
# 1047| k->guest_notifier_mask(vdev, n, false);
# 1048| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:1055:43: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_set_guest_notifier’
# 1053| }
# 1054| } else {
# 1055|-> if (k->guest_notifier_mask && vdev->use_guest_notifier_mask) {
# 1056| k->guest_notifier_mask(vdev, n, true);
# 1057| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:1161:10: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_device_plugged’
# 1159| S390FLICState *flic = s390_get_flic();
# 1160|
# 1161|-> if (!virtio_has_feature(vdev->host_features, VIRTIO_F_VERSION_1)) {
# 1162| dev->max_rev = 0;
# 1163| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/megasas.c:1212:32: warning[deadcode.DeadStores]: Value stored to 'max_ld_disks' during its initialization is never read
# 1210| size_t dcmd_size = sizeof(info);
# 1211| dma_addr_t residual;
# 1212|-> uint32_t num_ld_disks = 0, max_ld_disks = s->fw_luns;
# 1213| BusChild *kid;
# 1214|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/megasas.c:1220:9: warning[deadcode.DeadStores]: Value stored to 'max_ld_disks' is never read
# 1218| if (flags != MR_LD_QUERY_TYPE_ALL &&
# 1219| flags != MR_LD_QUERY_TYPE_EXPOSED_TO_HOST) {
# 1220|-> max_ld_disks = 0;
# 1221| }
# 1222|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/megasas.c:1270:9: warning[deadcode.DeadStores]: Value stored to 'info' is never read
# 1268| if (!cmd->iov_buf) {
# 1269| cmd->iov_buf = g_malloc0(dcmd_size);
# 1270|-> info = cmd->iov_buf;
# 1271| megasas_setup_inquiry(cdb, 0x83, sizeof(info->vpd_page83));
# 1272| cmd->req = scsi_req_new(sdev, cmd->index, lun, cdb, sizeof(cdb), cmd);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/mptsas.c:508:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'reply_async'
# 506| if (reply_async->TerminationCount < count) {
# 507| reply_async->IOCLogInfo = count;
# 508|-> return;
# 509| }
# 510| g_free(reply_async);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/scsi-bus.c:255:5: warning[unix.Malloc]: Use of memory after it is freed
# 253| }
# 254| }
# 255|-> scsi_req_unref(req);
# 256| }
# 257|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/scsi-bus.c:716:12: warning[unix.Malloc]: Use of memory after it is freed
# 714| scsi_req_complete(req, GOOD);
# 715| }
# 716|-> return r->len;
# 717| }
# 718|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/scsi-bus.c: scope_hint: In function ‘scsi_req_new’
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/scsi-bus.c:862:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘req’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/scsi-bus.c:1: included_from: Included from here.
# 860| }
# 861|
# 862|-> req->cmd = cmd;
# 863| req->residual = req->cmd.xfer;
# 864|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/vhost-scsi.c:218:5: warning[core.uninitialized.UndefReturn]: Undefined or garbage value returned to caller
# 216| }
# 217|
# 218|-> return ret;
# 219| }
# 220|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/vmw_pvscsi.c:432:9: warning[unix.Malloc]: Use of memory after it is freed
# 430| while (!QTAILQ_EMPTY(&s->completion_queue)) {
# 431| pvscsi_req = QTAILQ_FIRST(&s->completion_queue);
# 432|-> QTAILQ_REMOVE(&s->completion_queue, pvscsi_req, next);
# 433| pvscsi_cmp_ring_put(s, &pvscsi_req->cmp);
# 434| g_free(pvscsi_req);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/sd/sd.c:1210:41: warning[core.BitwiseShift]: Right shift by '33' overflows the capacity of 'uint32_t'
# 1208|
# 1209| /* No response if not exactly one VHS bit is set. */
# 1210|-> if (!(req.arg >> 8) || (req.arg >> (ctz32(req.arg & ~0xff) + 1))) {
# 1211| return sd_is_spi(sd) ? sd_r7 : sd_r0;
# 1212| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/smbios/smbios.c:1270:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 1268| int fd = qemu_open(value, O_RDONLY, errp);
# 1269| if (fd < 0) {
# 1270|-> return -1;
# 1271| }
# 1272|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/sparc/leon3.c:408:11: warning[unix.Malloc]: Potential leak of memory pointed to by 'reset_info'
# 406|
# 407| /* Allocate timers */
# 408|-> dev = qdev_new(TYPE_GRLIB_GPTIMER);
# 409| qdev_prop_set_uint32(dev, "nr-timers", LEON3_TIMER_COUNT);
# 410| qdev_prop_set_uint32(dev, "frequency", CPU_CLK);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ssi/imx_spi.c:192:31: warning[core.BitwiseShift]: Right operand is negative in right shift
# 190|
# 191| while (tx_burst > 0) {
# 192|-> uint8_t byte = tx >> (tx_burst - 8);
# 193|
# 194| DPRINTF("writing 0x%02x\n", (uint32_t)byte);
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/hw/ssi/xilinx_spips.c: scope_hint: In function ‘xilinx_spips_flush_txfifo’
qemu-9.0.0-build/qemu-9.0.0/hw/ssi/xilinx_spips.c:623:26: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/hw/ssi/xilinx_spips.c:623:26: note: write of 1 byte to beyond the end of ‘tx_rx’
qemu-9.0.0-build/qemu-9.0.0/hw/ssi/xilinx_spips.c:623:26: note: valid subscripts for ‘tx_rx’ are ‘[0]’ to ‘[1]’
# 621| s->snoop_state == SNOOP_NONE) {
# 622| for (i = 0; i < num_effective_busses(s); ++i) {
# 623|-> tx_rx[i] = fifo8_pop(&s->tx_fifo);
# 624| }
# 625| stripe8(tx_rx, num_effective_busses(s), false);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ufs/ufs.c:159:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'prd_entries'
# 157| err = ufs_addr_read(u, prdt_base_addr, prd_entries, prdt_size);
# 158| if (err) {
# 159|-> trace_ufs_err_dma_read_prdt(req->slot, prdt_base_addr);
# 160| return err;
# 161| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/combined-packet.c:86:13: warning[unix.Malloc]: Use of memory after it is freed
# 84| p->short_not_ok = short_not_ok;
# 85| /* Note will free combined when the last packet gets removed! */
# 86|-> usb_combined_packet_remove(combined, p);
# 87| usb_packet_complete_one(dev, p);
# 88| actual_length -= p->actual_length;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/desc.c:705:12: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 703| ret = 0;
# 704| }
# 705|-> return ret;
# 706| }
# 707|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/dev-hid.c:686:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 684| default:
# 685| fail:
# 686|-> p->status = USB_RET_STALL;
# 687| break;
# 688| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/dev-mtp.c:448:9: warning[unix.Malloc]: Use of memory after it is freed
# 446| while (!QLIST_EMPTY(&o->children)) {
# 447| iter = QLIST_FIRST(&o->children);
# 448|-> usb_mtp_object_free(s, iter);
# 449| }
# 450| g_free(o->name);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/dev-mtp.c:918:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'handles'
# 916| usb_mtp_add_u32_array(d, o->nchildren, handles);
# 917|
# 918|-> return d;
# 919| }
# 920|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/dev-network.c:887:9: warning[unix.Malloc]: Use of memory after it is freed
# 885|
# 886| while ((r = s->rndis_resp.tqh_first)) {
# 887|-> QTAILQ_REMOVE(&s->rndis_resp, r, entries);
# 888| g_free(r);
# 889| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/dev-wacom.c:395:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'buf'
# 393| case USB_TOKEN_OUT:
# 394| default:
# 395|-> p->status = USB_RET_STALL;
# 396| }
# 397| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/hcd-ehci.c:585:9: warning[unix.Malloc]: Use of memory after it is freed
# 583| trace_usb_ehci_queue_action(q, "cancel");
# 584| do {
# 585|-> ehci_free_packet(p);
# 586| packets++;
# 587| } while ((p = QTAILQ_FIRST(&q->packets)) != NULL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/hcd-uhci.c:147:9: warning[unix.Malloc]: Use of memory after it is freed
# 145| while (!QTAILQ_EMPTY(&queue->asyncs)) {
# 146| async = QTAILQ_FIRST(&queue->asyncs);
# 147|-> uhci_async_cancel(async);
# 148| }
# 149| usb_device_ep_stopped(queue->ep->dev, queue->ep);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/host-libusb.c:643:9: warning[unix.Malloc]: Use of memory after it is freed
# 641|
# 642| while ((ring = QTAILQ_FIRST(&s->isorings)) != NULL) {
# 643|-> usb_host_iso_free(ring);
# 644| }
# 645| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/host-libusb.c:1509:5: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 1507| r->cbuf = data;
# 1508| r->clen = length;
# 1509|-> memcpy(r->buffer, udev->setup_buf, 8);
# 1510| if (!r->in) {
# 1511| memcpy(r->buffer + 8, r->cbuf, r->clen);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/usb/xen-usb.c:1056:9: warning[unix.Malloc]: Use of memory after it is freed
# 1054| while (!QTAILQ_EMPTY(&usbif->req_free_q)) {
# 1055| usbback_req = QTAILQ_FIRST(&usbif->req_free_q);
# 1056|-> QTAILQ_REMOVE(&usbif->req_free_q, usbback_req, q);
# 1057| g_free(usbback_req);
# 1058| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/ccw.c:570:5: warning[unix.Malloc]: Attempt to free released memory
# 568| static void vfio_ccw_put_region(VFIOCCWDevice *vcdev)
# 569| {
# 570|-> g_free(vcdev->crw_region);
# 571| g_free(vcdev->schib_region);
# 572| g_free(vcdev->async_cmd_region);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/common.c:673:31: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 671|
# 672| if (memory_region_is_ram_device(section->mr)) {
# 673|-> hwaddr pgmask = (1ULL << ctz64(bcontainer->pgsizes)) - 1;
# 674|
# 675| if ((iova & pgmask) || (int128_get64(llsize) & pgmask)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/common.c:775:24: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 773| hwaddr pgmask;
# 774|
# 775|-> pgmask = (1ULL << ctz64(bcontainer->pgsizes)) - 1;
# 776| try_unmap = !((iova & pgmask) || (int128_get64(llsize) & pgmask));
# 777| } else if (memory_region_has_ram_discard_manager(section->mr)) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/container.c:159:32: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 157| container->iommu_type == VFIO_TYPE1v2_IOMMU) {
# 158| trace_vfio_legacy_dma_unmap_overflow_workaround();
# 159|-> unmap.size -= 1ULL << ctz64(bcontainer->pgsizes);
# 160| continue;
# 161| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/container.c:521:9: warning[core.NullDereference]: Access to field 'flags' results in a dereference of a null pointer (loaded from variable 'info')
# 519| }
# 520|
# 521|-> if (info->flags & VFIO_IOMMU_INFO_PGSIZES) {
# 522| bcontainer->pgsizes = info->iova_pgsizes;
# 523| } else {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/container.c: scope_hint: In function ‘vfio_legacy_setup’
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/container.c:521:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘info’
# 519| }
# 520|
# 521|-> if (info->flags & VFIO_IOMMU_INFO_PGSIZES) {
# 522| bcontainer->pgsizes = info->iova_pgsizes;
# 523| } else {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/display.c:376:9: warning[unix.Malloc]: Use of memory after it is freed
# 374|
# 375| while ((dmabuf = QTAILQ_FIRST(&dpy->dmabuf.bufs)) != NULL) {
# 376|-> vfio_display_free_one_dmabuf(dpy, dmabuf);
# 377| }
# 378| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/helpers.c:295:11: warning[core.NullDereference]: Access to field 'flags' results in a dereference of a null pointer (loaded from variable 'info')
# 293| vfio_get_region_info_cap(struct vfio_region_info *info, uint16_t id)
# 294| {
# 295|-> if (!(info->flags & VFIO_REGION_INFO_FLAG_CAPS)) {
# 296| return NULL;
# 297| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/helpers.c: scope_hint: In function ‘vfio_get_region_info_cap’
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/helpers.c:295:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘info’
# 293| vfio_get_region_info_cap(struct vfio_region_info *info, uint16_t id)
# 294| {
# 295|-> if (!(info->flags & VFIO_REGION_INFO_FLAG_CAPS)) {
# 296| return NULL;
# 297| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/helpers.c: scope_hint: In function ‘vfio_region_setup’
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/helpers.c:360:25: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘info’
# 358|
# 359| region->vbasedev = vbasedev;
# 360|-> region->flags = info->flags;
# 361| region->size = info->size;
# 362| region->fd_offset = info->offset;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/igd.c:252:14: warning[deadcode.DeadStores]: Value stored to 'gmch' during its initialization is never read
# 250| static int vfio_igd_gtt_max(VFIOPCIDevice *vdev)
# 251| {
# 252|-> uint32_t gmch = vfio_pci_read_config(&vdev->pdev, IGD_GMCH, sizeof(gmch));
# 253| int ggms, gen = igd_gen(vdev);
# 254|
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/iommufd.c: scope_hint: In function ‘iommufd_cdev_getfd’
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/iommufd.c:132:11: warning[-Wanalyzer-malloc-leak]: leak of ‘opendir(g_strdup_printf("%s/vfio-dev", sysfs_path))’
# 130|
# 131| path = g_strdup_printf("%s/vfio-dev", sysfs_path);
# 132|-> dir = opendir(path);
# 133| if (!dir) {
# 134| error_setg_errno(errp, errno, "couldn't open directory %s", path);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci-quirks.c:1243:13: warning[unix.Malloc]: Use of memory after it is freed
# 1241| while (!QLIST_EMPTY(&vdev->vga->region[i].quirks)) {
# 1242| VFIOQuirk *quirk = QLIST_FIRST(&vdev->vga->region[i].quirks);
# 1243|-> QLIST_REMOVE(quirk, next);
# 1244| for (j = 0; j < quirk->nr_mem; j++) {
# 1245| object_unparent(OBJECT(&quirk->mem[j]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci-quirks.c:1274:13: warning[unix.Malloc]: Use of memory after it is freed
# 1272| QLIST_FOREACH(quirk, &bar->quirks, next) {
# 1273| while (!QLIST_EMPTY(&quirk->ioeventfds)) {
# 1274|-> vfio_ioeventfd_exit(vdev, QLIST_FIRST(&quirk->ioeventfds));
# 1275| }
# 1276|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci-quirks.c:1290:9: warning[unix.Malloc]: Use of memory after it is freed
# 1288| while (!QLIST_EMPTY(&bar->quirks)) {
# 1289| VFIOQuirk *quirk = QLIST_FIRST(&bar->quirks);
# 1290|-> QLIST_REMOVE(quirk, next);
# 1291| for (i = 0; i < quirk->nr_mem; i++) {
# 1292| object_unparent(OBJECT(&quirk->mem[i]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci.c:396:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'irq_set'
# 394| *fd = -1;
# 395|
# 396|-> ret = ioctl(vdev->vbasedev.fd, VFIO_DEVICE_SET_IRQS, irq_set);
# 397|
# 398| return ret;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci.c:982:14: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 980| switch (size) {
# 981| case 1:
# 982|-> data = val.byte;
# 983| break;
# 984| case 2:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci.c:985:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 983| break;
# 984| case 2:
# 985|-> data = le16_to_cpu(val.word);
# 986| break;
# 987| case 4:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/pci.c:988:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 986| break;
# 987| case 4:
# 988|-> data = le32_to_cpu(val.dword);
# 989| break;
# 990| default:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/vfio/platform.c:380:25: warning[deadcode.DeadStores]: Value stored to 'vdev' during its initialization is never read
# 378| static void vfio_start_irqfd_injection(SysBusDevice *sbdev, qemu_irq irq)
# 379| {
# 380|-> VFIOPlatformDevice *vdev = VFIO_PLATFORM_DEVICE(sbdev);
# 381| VFIOINTp *intp;
# 382|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c: scope_hint: In function ‘vhost_svq_poll’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c:545:13: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘r’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c:436:9: note: in expansion of macro ‘qemu_log_mask’
/usr/include/rpc/netdb.h:42: included_from: Included from here.
/usr/include/netdb.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c:10: included_from: Included from here.
# 543|
# 544| vhost_svq_get_buf(svq, &r);
# 545|-> len += r;
# 546| }
# 547|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost-shadow-virtqueue.c:545:13: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 543|
# 544| vhost_svq_get_buf(svq, &r);
# 545|-> len += r;
# 546| }
# 547|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c: scope_hint: In function ‘vhost_dev_log_resize’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c:380:39: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 378| {
# 379| struct vhost_log *log = vhost_log_get(size, vhost_dev_log_is_shared(dev));
# 380|-> uint64_t log_base = (uintptr_t)log->log;
# 381| int r;
# 382|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c:1010:5: warning[deadcode.DeadStores]: Value stored to 'r' is never read
# 1008| }
# 1009|
# 1010|-> r = 0;
# 1011| if (!enable) {
# 1012| r = vhost_dev_set_log(dev, false);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c: scope_hint: In function ‘vhost_dev_start’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c:2048:40: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘*hdev.log’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/vhost.c:16: included_from: Included from here.
# 2046| hdev->log = vhost_log_get(hdev->log_size,
# 2047| vhost_dev_log_is_shared(hdev));
# 2048|-> log_base = (uintptr_t)hdev->log->log;
# 2049| r = hdev->vhost_ops->vhost_set_log_base(hdev,
# 2050| hdev->log_size ? log_base : 0,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-crypto.c:119:37: warning[deadcode.DeadStores]: Value stored to 'sym_info' during its initialization is never read
# 117| {
# 118| VirtIODevice *vdev = VIRTIO_DEVICE(vcrypto);
# 119|-> CryptoDevBackendSymSessionInfo *sym_info = &sreq->info.u.sym_sess_info;
# 120| int queue_index;
# 121| uint32_t op_type;
Error: GCC_ANALYZER_WARNING (CWE-787):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-crypto.c: scope_hint: In function ‘virtio_crypto_handle_request’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-crypto.c:856:27: warning[-Wanalyzer-out-of-bounds]: buffer over-read
# └──────────────────────┘
# ^
# 854| iov_discard_front(&out_iov, &out_num, sizeof(req));
# 855|
# 856|-> if (in_iov[in_num - 1].iov_len <
# 857| sizeof(struct virtio_crypto_inhdr)) {
# 858| virtio_error(vdev, "virtio-crypto request inhdr too short");
Error: GCC_ANALYZER_WARNING (CWE-787):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-crypto.c:863:45: warning[-Wanalyzer-out-of-bounds]: buffer over-read
# └──────────────────────┘
# ^
# 861| /* We always touch the last byte, so just see how big in_iov is. */
# 862| request->in_len = iov_size(in_iov, in_num);
# 863|-> request->in = (void *)in_iov[in_num - 1].iov_base
# 864| + in_iov[in_num - 1].iov_len
# 865| - sizeof(struct virtio_crypto_inhdr);
Error: GCC_ANALYZER_WARNING (CWE-787):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-crypto.c:864:35: warning[-Wanalyzer-out-of-bounds]: buffer over-read
# └──────────────────────┘
# ^
# 862| request->in_len = iov_size(in_iov, in_num);
# 863| request->in = (void *)in_iov[in_num - 1].iov_base
# 864|-> + in_iov[in_num - 1].iov_len
# 865| - sizeof(struct virtio_crypto_inhdr);
# 866| iov_discard_back(in_iov, &in_num, sizeof(struct virtio_crypto_inhdr));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-iommu.c:707:5: warning[deadcode.DeadStores]: Value stored to 'buf' is never read
# 705| return VIRTIO_IOMMU_S_INVAL;
# 706| }
# 707|-> buf += count;
# 708| free -= count;
# 709| sdev->probe_done = true;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-iommu.c:708:5: warning[deadcode.DeadStores]: Value stored to 'free' is never read
# 706| }
# 707| buf += count;
# 708|-> free -= count;
# 709| sdev->probe_done = true;
# 710|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-iommu.c:897:22: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 895| .iova = addr,
# 896| .translated_addr = addr,
# 897|-> .addr_mask = BIT_ULL(granule) - 1,
# 898| .perm = IOMMU_NONE,
# 899| };
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-iommu.c:1298:39: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 1296| s->granule_frozen = true;
# 1297| granule = ctz64(s->config.page_size_mask);
# 1298|-> trace_virtio_iommu_freeze_granule(BIT_ULL(granule));
# 1299| }
# 1300|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_set_guest_notifier’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c:668:41: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_set_guest_notifier’
# 666| }
# 667|
# 668|-> if (vdc->guest_notifier_mask && vdev->use_guest_notifier_mask) {
# 669| vdc->guest_notifier_mask(vdev, n, !assign);
# 670| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_set_config_guest_notifier’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c:693:41: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_set_config_guest_notifier’
# 691| event_notifier_cleanup(notifier);
# 692| }
# 693|-> if (vdc->guest_notifier_mask && vdev->use_guest_notifier_mask) {
# 694| vdc->guest_notifier_mask(vdev, VIRTIO_CONFIG_IRQ_IDX, !assign);
# 695| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_ats_ctrl_trigger’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:714:32: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_ats_ctrl_trigger’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_ats_ctrl_trigger’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_ats_ctrl_trigger’
# 712| VirtioDeviceClass *k = VIRTIO_DEVICE_GET_CLASS(vdev);
# 713|
# 714|-> vdev->device_iotlb_enabled = enable;
# 715|
# 716| if (k->toggle_device_iotlb) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:844:67: warning[core.NullDereference]: Access to field 'virq' results in a dereference of a null pointer (loaded from variable 'irqfd')
# 842| {
# 843| VirtIOIRQFD *irqfd = &proxy->vector_irqfd[vector];
# 844|-> return kvm_irqchip_add_irqfd_notifier_gsi(kvm_state, n, NULL, irqfd->virq);
# 845| }
# 846|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_get_notifier’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:865:23: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_get_notifier’
# 863| if (queue_no == VIRTIO_CONFIG_IRQ_IDX) {
# 864| *n = virtio_config_get_guest_notifier(vdev);
# 865|-> *vector = vdev->config_vector;
# 866| } else {
# 867| if (!virtio_queue_get_num(vdev, queue_no)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_use_one’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:901:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_use_one’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_use_one’
# 899| * Otherwise, delay until unmasked in the frontend.
# 900| */
# 901|-> if (vdev->use_guest_notifier_mask && k->guest_notifier_mask) {
# 902| ret = kvm_virtio_pci_irqfd_use(proxy, n, vector);
# 903| if (ret < 0) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:916:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_use_one’
# 914| return ret;
# 915| }
# 916|-> if (vdev->use_guest_notifier_mask && k->guest_notifier_mask) {
# 917| ret = virtio_pci_get_notifier(proxy, queue_no, &n, &vector);
# 918| if (ret < 0) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_release_one’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:962:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_release_one’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘kvm_virtio_pci_vector_release_one’
# 960| return;
# 961| }
# 962|-> if (vdev->use_guest_notifier_mask && k->guest_notifier_mask) {
# 963| kvm_virtio_pci_irqfd_release(proxy, n, vector);
# 964| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_one_vector_unmask’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1012:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_one_vector_unmask’
# 1010| * Otherwise, set it up now.
# 1011| */
# 1012|-> if (vdev->use_guest_notifier_mask && k->guest_notifier_mask) {
# 1013| k->guest_notifier_mask(vdev, queue_no, false);
# 1014| /* Test after unmasking to avoid losing events. */
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_one_vector_mask’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1036:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_one_vector_mask’
# 1034| * Otherwise, clean it up now.
# 1035| */
# 1036|-> if (vdev->use_guest_notifier_mask && k->guest_notifier_mask) {
# 1037| k->guest_notifier_mask(vdev, queue_no, true);
# 1038| } else {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vector_unmask’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1068:23: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vector_unmask’
# 1066| }
# 1067| /* unmask config intr */
# 1068|-> if (vector == vdev->config_vector) {
# 1069| n = virtio_config_get_guest_notifier(vdev);
# 1070| ret = virtio_pci_one_vector_unmask(proxy, VIRTIO_CONFIG_IRQ_IDX, vector,
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vector_mask’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1114:23: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vector_mask’
# 1112| }
# 1113|
# 1114|-> if (vector == vdev->config_vector) {
# 1115| n = virtio_config_get_guest_notifier(vdev);
# 1116| virtio_pci_one_vector_mask(proxy, VIRTIO_CONFIG_IRQ_IDX, vector, n);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_set_guest_notifier’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1208:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_set_guest_notifier’
# 1206|
# 1207| if (!msix_enabled(&proxy->pci_dev) &&
# 1208|-> vdev->use_guest_notifier_mask &&
# 1209| vdc->guest_notifier_mask) {
# 1210| vdc->guest_notifier_mask(vdev, n, !assign);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_set_guest_notifiers’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1247:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_set_guest_notifiers’
# 1245| /* Must unset vector notifier while guest notifier is still assigned */
# 1246| if ((proxy->vector_irqfd ||
# 1247|-> (vdev->use_guest_notifier_mask && k->guest_notifier_mask)) &&
# 1248| !assign) {
# 1249| msix_unset_vector_notifiers(&proxy->pci_dev);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vmstate_change’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1355:18: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_vmstate_change’
# 1353| */
# 1354| if ((proxy->flags & VIRTIO_PCI_FLAG_BUS_MASTER_BUG_MIGRATION) &&
# 1355|-> (vdev->status & VIRTIO_CONFIG_S_DRIVER) &&
# 1356| !(proxy->pci_dev.config[PCI_COMMAND] & PCI_COMMAND_MASTER)) {
# 1357| pci_default_write_config(&proxy->pci_dev, PCI_COMMAND,
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:1972:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
# 1970| */
# 1971| if (!proxy->ignore_backend_features &&
# 1972|-> !virtio_has_feature(vdev->host_features, VIRTIO_F_VERSION_1)) {
# 1973| virtio_pci_disable_modern(proxy);
# 1974|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:2051:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/host-utils.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/memop.h:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
# 2049| struct virtio_pci_cfg_cap *cfg_mask;
# 2050|
# 2051|-> virtio_pci_modern_regions_init(proxy, vdev->name);
# 2052|
# 2053| virtio_pci_modern_mem_region_map(proxy, &proxy->common, &cap);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c:2242:13: warning[deadcode.DeadStores]: Value stored to 'last_pcie_cap_offset' is never read
# 2240| pcie_ats_init(pci_dev, last_pcie_cap_offset,
# 2241| proxy->flags & VIRTIO_PCI_FLAG_ATS_PAGE_ALIGNED);
# 2242|-> last_pcie_cap_offset += PCI_EXT_CAP_ATS_SIZEOF;
# 2243| }
# 2244|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c:359:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘v’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c: scope_hint: In function ‘xen_host_pci_device_get’
# 357| goto error;
# 358| }
# 359|-> d->vendor_id = v;
# 360|
# 361| xen_host_pci_get_hex_value(d, "device", &v, errp);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-host-pci-device.c:359:18: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 357| goto error;
# 358| }
# 359|-> d->vendor_id = v;
# 360|
# 361| xen_host_pci_get_hex_value(d, "device", &v, errp);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c: scope_hint: In function ‘xen_map_ioreq_server’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c:698:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘bufioreq_pfn’
# 696|
# 697| if (state->buffered_io_page == NULL) {
# 698|-> trace_xen_map_ioreq_server_buffered_io_page(bufioreq_pfn);
# 699|
# 700| state->buffered_io_page = xenforeignmemory_map(xen_fmem, xen_domid,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-legacy-backend.c:574:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'be'
# 572| snprintf(path, sizeof(path), "backend/%s/%d", type, dom);
# 573| if (!qemu_xen_xs_watch(xenstore, path, xenstore_update_be, be)) {
# 574|-> xen_pv_printf(NULL, 0, "xen be: watching backend path (%s) failed\n",
# 575| path);
# 576| return -1;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-mapcache.c: scope_hint: In function ‘xen_map_cache_unlocked’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-mapcache.c:314:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘pentry’
/usr/include/glib-2.0/glib/glist.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/ghash.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:52: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-mapcache.c:11: included_from: Included from here.
/usr/include/glib-2.0/glib/gmem.h:332:57: note: in expansion of macro ‘_G_NEW’
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-mapcache.c:313:17: note: in expansion of macro ‘g_new0’
# 312| if (!entry) {
# 313| entry = g_new0(MapCacheEntry, 1);
# 314|-> pentry->next = entry;
# 315| xen_remap_bucket(entry, NULL, cache_size, address_index, dummy);
# 316| } else if (!entry->lock) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-mapcache.c:314:22: warning[core.NullDereference]: Access to field 'next' results in a dereference of a null pointer (loaded from variable 'pentry')
# 312| if (!entry) {
# 313| entry = g_new0(MapCacheEntry, 1);
# 314|-> pentry->next = entry;
# 315| xen_remap_bucket(entry, NULL, cache_size, address_index, dummy);
# 316| } else if (!entry->lock) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen_pt.c:612:13: warning[deadcode.DeadStores]: Value stored to 'rc' is never read
# 610| if (adding) {
# 611| s->msix->mmio_base_addr = sec->offset_within_address_space;
# 612|-> rc = xen_pt_msix_update_remap(s, s->msix->bar_index);
# 613| }
# 614| return;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/mx_pic.c: scope_hint: In function ‘xtensa_mx_pic_init’
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/mx_pic.c:321:15: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘mx’
# 319| XtensaMxPic *mx = calloc(1, sizeof(XtensaMxPic));
# 320|
# 321|-> mx->n_irq = n_irq + 1;
# 322| mx->irq_inputs = qemu_allocate_irqs(xtensa_mx_pic_set_irq, mx,
# 323| mx->n_irq);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:318:18: warning[deadcode.DeadStores]: Value stored to 'entry_point' during its initialization is never read
# 316| /* Use presence of kernel file name as 'boot from SRAM' switch. */
# 317| if (kernel_filename) {
# 318|-> uint32_t entry_point = env->pc;
# 319| size_t bp_size = 3 * get_tag_size(0); /* first/last and memory tags */
# 320| uint32_t tagptr = env->config->sysrom.location[0].addr +
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:318:32: warning[core.NullDereference]: Access to field 'pc' results in a dereference of a null pointer (loaded from variable 'env')
# 316| /* Use presence of kernel file name as 'boot from SRAM' switch. */
# 317| if (kernel_filename) {
# 318|-> uint32_t entry_point = env->pc;
# 319| size_t bp_size = 3 * get_tag_size(0); /* first/last and memory tags */
# 320| uint32_t tagptr = env->config->sysrom.location[0].addr +
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c: scope_hint: In function ‘xtfpga_init’
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:320:30: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘env’
# 318| uint32_t entry_point = env->pc;
# 319| size_t bp_size = 3 * get_tag_size(0); /* first/last and memory tags */
# 320|-> uint32_t tagptr = env->config->sysrom.location[0].addr +
# 321| board->sram_size;
# 322| uint32_t cur_tagptr;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:402:13: warning[deadcode.DeadStores]: Value stored to 'cur_lowmem' is never read
# 400| cur_tagptr = put_tag(cur_tagptr, BP_TAG_INITRD,
# 401| sizeof(initrd_location), &initrd_location);
# 402|-> cur_lowmem = QEMU_ALIGN_UP(cur_lowmem + initrd_size, 4 * KiB);
# 403| }
# 404| cur_tagptr = put_tag(cur_tagptr, BP_TAG_LAST, 0, NULL);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:404:9: warning[deadcode.DeadStores]: Value stored to 'cur_tagptr' is never read
# 402| cur_lowmem = QEMU_ALIGN_UP(cur_lowmem + initrd_size, 4 * KiB);
# 403| }
# 404|-> cur_tagptr = put_tag(cur_tagptr, BP_TAG_LAST, 0, NULL);
# 405| env->regs[2] = tagptr;
# 406|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:459:29: warning[core.NullDereference]: Access to field 'config' results in a dereference of a null pointer (loaded from variable 'env')
# 457| MemoryRegion *flash_mr = pflash_cfi01_get_memory(flash);
# 458| MemoryRegion *flash_io = g_malloc(sizeof(*flash_io));
# 459|-> uint32_t size = env->config->sysrom.location[0].size;
# 460|
# 461| if (board->flash->size - board->flash->boot_base < size) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:459:32: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘env’
# 457| MemoryRegion *flash_mr = pflash_cfi01_get_memory(flash);
# 458| MemoryRegion *flash_io = g_malloc(sizeof(*flash_io));
# 459|-> uint32_t size = env->config->sysrom.location[0].size;
# 460|
# 461| if (board->flash->size - board->flash->boot_base < size) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:471:43: warning[core.NullDereference]: Access to field 'config' results in a dereference of a null pointer (loaded from variable 'env')
# 469| flash_io);
# 470| } else {
# 471|-> xtensa_create_memory_regions(&env->config->sysrom, "xtensa.sysrom",
# 472| system_memory);
# 473| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/xtensa/xtfpga.c:471:46: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘env’
# 469| flash_io);
# 470| } else {
# 471|-> xtensa_create_memory_regions(&env->config->sysrom, "xtensa.sysrom",
# 472| system_memory);
# 473| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c:29: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:315:41: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘blocks[2]’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:477:28: note: in definition of macro ‘ROUND_DOWN’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-all.h:172:33: note: in expansion of macro ‘ROUND_UP’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:164:11: note: in expansion of macro ‘TARGET_PAGE_ALIGN’
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-core.h:7: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/main-loop.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/rcu.h:182:5: note: in expansion of macro ‘WITH_RCU_READ_LOCK_GUARD_’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:167:5: note: in expansion of macro ‘WITH_RCU_READ_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/rcu.h: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/rcu.h:182:5: note: in expansion of macro ‘WITH_RCU_READ_LOCK_GUARD_’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:167:5: note: in expansion of macro ‘WITH_RCU_READ_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/accel/tcg/cputlb.c: scope_hint: In function ‘cpu_physical_memory_set_dirty_range’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:477:28: note: in definition of macro ‘ROUND_DOWN’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-all.h:172:33: note: in expansion of macro ‘ROUND_UP’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:300:11: note: in expansion of macro ‘TARGET_PAGE_ALIGN’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:156:19: note: in definition of macro ‘qatomic_rcu_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:173:5: note: in expansion of macro ‘qatomic_rcu_read_internal’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:305:25: note: in expansion of macro ‘qatomic_rcu_read’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/include/exec/ram_addr.h:312:34: note: in expansion of macro ‘MIN’
# 313|
# 314| if (likely(mask & (1 << DIRTY_MEMORY_MIGRATION))) {
# 315|-> bitmap_set_atomic(blocks[DIRTY_MEMORY_MIGRATION]->blocks[idx],
# 316| offset, next - page);
# 317| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/include/fpu/softfloat-macros.h:373:36: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘64’) >= precision of type (‘64’)
qemu-9.0.0-build/qemu-9.0.0/fpu/softfloat.c: scope_hint: In function ‘normalizeRoundAndPackFloatx80’
qemu-9.0.0-build/qemu-9.0.0/fpu/softfloat.c: scope_hint: In function ‘normalizeRoundAndPackFloatx80’
# 371| {
# 372| *z1Ptr = a1 << count;
# 373|-> *z0Ptr = count == 0 ? a0 : (a0 << count) | (a1 >> (-count & 63));
# 374| }
# 375|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/pci/pci_bus.h:67:18: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘bus’
qemu-9.0.0-build/qemu-9.0.0/hw/pci/pci.c: scope_hint: In function ‘pci_bus_bypass_iommu’
# 65| static inline bool pci_bus_is_root(PCIBus *bus)
# 66| {
# 67|-> return !!(bus->flags & PCI_BUS_IS_ROOT);
# 68| }
# 69|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/virtio/virtio.h:412:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_pre_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-mmio.c: scope_hint: In function ‘virtio_mmio_pre_plugged’
# 410| {
# 411| assert(fbit < 64);
# 412|-> *features |= (1ULL << fbit);
# 413| }
# 414|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/virtio/virtio.h:430:35: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_queue_enabled’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_queue_enabled’
# 428| unsigned int fbit)
# 429| {
# 430|-> return virtio_has_feature(vdev->guest_features, fbit);
# 431| }
# 432|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/virtio/virtio.h:436:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_pci_device_plugged’
# 434| unsigned int fbit)
# 435| {
# 436|-> return virtio_has_feature(vdev->host_features, fbit);
# 437| }
# 438|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/virtio/virtio.h:499:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_write_config’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_write_config’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/range.h: scope_hint: In function ‘virtio_write_config’
qemu-9.0.0-build/qemu-9.0.0/hw/virtio/virtio-pci.c: scope_hint: In function ‘virtio_write_config’
# 497| static inline void virtio_set_disabled(VirtIODevice *vdev, bool disable)
# 498| {
# 499|-> if (vdev->use_disabled_flag) {
# 500| vdev->disabled = disable;
# 501| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen-hvm-common.h:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c:8: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen_native.h: scope_hint: In function ‘xen_get_default_ioreq_server_info’
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen_native.h:342:16: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘ioreq_pfn’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:125: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c:1: included_from: Included from here.
# 340| }
# 341|
# 342|-> *ioreq_pfn = param;
# 343|
# 344| rc = xc_get_hvm_param(xen_xc, dom, HVM_PARAM_BUFIOREQ_PFN, ¶m);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/xen/xen-hvm-common.c:8: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen-hvm-common.h:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen_native.h:342:16: warning[core.NullDereference]: Dereference of null pointer (loaded from variable 'ioreq_pfn')
# 340| }
# 341|
# 342|-> *ioreq_pfn = param;
# 343|
# 344| rc = xc_get_hvm_param(xen_xc, dom, HVM_PARAM_BUFIOREQ_PFN, ¶m);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen_native.h:350:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘bufioreq_pfn’
# 348| }
# 349|
# 350|-> *bufioreq_pfn = param;
# 351|
# 352| rc = xc_get_hvm_param(xen_xc, dom, HVM_PARAM_BUFIOREQ_EVTCHN,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/include/hw/xen/xen_native.h:350:19: warning[core.NullDereference]: Dereference of null pointer (loaded from variable 'bufioreq_pfn')
# 348| }
# 349|
# 350|-> *bufioreq_pfn = param;
# 351|
# 352| rc = xc_get_hvm_param(xen_xc, dom, HVM_PARAM_BUFIOREQ_EVTCHN,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qobject-input-visitor.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qbool.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:126:25: warning[core.NullDereference]: Dereference of null pointer
# 124| static inline QType qobject_type(const QObject *obj)
# 125| {
# 126|-> assert(QTYPE_NONE < obj->base.type && obj->base.type < QTYPE__MAX);
# 127| return obj->base.type;
# 128| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/intc/arm_gicv3_redist.c:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/intc/gicv3_internal.h:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/registerfields.h:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:484:35: warning[core.BitwiseShift]: Left shift overflows the capacity of 'unsigned int'
# 482| uint32_t mask;
# 483| assert(start >= 0 && length > 0 && length <= 32 - start);
# 484|-> mask = (~0U >> (32 - length)) << start;
# 485| return (value & ~mask) | ((fieldval << start) & mask);
# 486| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c: scope_hint: In function ‘virtio_blk_fix_request’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:7:21: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*req.ioprio’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:50:23: note: in expansion of macro ‘bswap32’
/usr/include/glib-2.0/glib.h:89: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:79:9: note: in expansion of macro ‘g_assert_cmpuint’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:49:21: note: in expansion of macro ‘bswap32’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:50:23: note: in expansion of macro ‘bswap32’
# 5| #define bswap16(_x) __builtin_bswap16(_x)
# 6| #undef bswap32
# 7|-> #define bswap32(_x) __builtin_bswap32(_x)
# 8| #undef bswap64
# 9| #define bswap64(_x) __builtin_bswap64(_x)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/block-io.h:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio-wait.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:24: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/timer.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/host-utils.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:135:1: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 133| CPU_CONVERT(be, 16, uint16_t)
# 134| CPU_CONVERT(be, 32, uint32_t)
# 135|-> CPU_CONVERT(be, 64, uint64_t)
# 136|
# 137| CPU_CONVERT(le, 16, uint16_t)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/block/qcow2-refcount.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/block-io.h:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio-wait.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:24: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/timer.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/host-utils.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:135:1: warning[unix.Malloc]: Use of memory allocated with size zero
# 133| CPU_CONVERT(be, 16, uint16_t)
# 134| CPU_CONVERT(be, 32, uint32_t)
# 135|-> CPU_CONVERT(be, 64, uint64_t)
# 136|
# 137| CPU_CONVERT(le, 16, uint16_t)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/scsi/mptconfig.c:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/pci/pci.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/memory.h:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-common.h:10: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/core/cpu.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/qdev-core.h:6: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitmap.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/host-utils.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:263:5: warning[unix.cstring.NullArg]: Null pointer passed as 1st argument to memory copy function
# 261| static inline void stw_he_p(void *ptr, uint16_t v)
# 262| {
# 263|-> __builtin_memcpy(ptr, &v, sizeof(v));
# 264| }
# 265|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:274:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘((unsigned int *)tinfo)[1]’
qemu-9.0.0-build/qemu-9.0.0/linux-user/strace.c: scope_hint: In function ‘get_target_siginfo’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:256:31: note: in expansion of macro ‘__get_user_e’
qemu-9.0.0-build/qemu-9.0.0/linux-user/strace.c:223:5: note: in expansion of macro ‘__get_user’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:46:28: note: in definition of macro ‘le_bswap’
# 272| {
# 273| int32_t r;
# 274|-> __builtin_memcpy(&r, ptr, sizeof(r));
# 275| return r;
# 276| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:274:5: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘((unsigned int *)tinfo)[2]’
qemu-9.0.0-build/qemu-9.0.0/linux-user/strace.c: scope_hint: In function ‘get_target_siginfo’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:253:31: note: in expansion of macro ‘__get_user_e’
qemu-9.0.0-build/qemu-9.0.0/linux-user/strace.c:223:5: note: in expansion of macro ‘__get_user’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bswap.h:48:55: note: in definition of macro ‘be_bswap’
# 272| {
# 273| int32_t r;
# 274|-> __builtin_memcpy(&r, ptr, sizeof(r));
# 275| return r;
# 276| }
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:39: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/help_option.h: scope_hint: In function ‘is_help_option’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/help_option.h:19:13: warning[-Wanalyzer-null-argument]: use of NULL ‘s’ where non-null expected
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:25: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 1 of ‘strcmp’ must be non-null
# 17| static inline bool is_help_option(const char *s)
# 18| {
# 19|-> return !strcmp(s, "?") || !strcmp(s, "help");
# 20| }
# 21|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:39: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/help_option.h:19:13: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 17| static inline bool is_help_option(const char *s)
# 18| {
# 19|-> return !strcmp(s, "?") || !strcmp(s, "help");
# 20| }
# 21|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/host-utils.c:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/host-utils.h:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/int128.h:212:27: warning[core.DivideZero]: Division by zero
# 210| static inline Int128 int128_remu(Int128 a, Int128 b)
# 211| {
# 212|-> return (__uint128_t)a % (__uint128_t)b;
# 213| }
# 214|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/include/exec/log.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c: scope_hint: In function ‘mmu40x_get_physical_address’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/log.h:55:13: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*ctx.prot’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:22: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/hw/registerfields.h:59:16: note: in definition of macro ‘FIELD_EX64’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: note: in expansion of macro ‘qemu_log_mask’
# 53| do { \
# 54| if (unlikely(qemu_loglevel_mask(MASK))) { \
# 55|-> qemu_log(FMT, ## __VA_ARGS__); \
# 56| } \
# 57| } while (0)
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:13: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:63: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vdev’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:466:15: note: in expansion of macro ‘MIN’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c: scope_hint: In function ‘virtio_ccw_cb’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:31: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:28: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:466:15: note: in expansion of macro ‘MIN’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/hw/s390x/virtio-ccw.c:466:15: note: in expansion of macro ‘MIN’
# 400| #undef MIN
# 401| #define MIN(a, b) \
# 402|-> MIN_INTERNAL((a), (b), MAKE_IDENTFIER(_a), MAKE_IDENTFIER(_b))
# 403|
# 404| #define MAX_INTERNAL(a, b, _a, _b) \
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:63: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ret_addrlen’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3621:37: note: in expansion of macro ‘MIN’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3621:37: note: in expansion of macro ‘MIN’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:41: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:48: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3621:37: note: in expansion of macro ‘MIN’
# 400| #undef MIN
# 401| #define MIN(a, b) \
# 402|-> MIN_INTERNAL((a), (b), MAKE_IDENTFIER(_a), MAKE_IDENTFIER(_b))
# 403|
# 404| #define MAX_INTERNAL(a, b, _a, _b) \
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/io/channel-socket.c: scope_hint: In function ‘qio_channel_socket_flush’
qemu-9.0.0-build/qemu-9.0.0/io/channel-socket.c:767:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
/usr/include/sys/socket.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:30: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/io/channel-socket.c:20: included_from: Included from here.
# 765|
# 766| cm = CMSG_FIRSTHDR(&msg);
# 767|-> if (cm->cmsg_level != SOL_IP && cm->cmsg_type != IP_RECVERR &&
# 768| cm->cmsg_level != SOL_IPV6 && cm->cmsg_type != IPV6_RECVERR) {
# 769| error_setg_errno(errp, EPROTOTYPE,
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/io/dns-resolver.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/job.c:1256:5: warning[unix.Malloc]: Use of memory after it is freed
# 1254|
# 1255| job_unlock();
# 1256|-> AIO_WAIT_WHILE_UNLOCKED(job->aio_context,
# 1257| (job_enter(job), !job_is_completed(job)));
# 1258| job_lock();
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decContext.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c: scope_hint: In function ‘decUnitCompare’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6430:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*u’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:173: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6358:36: note: in expansion of macro ‘D2U’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6357:36: note: in expansion of macro ‘D2U’
# 6428| else { /* non-negative result */
# 6429| /* check units of the result before freeing any storage */
# 6430|-> for (u=acc; u<acc+accunits-1 && *u==0;) u++;
# 6431| result=(*u==0 ? 0 : +1);
# 6432| }
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c: scope_hint: In function ‘decUnitAddSub’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6530:19: warning[-Wanalyzer-out-of-bounds]: buffer over-read
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c: scope_hint: In function ‘decUnitAddSub’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:7366:26: note: in expansion of macro ‘D2U’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6530:19: note: read of 2 bytes from after the end of ‘uarrone’
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/decNumber.c:6530:19: note: valid subscripts for ‘uarrone’ are ‘[0]’ to ‘[0]’
# └──────────────────────────────────┘
# ^
# 6528| carry+=*a;
# 6529| a++;
# 6530|-> carry+=((eInt)*b)*m; /* [special-casing m=1/-1 */
# 6531| b++; /* here is not a win] */
# 6532| /* here carry is new Unit of digits; it could be +ve or -ve */
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/dpd/decimal128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/dpd/decimal32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/dpd/decimal64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/libdecnumber/dpd/decimal64.c:680:10: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 678| while (digits > 0) { /* each output bunch */
# 679| #if DECDPUN==3 /* fast path, 3-at-a-time */
# 680|-> bin=*inu; /* 3 digits ready for convert */
# 681| digits-=3; /* [may go negative] */
# 682| inu++; /* may need another */
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c: scope_hint: In function ‘DoubleCPDO’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:99:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:24: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 97| /* dyadic opcodes */
# 98| case ADF_CODE:
# 99|-> fpa11->fpreg[Fd].fDouble = float64_add(rFn,rFm, &fpa11->fp_status);
# 100| break;
# 101|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:99:37: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 97| /* dyadic opcodes */
# 98| case ADF_CODE:
# 99|-> fpa11->fpreg[Fd].fDouble = float64_add(rFn,rFm, &fpa11->fp_status);
# 100| break;
# 101|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:104:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 102| case MUF_CODE:
# 103| case FML_CODE:
# 104|-> fpa11->fpreg[Fd].fDouble = float64_mul(rFn,rFm, &fpa11->fp_status);
# 105| break;
# 106|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:104:37: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 102| case MUF_CODE:
# 103| case FML_CODE:
# 104|-> fpa11->fpreg[Fd].fDouble = float64_mul(rFn,rFm, &fpa11->fp_status);
# 105| break;
# 106|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:108:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 106|
# 107| case SUF_CODE:
# 108|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFn,rFm, &fpa11->fp_status);
# 109| break;
# 110|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:108:37: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 106|
# 107| case SUF_CODE:
# 108|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFn,rFm, &fpa11->fp_status);
# 109| break;
# 110|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:112:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 110|
# 111| case RSF_CODE:
# 112|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFm,rFn, &fpa11->fp_status);
# 113| break;
# 114|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:112:37: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 110|
# 111| case RSF_CODE:
# 112|-> fpa11->fpreg[Fd].fDouble = float64_sub(rFm,rFn, &fpa11->fp_status);
# 113| break;
# 114|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:117:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 115| case DVF_CODE:
# 116| case FDV_CODE:
# 117|-> fpa11->fpreg[Fd].fDouble = float64_div(rFn,rFm, &fpa11->fp_status);
# 118| break;
# 119|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:117:37: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 115| case DVF_CODE:
# 116| case FDV_CODE:
# 117|-> fpa11->fpreg[Fd].fDouble = float64_div(rFn,rFm, &fpa11->fp_status);
# 118| break;
# 119|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:122:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 120| case RDF_CODE:
# 121| case FRD_CODE:
# 122|-> fpa11->fpreg[Fd].fDouble = float64_div(rFm,rFn, &fpa11->fp_status);
# 123| break;
# 124|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:122:37: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 120| case RDF_CODE:
# 121| case FRD_CODE:
# 122|-> fpa11->fpreg[Fd].fDouble = float64_div(rFm,rFn, &fpa11->fp_status);
# 123| break;
# 124|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:136:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 134|
# 135| case RMF_CODE:
# 136|-> fpa11->fpreg[Fd].fDouble = float64_rem(rFn,rFm, &fpa11->fp_status);
# 137| break;
# 138|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:136:37: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 134|
# 135| case RMF_CODE:
# 136|-> fpa11->fpreg[Fd].fDouble = float64_rem(rFn,rFm, &fpa11->fp_status);
# 137| break;
# 138|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:147:35: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 145| /* monadic opcodes */
# 146| case MVF_CODE:
# 147|-> fpa11->fpreg[Fd].fDouble = rFm;
# 148| break;
# 149|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:147:35: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 145| /* monadic opcodes */
# 146| case MVF_CODE:
# 147|-> fpa11->fpreg[Fd].fDouble = rFm;
# 148| break;
# 149|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:156:15: warning[core.uninitialized.Assign]: The left expression of the compound assignment is an uninitialized value. The computed value will also be garbage
# 154| p[0] ^= 0x80000000;
# 155| #else
# 156|-> p[1] ^= 0x80000000;
# 157| #endif
# 158| fpa11->fpreg[Fd].fDouble = rFm;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:168:15: warning[core.uninitialized.Assign]: The left expression of the compound assignment is an uninitialized value. The computed value will also be garbage
# 166| p[0] &= 0x7fffffff;
# 167| #else
# 168|-> p[1] &= 0x7fffffff;
# 169| #endif
# 170| fpa11->fpreg[Fd].fDouble = rFm;
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:176:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 174| case RND_CODE:
# 175| case URD_CODE:
# 176|-> fpa11->fpreg[Fd].fDouble = float64_round_to_int(rFm, &fpa11->fp_status);
# 177| break;
# 178|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:176:37: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 174| case RND_CODE:
# 175| case URD_CODE:
# 176|-> fpa11->fpreg[Fd].fDouble = float64_round_to_int(rFm, &fpa11->fp_status);
# 177| break;
# 178|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:180:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rFm’
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:76:9: note: in expansion of macro ‘MONADIC_INSTRUCTION’
# 178|
# 179| case SQT_CODE:
# 180|-> fpa11->fpreg[Fd].fDouble = float64_sqrt(rFm, &fpa11->fp_status);
# 181| break;
# 182|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/double_cpdo.c:180:37: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 178|
# 179| case SQT_CODE:
# 180|-> fpa11->fpreg[Fd].fDouble = float64_sqrt(rFm, &fpa11->fp_status);
# 181| break;
# 182|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:97:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 95| /* dyadic opcodes */
# 96| case ADF_CODE:
# 97|-> fpa11->fpreg[Fd].fExtended = floatx80_add(rFn,rFm, &fpa11->fp_status);
# 98| break;
# 99|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:102:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 100| case MUF_CODE:
# 101| case FML_CODE:
# 102|-> fpa11->fpreg[Fd].fExtended = floatx80_mul(rFn,rFm, &fpa11->fp_status);
# 103| break;
# 104|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:106:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 104|
# 105| case SUF_CODE:
# 106|-> fpa11->fpreg[Fd].fExtended = floatx80_sub(rFn,rFm, &fpa11->fp_status);
# 107| break;
# 108|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:110:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 108|
# 109| case RSF_CODE:
# 110|-> fpa11->fpreg[Fd].fExtended = floatx80_sub(rFm,rFn, &fpa11->fp_status);
# 111| break;
# 112|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:115:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 113| case DVF_CODE:
# 114| case FDV_CODE:
# 115|-> fpa11->fpreg[Fd].fExtended = floatx80_div(rFn,rFm, &fpa11->fp_status);
# 116| break;
# 117|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:120:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 118| case RDF_CODE:
# 119| case FRD_CODE:
# 120|-> fpa11->fpreg[Fd].fExtended = floatx80_div(rFm,rFn, &fpa11->fp_status);
# 121| break;
# 122|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/extended_cpdo.c:134:39: warning[core.CallAndMessage]: Passed-by-value struct argument contains uninitialized data (e.g., field: 'low')
# 132|
# 133| case RMF_CODE:
# 134|-> fpa11->fpreg[Fd].fExtended = floatx80_rem(rFn,rFm, &fpa11->fp_status);
# 135| break;
# 136|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/arm/nwfpe/fpa11_cpdt.c:181:4: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 179| /* FIXME - handle put_user() failures */
# 180| put_user_u32(p[0], addr); /* sign & exp */
# 181|-> put_user_u32(p[1], addr + 8);
# 182| put_user_u32(p[2], addr + 4); /* msw */
# 183| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/elfload.c:4266:5: warning[deadcode.DeadStores]: Value stored to 'bytes_written' is never read
# 4264| ssize_t bytes_written, bytes_left;
# 4265|
# 4266|-> bytes_written = 0;
# 4267| bytes_left = size;
# 4268|
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c:693:13: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
/usr/include/string.h:159:12: note: argument 1 of ‘strncmp’ must be non-null
# 691| /* nested */
# 692| case QEMU_IFLA_INFO_DATA:
# 693|-> if (strncmp(li_context->name, "bridge",
# 694| li_context->len) == 0) {
# 695| return host_to_target_for_each_nlattr(NLA_DATA(nlattr),
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c:693:13: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 691| /* nested */
# 692| case QEMU_IFLA_INFO_DATA:
# 693|-> if (strncmp(li_context->name, "bridge",
# 694| li_context->len) == 0) {
# 695| return host_to_target_for_each_nlattr(NLA_DATA(nlattr),
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c:711:13: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c: scope_hint: In function ‘host_to_target_data_linkinfo_nlattr’
/usr/include/string.h:159:12: note: argument 1 of ‘strncmp’ must be non-null
# 709| break;
# 710| case QEMU_IFLA_INFO_SLAVE_DATA:
# 711|-> if (strncmp(li_context->slave_name, "bridge",
# 712| li_context->slave_len) == 0) {
# 713| return host_to_target_for_each_nlattr(NLA_DATA(nlattr),
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.c:711:13: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 709| break;
# 710| case QEMU_IFLA_INFO_SLAVE_DATA:
# 711|-> if (strncmp(li_context->slave_name, "bridge",
# 712| li_context->slave_len) == 0) {
# 713| return host_to_target_for_each_nlattr(NLA_DATA(nlattr),
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c: scope_hint: In function ‘main’
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:106:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(inf_name, "rb")’
# 104| }
# 105| outf = fopen(outf_name, "w");
# 106|-> if (outf == NULL) {
# 107| goto perror_outf;
# 108| }
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:106:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(inf_name, "rb")’
# 104| }
# 105| outf = fopen(outf_name, "w");
# 106|-> if (outf == NULL) {
# 107| goto perror_outf;
# 108| }
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:120:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(inf_name, "rb")’
# 118|
# 119| buf = malloc(total_len);
# 120|-> if (buf == NULL) {
# 121| goto perror_inf;
# 122| }
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:120:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(outf_name, "w")’
# 118|
# 119| buf = malloc(total_len);
# 120|-> if (buf == NULL) {
# 121| goto perror_inf;
# 122| }
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:120:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(inf_name, "rb")’
# 118|
# 119| buf = malloc(total_len);
# 120|-> if (buf == NULL) {
# 121| goto perror_inf;
# 122| }
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:120:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(outf_name, "w")’
# 118|
# 119| buf = malloc(total_len);
# 120|-> if (buf == NULL) {
# 121| goto perror_inf;
# 122| }
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:125:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(inf_name, "rb")’
# 123|
# 124| errno = 0;
# 125|-> if (fread(buf, 1, total_len, inf) != total_len) {
# 126| if (errno) {
# 127| goto perror_inf;
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:125:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(outf_name, "w")’
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:14: included_from: Included from here.
# 123|
# 124| errno = 0;
# 125|-> if (fread(buf, 1, total_len, inf) != total_len) {
# 126| if (errno) {
# 127| goto perror_inf;
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:125:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(inf_name, "rb")’
# 123|
# 124| errno = 0;
# 125|-> if (fread(buf, 1, total_len, inf) != total_len) {
# 126| if (errno) {
# 127| goto perror_inf;
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:125:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(outf_name, "w")’
# 123|
# 124| errno = 0;
# 125|-> if (fread(buf, 1, total_len, inf) != total_len) {
# 126| if (errno) {
# 127| goto perror_inf;
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:144:15: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(outf_name, "w")’
# 142| prefix);
# 143| for (long i = 0; i < total_len; ++i) {
# 144|-> if (i % 12 == 0) {
# 145| fputs("\n ", outf);
# 146| }
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:144:15: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(outf_name, "w")’
# 142| prefix);
# 143| for (long i = 0; i < total_len; ++i) {
# 144|-> if (i % 12 == 0) {
# 145| fputs("\n ", outf);
# 146| }
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:156:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(outf_name, "w")’
# 154| */
# 155|
# 156|-> if (buf[EI_MAG0] != ELFMAG0 || buf[EI_MAG1] != ELFMAG1 ||
# 157| buf[EI_MAG2] != ELFMAG2 || buf[EI_MAG3] != ELFMAG3) {
# 158| fprintf(stderr, "%s: not an elf file\n", inf_name);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:156:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(outf_name, "w")’
# 154| */
# 155|
# 156|-> if (buf[EI_MAG0] != ELFMAG0 || buf[EI_MAG1] != ELFMAG1 ||
# 157| buf[EI_MAG2] != ELFMAG2 || buf[EI_MAG3] != ELFMAG3) {
# 158| fprintf(stderr, "%s: not an elf file\n", inf_name);
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:156:39: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(outf_name, "w")’
# 154| */
# 155|
# 156|-> if (buf[EI_MAG0] != ELFMAG0 || buf[EI_MAG1] != ELFMAG1 ||
# 157| buf[EI_MAG2] != ELFMAG2 || buf[EI_MAG3] != ELFMAG3) {
# 158| fprintf(stderr, "%s: not an elf file\n", inf_name);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/linux-user/gen-vdso.c:156:39: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(outf_name, "w")’
# 154| */
# 155|
# 156|-> if (buf[EI_MAG0] != ELFMAG0 || buf[EI_MAG1] != ELFMAG1 ||
# 157| buf[EI_MAG2] != ELFMAG2 || buf[EI_MAG3] != ELFMAG3) {
# 158| fprintf(stderr, "%s: not an elf file\n", inf_name);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/mmap.c:1119:21: warning[deadcode.DeadStores]: Value stored to 'host_addr' is never read
# 1117| if (!guest_range_valid_untagged(h2g(host_addr), new_size)) {
# 1118| /* Revert mremap() changes */
# 1119|-> host_addr = mremap(g2h_untagged(old_addr),
# 1120| new_size, old_size, flags);
# 1121| errno = ENOMEM;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/sparc/cpu_loop.c:142:5: warning[deadcode.DeadStores]: Value stored to 'cwp1' is never read
# 140| offset++;
# 141| }
# 142|-> cwp1 = cpu_cwp_inc(env, env->cwp + 1);
# 143| #ifndef TARGET_SPARC64
# 144| /* set wim so that restore will reload the registers */
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:568:8: warning[-Wanalyzer-fd-leak]: leak of file descriptor
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_syscall1’
# 566| abi_long get_errno(abi_long ret)
# 567| {
# 568|-> if (ret == -1)
# 569| return -host_to_target_errno(errno);
# 570| else
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_pipe’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1592:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘host_pipe[0]’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:132: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
# 1590|
# 1591| if (is_error(ret))
# 1592|-> return get_errno(ret);
# 1593|
# 1594| /* Several targets have special calling conventions for the original
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_pipe’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1592:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘host_pipe[1]’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:132: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
# 1590|
# 1591| if (is_error(ret))
# 1592|-> return get_errno(ret);
# 1593|
# 1594| /* Several targets have special calling conventions for the original
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1592:16: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘host_pipe[is_pipe2]’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:298:32: note: in expansion of macro ‘put_user’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1612:9: note: in expansion of macro ‘put_user_s32’
# 1590|
# 1591| if (is_error(ret))
# 1592|-> return get_errno(ret);
# 1593|
# 1594| /* Several targets have special calling conventions for the original
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘target_to_host_sockaddr’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1645:16: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:144: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:53: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:20: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/lib64/glib-2.0/include/glibconfig.h:9: included_from: Included from here.
/usr/include/glib-2.0/glib/gtypes.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/galloca.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘target_to_host_sockaddr’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘target_to_host_sockaddr’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘target_to_host_sockaddr’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘target_to_host_sockaddr’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 1643|
# 1644| if (fd_trans_target_to_host_addr(fd)) {
# 1645|-> return fd_trans_target_to_host_addr(fd)(addr, target_addr, len);
# 1646| }
# 1647|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1715:35: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 1713| if (len >= offsetof(struct target_sockaddr, sa_family) +
# 1714| sizeof(target_saddr->sa_family)) {
# 1715|-> target_saddr->sa_family = tswap16(addr->sa_family);
# 1716| }
# 1717| if (addr->sa_family == AF_NETLINK &&
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:1717:25: warning[core.UndefinedBinaryOperatorResult]: The left operand of '==' is a garbage value
# 1715| target_saddr->sa_family = tswap16(addr->sa_family);
# 1716| }
# 1717|-> if (addr->sa_family == AF_NETLINK &&
# 1718| len >= sizeof(struct target_sockaddr_nl)) {
# 1719| struct target_sockaddr_nl *target_nl =
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_socket’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3161:13: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘<unknown>’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_socket’
# 3159| fd_trans_register(ret, &target_packet_trans);
# 3160| } else if (domain == PF_NETLINK) {
# 3161|-> switch (protocol) {
# 3162| #ifdef CONFIG_RTNETLINK
# 3163| case NETLINK_ROUTE:
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3284:24: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘msg.msg_iov’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3340:10: note: in expansion of macro ‘lock_user_struct’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3340:10: note: in expansion of macro ‘lock_user_struct’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:125: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 3282| void *host_msg;
# 3283|
# 3284|-> host_msg = g_malloc(msg.msg_iov->iov_len);
# 3285| memcpy(host_msg, msg.msg_iov->iov_base, msg.msg_iov->iov_len);
# 3286| ret = fd_trans_target_to_host_data(fd)(host_msg,
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3286:19: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3340:10: note: in expansion of macro ‘lock_user_struct’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3340:10: note: in expansion of macro ‘lock_user_struct’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/glist.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/ghash.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:52: included_from: Included from here.
/usr/include/glib-2.0/glib/gmem.h:375:57: note: in expansion of macro ‘_G_NEW’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:2986:11: note: in expansion of macro ‘g_try_new0’
qemu-9.0.0-build/qemu-9.0.0/target/arm/cpu.h:2964: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/qemu.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3001:28: note: in expansion of macro ‘TARGET_PAGE_MASK’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 3284| host_msg = g_malloc(msg.msg_iov->iov_len);
# 3285| memcpy(host_msg, msg.msg_iov->iov_base, msg.msg_iov->iov_len);
# 3286|-> ret = fd_trans_target_to_host_data(fd)(host_msg,
# 3287| msg.msg_iov->iov_len);
# 3288| if (ret >= 0) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3304:23: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3340:10: note: in expansion of macro ‘lock_user_struct’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:71:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmem.h:375:57: note: in expansion of macro ‘_G_NEW’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:2986:11: note: in expansion of macro ‘g_try_new0’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3001:28: note: in expansion of macro ‘TARGET_PAGE_MASK’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendrecvmsg_locked’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendrecvmsg_locked’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 3302| len = ret;
# 3303| if (fd_trans_host_to_target_data(fd)) {
# 3304|-> ret = fd_trans_host_to_target_data(fd)(msg.msg_iov->iov_base,
# 3305| MIN(msg.msg_iov->iov_len, len));
# 3306| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_sendto’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3550:15: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_sendto’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_sendto’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 3548| host_msg = g_malloc(len);
# 3549| memcpy(host_msg, copy_msg, len);
# 3550|-> ret = fd_trans_target_to_host_data(fd)(host_msg, len);
# 3551| if (ret < 0) {
# 3552| goto fail;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3613:21: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_recvfrom’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_recvfrom’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_recvfrom’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 3611| if (fd_trans_host_to_target_data(fd)) {
# 3612| abi_long trans;
# 3613|-> trans = fd_trans_host_to_target_data(fd)(host_msg, MIN(ret, len));
# 3614| if (is_error(trans)) {
# 3615| ret = trans;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3682:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3680| switch (num) {
# 3681| case TARGET_SYS_SOCKET: /* domain, type, protocol */
# 3682|-> return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684| return do_bind(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3682:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3680| switch (num) {
# 3681| case TARGET_SYS_SOCKET: /* domain, type, protocol */
# 3682|-> return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684| return do_bind(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3682:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3680| switch (num) {
# 3681| case TARGET_SYS_SOCKET: /* domain, type, protocol */
# 3682|-> return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684| return do_bind(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3684:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3682| return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684|-> return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686| return do_connect(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3684:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3682| return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684|-> return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686| return do_connect(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3684:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3682| return do_socket(a[0], a[1], a[2]);
# 3683| case TARGET_SYS_BIND: /* sockfd, addr, addrlen */
# 3684|-> return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686| return do_connect(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3686:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3684| return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686|-> return do_connect(a[0], a[1], a[2]);
# 3687| case TARGET_SYS_LISTEN: /* sockfd, backlog */
# 3688| return get_errno(listen(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3686:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3684| return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686|-> return do_connect(a[0], a[1], a[2]);
# 3687| case TARGET_SYS_LISTEN: /* sockfd, backlog */
# 3688| return get_errno(listen(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3686:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3684| return do_bind(a[0], a[1], a[2]);
# 3685| case TARGET_SYS_CONNECT: /* sockfd, addr, addrlen */
# 3686|-> return do_connect(a[0], a[1], a[2]);
# 3687| case TARGET_SYS_LISTEN: /* sockfd, backlog */
# 3688| return get_errno(listen(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3688:26: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3686| return do_connect(a[0], a[1], a[2]);
# 3687| case TARGET_SYS_LISTEN: /* sockfd, backlog */
# 3688|-> return get_errno(listen(a[0], a[1]));
# 3689| case TARGET_SYS_ACCEPT: /* sockfd, addr, addrlen */
# 3690| return do_accept4(a[0], a[1], a[2], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3688:26: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3686| return do_connect(a[0], a[1], a[2]);
# 3687| case TARGET_SYS_LISTEN: /* sockfd, backlog */
# 3688|-> return get_errno(listen(a[0], a[1]));
# 3689| case TARGET_SYS_ACCEPT: /* sockfd, addr, addrlen */
# 3690| return do_accept4(a[0], a[1], a[2], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3690:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3688| return get_errno(listen(a[0], a[1]));
# 3689| case TARGET_SYS_ACCEPT: /* sockfd, addr, addrlen */
# 3690|-> return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692| return do_getsockname(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3690:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3688| return get_errno(listen(a[0], a[1]));
# 3689| case TARGET_SYS_ACCEPT: /* sockfd, addr, addrlen */
# 3690|-> return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692| return do_getsockname(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3690:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3688| return get_errno(listen(a[0], a[1]));
# 3689| case TARGET_SYS_ACCEPT: /* sockfd, addr, addrlen */
# 3690|-> return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692| return do_getsockname(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3692:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3690| return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692|-> return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694| return do_getpeername(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3692:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3690| return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692|-> return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694| return do_getpeername(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3692:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3690| return do_accept4(a[0], a[1], a[2], 0);
# 3691| case TARGET_SYS_GETSOCKNAME: /* sockfd, addr, addrlen */
# 3692|-> return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694| return do_getpeername(a[0], a[1], a[2]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3694:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3692| return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694|-> return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3694:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3692| return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694|-> return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3694:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3692| return do_getsockname(a[0], a[1], a[2]);
# 3693| case TARGET_SYS_GETPEERNAME: /* sockfd, addr, addrlen */
# 3694|-> return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3696:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3694| return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696|-> return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3696:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3694| return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696|-> return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3696:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3694| return do_getpeername(a[0], a[1], a[2]);
# 3695| case TARGET_SYS_SOCKETPAIR: /* domain, type, protocol, tab */
# 3696|-> return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3698:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698|-> return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3698:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698|-> return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3698:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3696| return do_socketpair(a[0], a[1], a[2], a[3]);
# 3697| case TARGET_SYS_SEND: /* sockfd, msg, len, flags */
# 3698|-> return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3700:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700|-> return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3700:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700|-> return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3700:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3698| return do_sendto(a[0], a[1], a[2], a[3], 0, 0);
# 3699| case TARGET_SYS_RECV: /* sockfd, msg, len, flags */
# 3700|-> return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3702:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702|-> return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704| return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3702:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702|-> return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704| return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3702:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3700| return do_recvfrom(a[0], a[1], a[2], a[3], 0, 0);
# 3701| case TARGET_SYS_SENDTO: /* sockfd, msg, len, flags, addr, addrlen */
# 3702|-> return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704| return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3704:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704|-> return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3705| case TARGET_SYS_SHUTDOWN: /* sockfd, how */
# 3706| return get_errno(shutdown(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3704:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704|-> return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3705| case TARGET_SYS_SHUTDOWN: /* sockfd, how */
# 3706| return get_errno(shutdown(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3704:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3702| return do_sendto(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3703| case TARGET_SYS_RECVFROM: /* sockfd, msg, len, flags, addr, addrlen */
# 3704|-> return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3705| case TARGET_SYS_SHUTDOWN: /* sockfd, how */
# 3706| return get_errno(shutdown(a[0], a[1]));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3706:26: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3704| return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3705| case TARGET_SYS_SHUTDOWN: /* sockfd, how */
# 3706|-> return get_errno(shutdown(a[0], a[1]));
# 3707| case TARGET_SYS_SETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3708| return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3706:26: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3704| return do_recvfrom(a[0], a[1], a[2], a[3], a[4], a[5]);
# 3705| case TARGET_SYS_SHUTDOWN: /* sockfd, how */
# 3706|-> return get_errno(shutdown(a[0], a[1]));
# 3707| case TARGET_SYS_SETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3708| return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3708:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3706| return get_errno(shutdown(a[0], a[1]));
# 3707| case TARGET_SYS_SETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3708|-> return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3708:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3706| return get_errno(shutdown(a[0], a[1]));
# 3707| case TARGET_SYS_SETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3708|-> return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3708:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3706| return get_errno(shutdown(a[0], a[1]));
# 3707| case TARGET_SYS_SETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3708|-> return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3710:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3708| return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710|-> return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3710:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3708| return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710|-> return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3710:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3708| return do_setsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3709| case TARGET_SYS_GETSOCKOPT: /* sockfd, level, optname, optval, optlen */
# 3710|-> return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3712:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712|-> return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3712:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712|-> return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3712:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3710| return do_getsockopt(a[0], a[1], a[2], a[3], a[4]);
# 3711| case TARGET_SYS_SENDMSG: /* sockfd, msg, flags */
# 3712|-> return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3714:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714|-> return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3714:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714|-> return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3714:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3712| return do_sendrecvmsg(a[0], a[1], a[2], 1);
# 3713| case TARGET_SYS_RECVMSG: /* sockfd, msg, flags */
# 3714|-> return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3716:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716|-> return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3716:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716|-> return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3716:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3714| return do_sendrecvmsg(a[0], a[1], a[2], 0);
# 3715| case TARGET_SYS_ACCEPT4: /* sockfd, addr, addrlen, flags */
# 3716|-> return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3718:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3718:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3718:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3716| return do_accept4(a[0], a[1], a[2], a[3]);
# 3717| case TARGET_SYS_RECVMMSG: /* sockfd, msgvec, vlen, flags */
# 3718|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3720:16: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
# 3721| default:
# 3722| qemu_log_mask(LOG_UNIMP, "Unsupported socketcall: %d\n", num);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3720:16: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
# 3721| default:
# 3722| qemu_log_mask(LOG_UNIMP, "Unsupported socketcall: %d\n", num);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3720:16: warning[core.CallAndMessage]: 3rd function call argument is an uninitialized value
# 3718| return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 0);
# 3719| case TARGET_SYS_SENDMMSG: /* sockfd, msgvec, vlen, flags */
# 3720|-> return do_sendrecvmmsg(a[0], a[1], a[2], a[3], 1);
# 3721| default:
# 3722| qemu_log_mask(LOG_UNIMP, "Unsupported socketcall: %d\n", num);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:3941:9: warning[core.NullDereference]: Array access results in a null pointer dereference
# 3939|
# 3940| for(i=0; i<nsems; i++) {
# 3941|-> __put_user((*host_array)[i], &array[i]);
# 3942| }
# 3943| g_free(*host_array);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:4096:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 4094| }
# 4095|
# 4096|-> ret = -TARGET_ENOSYS;
# 4097| #ifdef __NR_semtimedop
# 4098| ret = get_errno(safe_semtimedop(semid, sops, nsops, pts));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:4263:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 4261| host_mb->mtype = (abi_long) tswapal(target_mb->mtype);
# 4262| memcpy(host_mb->mtext, target_mb->mtext, msgsz);
# 4263|-> ret = -TARGET_ENOSYS;
# 4264| #ifdef __NR_msgsnd
# 4265| ret = get_errno(safe_msgsnd(msqid, host_mb, msgsz, msgflg));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:4319:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 4317| goto end;
# 4318| }
# 4319|-> ret = -TARGET_ENOSYS;
# 4320| #ifdef __NR_msgrcv
# 4321| ret = get_errno(safe_msgrcv(msqid, host_mb, msgsz, msgtyp, msgflg));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:6628:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 6626| }
# 6627|
# 6628|-> ret = pthread_attr_init(&attr);
# 6629| ret = pthread_attr_setstacksize(&attr, NEW_STACK_SIZE);
# 6630| ret = pthread_attr_setdetachstate(&attr, PTHREAD_CREATE_DETACHED);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:6629:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 6627|
# 6628| ret = pthread_attr_init(&attr);
# 6629|-> ret = pthread_attr_setstacksize(&attr, NEW_STACK_SIZE);
# 6630| ret = pthread_attr_setdetachstate(&attr, PTHREAD_CREATE_DETACHED);
# 6631| /* It is not safe to deliver signals until the child has finished
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:6630:9: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 6628| ret = pthread_attr_init(&attr);
# 6629| ret = pthread_attr_setstacksize(&attr, NEW_STACK_SIZE);
# 6630|-> ret = pthread_attr_setdetachstate(&attr, PTHREAD_CREATE_DETACHED);
# 6631| /* It is not safe to deliver signals until the child has finished
# 6632| initializing, so temporarily block all signals. */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8306:5: warning[deadcode.DeadStores]: Value stored to 'read' is never read
# 8304| /* read header */
# 8305|
# 8306|-> read = getline(&line, &len, fp);
# 8307| dprintf(fd, "%s", line);
# 8308|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8311:13: warning[deadcode.DeadStores]: Although the value stored to 'read' is used in the enclosing expression, the value is never actually read from 'read'
# 8309| /* read routes */
# 8310|
# 8311|-> while ((read = getline(&line, &len, fp)) != -1) {
# 8312| char iface[16];
# 8313| uint32_t dest, gw, mask;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8683:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'hdirp'
# 8681| hlen = get_errno(hlen);
# 8682| if (is_error(hlen)) {
# 8683|-> return hlen;
# 8684| }
# 8685|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8713:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'hde'
# 8711| * on to the guest.
# 8712| */
# 8713|-> if (toff == 0) {
# 8714| toff = -TARGET_EINVAL; /* result buffer is too small */
# 8715| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8764:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'hdirp'
# 8762| hlen = get_errno(sys_getdents64(dirfd, hdirp, count));
# 8763| if (is_error(hlen)) {
# 8764|-> return hlen;
# 8765| }
# 8766|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:8789:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'hde'
# 8787| * on to the guest.
# 8788| */
# 8789|-> if (toff == 0) {
# 8790| toff = -TARGET_EINVAL; /* result buffer is too small */
# 8791| break;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c: scope_hint: In function ‘do_syscall1’
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:9154:23: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_syscall1’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_syscall1’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_syscall1’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_syscall1’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:58:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 9152| if (ret >= 0 &&
# 9153| fd_trans_host_to_target_data(arg1)) {
# 9154|-> ret = fd_trans_host_to_target_data(arg1)(p, ret);
# 9155| }
# 9156| unlock_user(p, arg2, ret);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:9168:19: warning[-Wanalyzer-jump-through-null]: jump through null pointer
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_syscall1’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_syscall1’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:72:49: note: in expansion of macro ‘QML_OBJ_’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:167:37: note: in expansion of macro ‘QEMU_MAKE_LOCKABLE’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
/usr/include/glib-2.0/glib/gmacros.h:1357:36: note: in expansion of macro ‘_GLIB_AUTOPTR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1358:7: note: in expansion of macro ‘_GLIB_AUTOPTR_CLEAR_FUNC_NAME’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h: scope_hint: In function ‘do_syscall1’
/usr/include/glib-2.0/glib/gmacros.h:1372:3: note: in expansion of macro ‘_GLIB_DEFINE_AUTOPTR_CLEANUP_FUNCS’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:116:1: note: in expansion of macro ‘G_DEFINE_AUTOPTR_CLEANUP_FUNC’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h: scope_hint: In function ‘do_syscall1’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/lockable.h:166:5: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/linux-user/fd-trans.h:45:5: note: in expansion of macro ‘QEMU_LOCK_GUARD’
# 9166| void *copy = g_malloc(arg3);
# 9167| memcpy(copy, p, arg3);
# 9168|-> ret = fd_trans_target_to_host_data(arg1)(copy, arg3);
# 9169| if (ret >= 0) {
# 9170| ret = get_errno(safe_write(arg1, copy, ret));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:11864:29: warning[unix.Malloc]: Potential leak of memory pointed to by 'grouplist'
#11862| gidsetsize * sizeof(target_id), 0);
#11863| if (!target_grouplist) {
#11864|-> return -TARGET_EFAULT;
#11865| }
#11866| for (i = 0; i < ret; i++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:11892:29: warning[unix.Malloc]: Potential leak of memory pointed to by 'grouplist'
#11890| gidsetsize * sizeof(target_id), 1);
#11891| if (!target_grouplist) {
#11892|-> return -TARGET_EFAULT;
#11893| }
#11894| for (i = 0; i < gidsetsize; i++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:12200:29: warning[unix.Malloc]: Potential leak of memory pointed to by 'grouplist'
#12198| gidsetsize * 4, 0);
#12199| if (!target_grouplist) {
#12200|-> return -TARGET_EFAULT;
#12201| }
#12202| for (i = 0; i < ret; i++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:12229:29: warning[unix.Malloc]: Potential leak of memory pointed to by 'grouplist'
#12227| gidsetsize * 4, 1);
#12228| if (!target_grouplist) {
#12229|-> return -TARGET_EFAULT;
#12230| }
#12231| for (i = 0; i < gidsetsize; i++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:13307:39: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
#13305| int i;
#13306| for (i = 0; i < ret; i++) {
#13307|-> target_ep[i].events = tswap32(ep[i].events);
#13308| target_ep[i].data.u64 = tswap64(ep[i].data.u64);
#13309| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/linux-user/syscall.c:13377:13: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
#13375| info._sifields._sigfault._addr = arg6;
#13376| queue_signal(cpu_env, info.si_signo, QEMU_SI_FAULT, &info);
#13377|-> ret = 0xdeadbeef;
#13378|
#13379| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/linux-user/thunk.c: scope_hint: In function ‘thunk_print’
qemu-9.0.0-build/qemu-9.0.0/linux-user/thunk.c:279:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘type_ptr’
# 277| int type;
# 278|
# 279|-> type = *type_ptr++;
# 280|
# 281| switch (type) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/migration/file.c:132:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'iocs'
# 130| object_unref(iocs[--i]);
# 131| }
# 132|-> return;
# 133| }
# 134|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘transport_supports_multi_channels’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:140:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘transport_supports_multi_channels’
# 138| static bool transport_supports_multi_channels(MigrationAddress *addr)
# 139| {
# 140|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 141| SocketAddress *saddr = &addr->u.socket;
# 142|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:160:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘migration_channels_and_transport_compatible’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘migration_channels_and_transport_compatible’
# 158| static bool transport_supports_seeking(MigrationAddress *addr)
# 159| {
# 160|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_FILE) {
# 161| return true;
# 162| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:563:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'val'
# 561| } else if (strstart(uri, "rdma:", NULL)) {
# 562| if (inet_parse(isock, uri + strlen("rdma:"), errp)) {
# 563|-> qapi_free_InetSocketAddress(isock);
# 564| return false;
# 565| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:574:20: warning[unix.Malloc]: Potential leak of memory pointed to by 'addr'
# 572| SocketAddress *saddr = socket_parse(uri, errp);
# 573| if (!saddr) {
# 574|-> return false;
# 575| }
# 576| addr->u.socket.type = saddr->type;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qemu_start_incoming_migration’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:639:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:63: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:1811:33: note: in expansion of macro ‘MIGRATION_YANK_INSTANCE’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qemu_start_incoming_migration’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/main-loop.h:28: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:215:5: note: in expansion of macro ‘qatomic_cmpxchg__nocheck’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:1355:9: note: in expansion of macro ‘qatomic_cmpxchg’
# 637| MIGRATION_STATUS_SETUP);
# 638|
# 639|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 640| SocketAddress *saddr = &addr->u.socket;
# 641| if (saddr->type == SOCKET_ADDRESS_TYPE_INET ||
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qmp_migrate’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c:2094:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘addr’
qemu-9.0.0-build/qemu-9.0.0/migration/migration.c: scope_hint: In function ‘qmp_migrate’
# 2092| }
# 2093|
# 2094|-> if (addr->transport == MIGRATION_ADDRESS_TYPE_SOCKET) {
# 2095| SocketAddress *saddr = &addr->u.socket;
# 2096| if (saddr->type == SOCKET_ADDRESS_TYPE_INET ||
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c: scope_hint: In function ‘get_queued_page’
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:1873:20: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘~dirty’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/bitops.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:137:5: note: in expansion of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:83:36: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:3344:9: note: in expansion of macro ‘qemu_mutex_lock’
/usr/include/rpc/netdb.h:42: included_from: Included from here.
/usr/include/netdb.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/migration/ram.c:29: included_from: Included from here.
# 1871| }
# 1872|
# 1873|-> } while (block && !dirty);
# 1874|
# 1875| if (!block) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/migration/rdma.c:3488:21: warning[unix.Malloc]: Potential leak of memory pointed to by 'isock'
# 3486|
# 3487| err_rdma_dest_wait:
# 3488|-> rdma->errored = true;
# 3489| qemu_rdma_cleanup(rdma);
# 3490| g_free(rdma_return_path);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/migration/vmstate.c:383:30: warning[core.NullDereference]: Dereference of null pointer
# 381| trace_vmstate_save_state_loop(vmsd->name, field->name, n_elems);
# 382| if (field->flags & VMS_POINTER) {
# 383|-> first_elem = *(void **)first_elem;
# 384| assert(first_elem || !n_elems || !size);
# 385| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c: scope_hint: In function ‘hmp_gpa2hva’
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c:294:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘mr’
# 292| }
# 293|
# 294|-> monitor_printf(mon, "Host virtual address for 0x%" HWADDR_PRIx
# 295| " (%s) is %p\n",
# 296| addr, mr->name, ptr);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c:296:26: warning[core.NullDereference]: Access to field 'name' results in a dereference of a null pointer (loaded from variable 'mr')
# 294| monitor_printf(mon, "Host virtual address for 0x%" HWADDR_PRIx
# 295| " (%s) is %p\n",
# 296|-> addr, mr->name, ptr);
# 297|
# 298| memory_region_unref(mr);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c: scope_hint: In function ‘hmp_gpa2hpa’
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c:374:9: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘mr’
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/error.h:335:32: note: in definition of macro ‘error_setg_errno’
# 372| error_report_err(local_err);
# 373| } else {
# 374|-> monitor_printf(mon, "Host physical address for 0x%" HWADDR_PRIx
# 375| " (%s) is 0x%" PRIx64 "\n",
# 376| addr, mr->name, (uint64_t) physaddr);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/monitor/hmp-cmds-target.c:376:30: warning[core.NullDereference]: Access to field 'name' results in a dereference of a null pointer (loaded from variable 'mr')
# 374| monitor_printf(mon, "Host physical address for 0x%" HWADDR_PRIx
# 375| " (%s) is 0x%" PRIx64 "\n",
# 376|-> addr, mr->name, (uint64_t) physaddr);
# 377| }
# 378|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/client.c:678:16: warning[deadcode.DeadStores]: Although the value stored to 'p' is used in the enclosing expression, the value is never actually read from 'p'
# 676| if (query) {
# 677| stl_be_p(p += sizeof(queries), query_len);
# 678|-> memcpy(p += sizeof(query_len), query, query_len);
# 679| }
# 680|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/server.c:381:11: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 379| return ret;
# 380| }
# 381|-> len = cpu_to_be32(len);
# 382|
# 383| if (len > NBD_MAX_STRING_SIZE) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/server.c:391:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'local_name'
# 389| ret = nbd_opt_read(client, local_name, len, true, errp);
# 390| if (ret <= 0) {
# 391|-> return ret;
# 392| }
# 393| local_name[len] = '\0';
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/server.c:964:11: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 962| return ret;
# 963| }
# 964|-> len = cpu_to_be32(len);
# 965|
# 966| if (len > NBD_MAX_STRING_SIZE) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/server.c:974:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'query'
# 972| ret = nbd_opt_read(client, query, len, true, errp);
# 973| if (ret <= 0) {
# 974|-> return ret;
# 975| }
# 976| query[len] = '\0';
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/nbd/server.c:2452:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'ea'
# 2450| }
# 2451| if (ret < 0) {
# 2452|-> return nbd_co_send_chunk_error(client, request, -ret,
# 2453| "can't get block status", errp);
# 2454| }
Error: GCC_ANALYZER_WARNING (CWE-787):
qemu-9.0.0-build/qemu-9.0.0/net/af-xdp.c: scope_hint: In function ‘af_xdp_umem_create’
qemu-9.0.0-build/qemu-9.0.0/net/af-xdp.c:327:20: warning[-Wanalyzer-out-of-bounds]: buffer overflow
/usr/include/glib-2.0/glib/glist.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/ghash.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:52: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/af-xdp.c:14: included_from: Included from here.
/usr/include/glib-2.0/glib/gmem.h:315:57: note: in expansion of macro ‘_G_NEW’
qemu-9.0.0-build/qemu-9.0.0/net/af-xdp.c:324:15: note: in expansion of macro ‘g_new’
# 325| /* Fill the pool in the opposite order, because it's a LIFO queue. */
# 326| for (i = n_descs; i >= 0; i--) {
# 327|-> s->pool[i] = i * XSK_UMEM__DEFAULT_FRAME_SIZE;
# 328| }
# 329| s->n_pool = n_descs;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/af-xdp.c:498:27: warning[unix.Malloc]: Potential leak of memory pointed to by 'sock_fds'
# 496| || af_xdp_socket_create(s, opts, errp)) {
# 497| /* Make sure the XDP program will be removed. */
# 498|-> s->n_queues = i;
# 499| error_propagate(errp, err);
# 500| goto err;
Error: GCC_ANALYZER_WARNING (CWE-465):
qemu-9.0.0-build/qemu-9.0.0/net/colo-compare.c: scope_hint: In function ‘colo_compare_tcp’
qemu-9.0.0-build/qemu-9.0.0/net/colo-compare.c:443:12: warning[-Wanalyzer-deref-before-check]: check of ‘ppkt’ for NULL after already dereferencing it
# 441| if (spkt->tcp_seq == spkt->seq_end) {
# 442| packet_destroy(spkt, NULL);
# 443|-> if (!ppkt) {
# 444| goto pri;
# 445| } else {
Error: GCC_ANALYZER_WARNING (CWE-465):
qemu-9.0.0-build/qemu-9.0.0/net/colo-compare.c:458:12: warning[-Wanalyzer-deref-before-check]: check of ‘ppkt’ for NULL after already dereferencing it
# 456| }
# 457| }
# 458|-> if (!ppkt) {
# 459| g_queue_push_tail(&conn->secondary_list, spkt);
# 460| goto pri;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/dump.c:75:16: warning[unix.Malloc]: Potential leak of memory pointed to by 'dumpiov'
# 73| /* Early return in case of previous error. */
# 74| if (s->fd < 0) {
# 75|-> return size;
# 76| }
# 77|
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/net/net.c: scope_hint: In function ‘assign_name’
qemu-9.0.0-build/qemu-9.0.0/net/net.c:244:13: warning[-Wanalyzer-null-argument]: use of NULL ‘model’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/net.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/net.c:271:17: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/net/net.c: scope_hint: In function ‘assign_name’
qemu-9.0.0-build/qemu-9.0.0/include/net/net.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/net.c:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/net.c:240:5: note: in expansion of macro ‘QTAILQ_FOREACH’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 2 of ‘strcmp’ must be non-null
# 242| continue;
# 243| }
# 244|-> if (strcmp(nc->model, model) == 0) {
# 245| id++;
# 246| }
Error: GCC_ANALYZER_WARNING (CWE-835):
qemu-9.0.0-build/qemu-9.0.0/net/net.c: scope_hint: In function ‘net_fill_rstate’
qemu-9.0.0-build/qemu-9.0.0/net/net.c:2034:17: warning[-Wanalyzer-infinite-loop]: infinite loop
# 2032| unsigned int l;
# 2033|
# 2034|-> while (size > 0) {
# 2035| /* Reassemble a packet from the network.
# 2036| * 0 = getting length.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/queue.c:283:9: warning[unix.Malloc]: Use of memory after it is freed
# 281|
# 282| packet = QTAILQ_FIRST(&queue->packets);
# 283|-> QTAILQ_REMOVE(&queue->packets, packet, entry);
# 284| queue->nq_count--;
# 285|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/slirp.c:785:17: warning[deadcode.DeadStores]: Value stored to 'fail_reason' during its initialization is never read
# 783| int is_udp;
# 784| char *end;
# 785|-> const char *fail_reason = "Unknown reason";
# 786|
# 787| p = redir_str;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/tap-linux.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:133:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'iovp'
# 131| }
# 132|
# 133|-> return tap_write_packet(s, iovp, iovcnt);
# 134| }
# 135|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:537:18: warning[deadcode.DeadStores]: Although the value stored to 'default_helper' is used in the enclosing expression, the value is never actually read from 'default_helper'
# 535|
# 536| if (!helper) {
# 537|-> helper = default_helper = get_relocated_path(DEFAULT_BRIDGE_HELPER);
# 538| }
# 539|
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/net/tap.c: scope_hint: In function ‘net_init_tap_one’
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:724:13: warning[-Wanalyzer-null-argument]: use of NULL ‘downscript’ where non-null expected
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:26: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/net/tap.c: scope_hint: In function ‘net_init_tap_one’
qemu-9.0.0-build/qemu-9.0.0/net/tap.c: scope_hint: In function ‘net_init_tap_one’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 1 of ‘strcmp’ must be non-null
# 722| script, downscript);
# 723|
# 724|-> if (strcmp(downscript, "no") != 0) {
# 725| snprintf(s->down_script, sizeof(s->down_script), "%s", downscript);
# 726| snprintf(s->down_script_arg, sizeof(s->down_script_arg),
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:993:22: warning[deadcode.DeadStores]: Although the value stored to 'default_script' is used in the enclosing expression, the value is never actually read from 'default_script'
# 991|
# 992| if (!script) {
# 993|-> script = default_script = get_relocated_path(DEFAULT_NETWORK_SCRIPT);
# 994| }
# 995| if (!downscript) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/tap.c:996:26: warning[deadcode.DeadStores]: Although the value stored to 'default_downscript' is used in the enclosing expression, the value is never actually read from 'default_downscript'
# 994| }
# 995| if (!downscript) {
# 996|-> downscript = default_downscript =
# 997| get_relocated_path(DEFAULT_NETWORK_DOWN_SCRIPT);
# 998| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/net/vhost-vdpa.c:1763:13: warning[unix.Malloc]: Potential leak of memory pointed to by 'config'
# 1761| ret = ioctl(fd, VHOST_VDPA_GET_CONFIG, config);
# 1762| if (ret) {
# 1763|-> error_setg(errp, "Fail to get config from vhost-vDPA device");
# 1764| return -ret;
# 1765| }
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/pc-bios/optionrom/optrom.h:58: error[uninitvar]: Uninitialized variable: value
# 56|
# 57| asm volatile("inb %w1, %0" : "=a"(value) : "Nd"(port));
# 58|-> return value;
# 59| }
# 60|
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/pc-bios/optionrom/optrom.h:66: error[uninitvar]: Uninitialized variable: value
# 64|
# 65| asm volatile("inw %w1, %0" : "=a"(value) : "Nd"(port));
# 66|-> return value;
# 67| }
# 68|
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/pc-bios/optionrom/optrom.h:74: error[uninitvar]: Uninitialized variable: value
# 72|
# 73| asm volatile("inl %w1, %0" : "=a"(value) : "Nd"(port));
# 74|-> return value;
# 75| }
# 76|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qapi/qobject-input-visitor.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu-bridge-helper.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c:5160:15: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
/usr/include/glib-2.0/glib/gstrfuncs.h:324:38: note: in definition of macro ‘g_strdup’
/usr/include/glib-2.0/glib/gstrfuncs.h:324:38: note: in definition of macro ‘g_strdup’
<built-in>: note: argument 1 of ‘__builtin_strchr’ must be non-null
# 5158| arg = g_strdup(argv[i]);
# 5159|
# 5160|-> tmp = strchr(arg, '=');
# 5161| if (tmp == NULL) {
# 5162| error_report("unrecognized operand %s", arg);
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c: scope_hint: In function ‘img_dd’
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c:5160:15: warning[-Wanalyzer-null-argument]: use of NULL ‘out.filename’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c:25: included_from: Included from here.
/usr/include/glib-2.0/glib/gstrfuncs.h:324:38: note: in definition of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c:5158:15: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/qemu-img.c: scope_hint: In function ‘img_dd’
<built-in>: note: argument 1 of ‘__builtin_strchr’ must be non-null
# 5158| arg = g_strdup(argv[i]);
# 5159|
# 5160|-> tmp = strchr(arg, '=');
# 5161| if (tmp == NULL) {
# 5162| error_report("unrecognized operand %s", arg);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu-io-cmds.c:1907:10: warning[deadcode.DeadStores]: Although the value stored to 'c' is used in the enclosing expression, the value is never actually read from 'c'
# 1905| }
# 1906|
# 1907|-> if ((c = getopt(argc, argv, "p")) != -1) {
# 1908| pflag = true;
# 1909| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu-keymap.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/qemu-nbd.c: scope_hint: In function ‘nbd_client_release_pipe’
qemu-9.0.0-build/qemu-9.0.0/qemu-nbd.c:271:8: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(old_stderr, 2)’
# 269| {
# 270| /* Close stderr so that the qemu-nbd process exits. */
# 271|-> if (dup2(old_stderr, STDERR_FILENO) < 0) {
# 272| error_report("Could not release pipe to parent: %s",
# 273| strerror(errno));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu-nbd.c:990:17: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 988| * manually.
# 989| */
# 990|-> ret = write(stderr_fd[1], str, strlen(str));
# 991| exit(EXIT_FAILURE);
# 992| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-acpi.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-audio.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-block-core.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-block-export.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-crypto.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-cxl.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-job.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-machine-target.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-machine.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-migration.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-net.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-pci.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-qom.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-rocker.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-run-state.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-sockets.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-ui.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qapi/qapi-visit-virtio.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/qga/qga-qapi-visit.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c: scope_hint: In function ‘yyparse’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:541:7: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘yyss’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:526:9: note: in expansion of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/parser-helpers.h:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:541:25: note: in definition of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:526:9: note: in expansion of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
# 539| # if defined __GNUC__ && 1 < __GNUC__
# 540| # define YYCOPY(Dst, Src, Count) \
# 541|-> __builtin_memcpy (Dst, Src, YY_CAST (YYSIZE_T, (Count)) * sizeof (*(Src)))
# 542| # else
# 543| # define YYCOPY(Dst, Src, Count) \
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_create_buffer’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c:2668:12: warning[-Wanalyzer-malloc-leak]: leak of ‘malloc(64)’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_create_buffer’
# 2666| * we need to put in 2 end-of-buffer characters.
# 2667| */
# 2668|-> b->yy_ch_buf = (char *) yyalloc( (yy_size_t) (b->yy_buf_size + 2) , yyscanner );
# 2669| if ( ! b->yy_ch_buf )
# 2670| YY_FATAL_ERROR( "out of dynamic memory in yy_create_buffer()" );
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_init_buffer’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c:2710:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘b’
# 2708|
# 2709| yy_flush_buffer( b , yyscanner);
# 2710|->
# 2711| b->yy_input_file = file;
# 2712| b->yy_fill_buffer = 1;
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_scan_buffer’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c:2928:25: warning[-Wanalyzer-malloc-leak]: leak of ‘malloc(n)’
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_scan_buffer’
# 2926| for ( i = 0; i < _yybytes_len; ++i )
# 2927| buf[i] = yybytes[i];
# 2928|->
# 2929| buf[_yybytes_len] = buf[_yybytes_len+1] = YY_END_OF_BUFFER_CHAR;
# 2930|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/tests/test-qapi-visit.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qemu_kvm_build/ui/dbus-display1.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qga/commands-posix-ssh.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/qga/commands.c: scope_hint: In function ‘guest_exec_task_setup’
qemu-9.0.0-build/qemu-9.0.0/qga/commands.c:286:12: warning[-Wanalyzer-fd-leak]: leak of file descriptor ‘dup2(1, 2)’
# 284| * inside the parent, not the child.
# 285| */
# 286|-> if (dup2(STDOUT_FILENO, STDERR_FILENO) != 0) {
# 287| slog("dup2() failed to merge stderr into stdout: %s",
# 288| strerror(errno));
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c: scope_hint: In function ‘qdict_split_flat_key’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:312:33: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘prefix’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c: scope_hint: In function ‘qdict_split_flat_key’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qdict.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/qdict.h:13: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:11: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:570:32: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qdict_split_flat_key’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:570:32: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:71:33: note: in definition of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:482:20: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qdict_split_flat_key’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:482:20: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:71:33: note: in definition of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:482:20: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qdict_split_flat_key’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:482:20: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:71:33: note: in definition of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:71:33: note: in definition of macro ‘qobject_to’
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c:307:19: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/qobject/block-qdict.c: scope_hint: In function ‘qdict_split_flat_key’
# 310|
# 311| /* Unescape the '..' sequence into '.' */
# 312|-> for (i = 0, j = 0; (*prefix)[i] != '\0'; i++, j++) {
# 313| if ((*prefix)[i] == '.') {
# 314| assert((*prefix)[i + 1] == '.');
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qobject/json-parser.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qobject/json-parser.c:384:13: warning[unix.Malloc]: Use of memory after it is freed
# 382| obj = parse_value(ctxt);
# 383| if (obj == NULL) {
# 384|-> parse_error(ctxt, token, "expecting value");
# 385| goto out;
# 386| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qobject/json-parser.c:404:17: warning[unix.Malloc]: Use of memory after it is freed
# 402| obj = parse_value(ctxt);
# 403| if (obj == NULL) {
# 404|-> parse_error(ctxt, token, "expecting value");
# 405| goto out;
# 406| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c: scope_hint: In function ‘qbool_from_bool’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:29:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(24)’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qbool.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:28:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c: scope_hint: In function ‘qbool_from_bool’
# 27| qb = g_malloc(sizeof(*qb));
# 28| qobject_init(QOBJECT(qb), QTYPE_QBOOL);
# 29|-> qb->value = value;
# 30|
# 31| return qb;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c: scope_hint: In function ‘qbool_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:47:32: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 45| bool qbool_is_equal(const QObject *x, const QObject *y)
# 46| {
# 47|-> return qobject_to(QBool, x)->value == qobject_to(QBool, y)->value;
# 48| }
# 49|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:47:63: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:47:12: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qbool_is_equal’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c:47:12: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qbool.c: scope_hint: In function ‘qbool_is_equal’
# 45| bool qbool_is_equal(const QObject *x, const QObject *y)
# 46| {
# 47|-> return qobject_to(QBool, x)->value == qobject_to(QBool, y)->value;
# 48| }
# 49|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c: scope_hint: In function ‘qdict_put_obj’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:130:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘qdict’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qnum.h:18: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:31:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c: scope_hint: In function ‘qdict_put_obj’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qdict.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:354:9: note: in expansion of macro ‘QLIST_FOREACH’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:354:9: note: in expansion of macro ‘QLIST_FOREACH’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:355:45: note: in expansion of macro ‘qobject_ref’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:96:5: note: in expansion of macro ‘QLIST_FOREACH’
# 128| entry = alloc_entry(key, value);
# 129| QLIST_INSERT_HEAD(&qdict->table[bucket], entry, next);
# 130|-> qdict->size++;
# 131| }
# 132| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:184:17: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c: scope_hint: In function ‘qdict_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:402:27: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qdict_is_equal’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:13: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:402:27: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c: scope_hint: In function ‘qdict_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c:403:27: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qdict.c: scope_hint: In function ‘qdict_is_equal’
# 182| size_t qdict_size(const QDict *qdict)
# 183| {
# 184|-> return qdict->size;
# 185| }
# 186|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:161:20: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qbool.h:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:183:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:183:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:183:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:183:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:198:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:198:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:203:9: note: in expansion of macro ‘QLIST_FOREACH_ENTRY’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:198:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:198:22: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:203:9: note: in expansion of macro ‘QLIST_FOREACH_ENTRY’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c:203:9: note: in expansion of macro ‘QLIST_FOREACH_ENTRY’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
qemu-9.0.0-build/qemu-9.0.0/qobject/qjson.c: scope_hint: In function ‘to_json’
# 159| QNum *val = qobject_to(QNum, obj);
# 160|
# 161|-> switch (val->kind) {
# 162| case QNUM_I64:
# 163| json_writer_int64(writer, name, val->u.i64);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_int’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:29:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(32)’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qnum.h:18: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:28:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_int’
# 27|
# 28| qobject_init(QOBJECT(qn), QTYPE_QNUM);
# 29|-> qn->kind = QNUM_I64;
# 30| qn->u.i64 = value;
# 31|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_uint’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:45:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(32)’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:44:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_uint’
# 43|
# 44| qobject_init(QOBJECT(qn), QTYPE_QNUM);
# 45|-> qn->kind = QNUM_U64;
# 46| qn->u.u64 = value;
# 47|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_double’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:61:14: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(32)’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:60:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_from_double’
# 59|
# 60| qobject_init(QOBJECT(qn), QTYPE_QNUM);
# 61|-> qn->kind = QNUM_DOUBLE;
# 62| qn->u.dbl = value;
# 63|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:193:18: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 191| QNum *num_y = qobject_to(QNum, y);
# 192|
# 193|-> switch (num_x->kind) {
# 194| case QNUM_I64:
# 195| switch (num_y->kind) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:195:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:191:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
# 193| switch (num_x->kind) {
# 194| case QNUM_I64:
# 195|-> switch (num_y->kind) {
# 196| case QNUM_I64:
# 197| /* Comparison in native int64_t type */
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:208:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:191:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
# 206| abort();
# 207| case QNUM_U64:
# 208|-> switch (num_y->kind) {
# 209| case QNUM_I64:
# 210| return qnum_is_equal(y, x);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:219:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:190:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:191:19: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c: scope_hint: In function ‘qnum_is_equal’
# 217| abort();
# 218| case QNUM_DOUBLE:
# 219|-> switch (num_y->kind) {
# 220| case QNUM_I64:
# 221| case QNUM_U64:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qobject/qnum.c:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qobject-internal.h:18:22: warning[core.NullDereference]: Dereference of null pointer
# 16| {
# 17| assert(QTYPE_NONE < type && type < QTYPE__MAX);
# 18|-> obj->base.refcnt = 1;
# 19| obj->base.type = type;
# 20| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_from_substr’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:39:21: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(24)’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:13: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qstring.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:38:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_from_substr’
# 37| qstring = g_malloc(sizeof(*qstring));
# 38| qobject_init(QOBJECT(qstring), QTYPE_QSTRING);
# 39|-> qstring->string = g_strndup(str + start, end - start);
# 40| return qstring;
# 41| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_from_gstring’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:65:21: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘g_malloc(24)’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:64:18: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_from_gstring’
# 63| qstring = g_malloc(sizeof(*qstring));
# 64| qobject_init(QOBJECT(qstring), QTYPE_QSTRING);
# 65|-> qstring->string = g_string_free(gstr, false);
# 66| return qstring;
# 67| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_is_equal’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:86:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 84| bool qstring_is_equal(const QObject *x, const QObject *y)
# 85| {
# 86|-> return !strcmp(qobject_to(QString, x)->string,
# 87| qobject_to(QString, y)->string);
# 88| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_destroy_obj’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:100:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:99:10: note: in expansion of macro ‘qobject_to’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h: scope_hint: In function ‘qstring_destroy_obj’
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c:99:10: note: in expansion of macro ‘qobject_to’
/usr/include/rpc/netdb.h:42: included_from: Included from here.
/usr/include/netdb.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/qobject/qstring.c: scope_hint: In function ‘qstring_destroy_obj’
# 98| assert(obj != NULL);
# 99| qs = qobject_to(QString, obj);
# 100|-> g_free((char *)qs->string);
# 101| g_free(qs);
# 102| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/qom/object_interfaces.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c:442:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'paramp'
# 440| * we have read the data, send an error without closing the socket.
# 441| */
# 442|-> scsi_build_sense(sense, SENSE_CODE(INVALID_PARAM_LEN));
# 443| return CHECK_CONDITION;
# 444| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c: scope_hint: In function ‘main’
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c:920:28: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c:918:27: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/scsi/qemu-pr-helper.c: scope_hint: In function ‘main’
# 918| socket_path = g_strdup(optarg);
# 919| socket_path_specified = true;
# 920|-> if (socket_path[0] != '/') {
# 921| error_report("socket path must be absolute");
# 922| exit(EXIT_FAILURE);
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/semihosting/syscalls.c: scope_hint: In function ‘host_stat’
qemu-9.0.0-build/qemu-9.0.0/semihosting/syscalls.c:425:11: warning[-Wanalyzer-null-argument]: use of NULL ‘name’ where non-null expected
/usr/include/features.h:511: included_from: Included from here.
/usr/include/bits/libc-header-start.h:33: included_from: Included from here.
/usr/include/stdint.h:26: included_from: Included from here.
/usr/lib/gcc/x86_64-redhat-linux/14/include/stdint.h:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:111: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/semihosting/syscalls.c:9: included_from: Included from here.
/usr/include/sys/stat.h:227:12: note: argument 1 of ‘stat’ must be non-null
# 423| }
# 424|
# 425|-> ret = stat(name, &buf);
# 426| if (ret) {
# 427| err = errno;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-block-core.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-block-export.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-crypto.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-cxl.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-job.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-machine.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-migration.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-net.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-qom.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-run-state.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-sockets.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/qapi/qapi-visit-virtio.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c: scope_hint: In function ‘yyparse’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:541:7: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘yyss’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:526:9: note: in expansion of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/parser-helpers.h:21: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:15: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:541:25: note: in definition of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:526:9: note: in expansion of macro ‘YYCOPY’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.tab.c:2318:9: note: in expansion of macro ‘YYSTACK_RELOCATE’
# 539| # if defined __GNUC__ && 1 < __GNUC__
# 540| # define YYCOPY(Dst, Src, Count) \
# 541|-> __builtin_memcpy (Dst, Src, YY_CAST (YYSIZE_T, (Count)) * sizeof (*(Src)))
# 542| # else
# 543| # define YYCOPY(Dst, Src, Count) \
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_create_buffer’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c:2668:12: warning[-Wanalyzer-malloc-leak]: leak of ‘malloc(64)’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_create_buffer’
# 2666| * we need to put in 2 end-of-buffer characters.
# 2667| */
# 2668|-> b->yy_ch_buf = (char *) yyalloc( (yy_size_t) (b->yy_buf_size + 2) , yyscanner );
# 2669| if ( ! b->yy_ch_buf )
# 2670| YY_FATAL_ERROR( "out of dynamic memory in yy_create_buffer()" );
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_init_buffer’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c:2710:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘b’
# 2708|
# 2709| yy_flush_buffer( b , yyscanner);
# 2710|->
# 2711| b->yy_input_file = file;
# 2712| b->yy_fill_buffer = 1;
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_scan_buffer’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c:2928:25: warning[-Wanalyzer-malloc-leak]: leak of ‘malloc(n)’
qemu-9.0.0-build/qemu-9.0.0/static_builddir/target/hexagon/idef-parser.p/idef-parser.yy.c: scope_hint: In function ‘yy_scan_buffer’
# 2926| for ( i = 0; i < _yybytes_len; ++i )
# 2927| buf[i] = yybytes[i];
# 2928|->
# 2929| buf[_yybytes_len] = buf[_yybytes_len+1] = YY_END_OF_BUFFER_CHAR;
# 2930|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/static_builddir/tests/test-qapi-visit.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/extF80_div.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/extF80_roundToInt.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/extF80_sqrt.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f128_div.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f128_roundToInt.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f128_sqrt.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f16_rem.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f16_sqrt.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f32_rem.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/f64_rem.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING (CWE-909):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/s_mulAddF64.c:163: error[uninitStructMember]: Uninitialized struct member: sig128C.v0
# 161| sig128Z =
# 162| softfloat_add128(
# 163|-> sig128Z.v64, sig128Z.v0, sig128C.v64, sig128C.v0 );
# 164| sigZ = sig128Z.v64 | (sig128Z.v0 != 0);
# 165| }
Error: CPPCHECK_WARNING (CWE-909):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/s_mulAddF64.c:163: error[uninitStructMember]: Uninitialized struct member: sig128C.v64
# 161| sig128Z =
# 162| softfloat_add128(
# 163|-> sig128Z.v64, sig128Z.v0, sig128C.v64, sig128C.v0 );
# 164| sigZ = sig128Z.v64 | (sig128Z.v0 != 0);
# 165| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-softfloat-3/source/s_roundPackToF128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/readHex.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF16’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:742:11: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘uiZ’
# 740| uiZ |= x.sig.v64>>45 & 0x03FF;
# 741| uiZ:
# 742|-> uZ.ui = uiZ;
# 743| return uZ.f;
# 744|
Error: COMPILER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF16’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:742:11: warning[-Wmaybe-uninitialized]: ‘uiZ’ may be used uninitialized
# 742 | uZ.ui = uiZ;
# | ~~~~~~^~~~~
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:657:19: note: ‘uiZ’ was declared here
# 657 | uint_fast16_t uiZ;
# | ^~~
# 740| uiZ |= x.sig.v64>>45 & 0x03FF;
# 741| uiZ:
# 742|-> uZ.ui = uiZ;
# 743| return uZ.f;
# 744|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:742:11: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 740| uiZ |= x.sig.v64>>45 & 0x03FF;
# 741| uiZ:
# 742|-> uZ.ui = uiZ;
# 743| return uZ.f;
# 744|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF32’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:878:11: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘uiZ’
# 876| uiZ |= x.sig.v64>>32 & 0x007FFFFF;
# 877| uiZ:
# 878|-> uZ.ui = uiZ;
# 879| return uZ.f;
# 880|
Error: COMPILER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF32’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:878:11: warning[-Wmaybe-uninitialized]: ‘uiZ’ may be used uninitialized
# 878 | uZ.ui = uiZ;
# | ~~~~~~^~~~~
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:793:19: note: ‘uiZ’ was declared here
# 793 | uint_fast32_t uiZ;
# | ^~~
# 876| uiZ |= x.sig.v64>>32 & 0x007FFFFF;
# 877| uiZ:
# 878|-> uZ.ui = uiZ;
# 879| return uZ.f;
# 880|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:878:11: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 876| uiZ |= x.sig.v64>>32 & 0x007FFFFF;
# 877| uiZ:
# 878|-> uZ.ui = uiZ;
# 879| return uZ.f;
# 880|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1015:11: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 1013| uiZ |= x.sig.v64>>3 & UINT64_C( 0x000FFFFFFFFFFFFF );
# 1014| uiZ:
# 1015|-> uZ.ui = uiZ;
# 1016| return uZ.f;
# 1017|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF64’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1016:14: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘uiZ’
# 1014| uiZ:
# 1015| uZ.ui = uiZ;
# 1016|-> return uZ.f;
# 1017|
# 1018| }
Error: COMPILER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXToF64’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1016:14: warning[-Wmaybe-uninitialized]: ‘uiZ’ may be used uninitialized
# 1016 | return uZ.f;
# | ~~^~
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:928:19: note: ‘uiZ’ was declared here
# 928 | uint_fast64_t uiZ;
# | ^~~
# 1014| uiZ:
# 1015| uZ.ui = uiZ;
# 1016|-> return uZ.f;
# 1017|
# 1018| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXEq.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:31: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: COMPILER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:39: warning[-Wmaybe-uninitialized]: ‘x.exp’ may be used uninitialized
# 1661 | return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# | ~~~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘slow_f16_eq’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:2495:19: note: ‘x.exp’ was declared here
# 2495 | struct floatX x, y;
# | ^
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: COMPILER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1661:39: warning[-Wmaybe-uninitialized]: ‘y.exp’ may be used uninitialized
# 1661 | return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# | ~~~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘slow_f16_eq’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:2495:22: note: ‘y.exp’ was declared here
# 2495 | struct floatX x, y;
# | ^
# 1659| if ( xPtr->sign != yPtr->sign ) return false;
# 1660| if ( xPtr->isInf || yPtr->isInf ) return xPtr->isInf && yPtr->isInf;
# 1661|-> return ( xPtr->exp == yPtr->exp ) && eq128( xPtr->sig, yPtr->sig );
# 1662|
# 1663| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXLe.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1674:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1672| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1673| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1674|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1675| if ( xPtr->exp < yPtr->exp ) return false;
# 1676| return le128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1674:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1672| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1673| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1674|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1675| if ( xPtr->exp < yPtr->exp ) return false;
# 1676| return le128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1680:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1678| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1679| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1680|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1681| if ( yPtr->exp < xPtr->exp ) return false;
# 1682| return le128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1680:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1678| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1679| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1680|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1681| if ( yPtr->exp < xPtr->exp ) return false;
# 1682| return le128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c: scope_hint: In function ‘floatXLt.part.0’
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1697:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1695| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1696| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1697|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1698| if ( xPtr->exp < yPtr->exp ) return false;
# 1699| return lt128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1697:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1695| if ( xPtr->isInf || yPtr->isZero ) return true;
# 1696| if ( yPtr->isInf || xPtr->isZero ) return false;
# 1697|-> if ( yPtr->exp < xPtr->exp ) return true;
# 1698| if ( xPtr->exp < yPtr->exp ) return false;
# 1699| return lt128( yPtr->sig, xPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1703:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*xPtr.exp’
# 1701| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1702| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1703|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1704| if ( yPtr->exp < xPtr->exp ) return false;
# 1705| return lt128( xPtr->sig, yPtr->sig );
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/slowfloat.c:1703:30: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*yPtr.exp’
# 1701| if ( yPtr->isInf || xPtr->isZero ) return true;
# 1702| if ( xPtr->isInf || yPtr->isZero ) return false;
# 1703|-> if ( xPtr->exp < yPtr->exp ) return true;
# 1704| if ( yPtr->exp < xPtr->exp ) return false;
# 1705| return lt128( xPtr->sig, yPtr->sig );
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_extF80_z_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_extF80_z_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_extF80_z_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_extF80_z_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f128_z_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f128_z_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f128_z_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f128_z_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f16_z_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f16_z_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f16_z_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f16_z_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f32_z_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f32_z_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f32_z_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f32_z_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f64_z_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f64_z_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f64_z_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_a_f64_z_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_ab_extF80_z_bool.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_ab_f128_z_bool.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_ab_f16_z_bool.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_ab_f32_z_bool.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_ab_f64_z_bool.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abcz_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abcz_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abcz_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abcz_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abz_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abz_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abz_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abz_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_abz_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_extF80.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_extF80_rx.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f128.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f128_rx.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f16.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f16_rx.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f32.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f32_rx.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f64.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/test_az_f64_rx.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/subprojects/berkeley-testfloat-3/source/writeHex.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c:266:21: warning[deadcode.DeadStores]: Although the value stored to 'ret' is used in the enclosing expression, the value is never actually read from 'ret'
# 264|
# 265| path = g_malloc(path_len);
# 266|-> while ((ret = fdt_get_path(fdt, offset, path, path_len))
# 267| == -FDT_ERR_NOSPACE) {
# 268| path_len += 16;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c:321:21: warning[deadcode.DeadStores]: Although the value stored to 'ret' is used in the enclosing expression, the value is never actually read from 'ret'
# 319|
# 320| path = g_malloc(path_len);
# 321|-> while ((ret = fdt_get_path(fdt, offset, path, path_len))
# 322| == -FDT_ERR_NOSPACE) {
# 323| path_len += 16;
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c: scope_hint: In function ‘qemu_fdt_add_subnode’
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c:531:22: warning[-Wanalyzer-null-argument]: use of NULL where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c:530:21: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/system/device_tree.c: scope_hint: In function ‘qemu_fdt_add_subnode’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:273:14: note: argument 1 of ‘strrchr’ must be non-null
# 529| {
# 530| char *dupname = g_strdup(name);
# 531|-> char *basename = strrchr(dupname, '/');
# 532| int retval;
# 533| int parent = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/dirtylimit.c:253:42: warning[core.DivideZero]: Division by zero
# 251| }
# 252|
# 253|-> return dirty_ring_size_MiB * 1000000 / max_dirtyrate;
# 254| }
# 255|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/dirtylimit.c:670:23: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 668| }
# 669|
# 670|-> for (info = head; info != NULL; info = info->next) {
# 671| monitor_printf(mon, "vcpu[%"PRIi64"], limit rate %"PRIi64 " (MB/s),"
# 672| " current rate %"PRIi64 " (MB/s)\n",
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/tpm.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:1816:9: warning[core.NullDereference]: Array access (from variable 'str') results in a null pointer dereference
# 1814| Visitor *v;
# 1815|
# 1816|-> if (str[0] == '{') {
# 1817| QObject *obj = qobject_from_json(str, &error_fatal);
# 1818|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c: scope_hint: In function ‘object_option_parse’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:1816:12: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘str’
# 1814| Visitor *v;
# 1815|
# 1816|-> if (str[0] == '{') {
# 1817| QObject *obj = qobject_from_json(str, &error_fatal);
# 1818|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c: scope_hint: In function ‘qemu_create_machine’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2102:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qdict.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:34: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:57:22: note: in expansion of macro ‘QOBJECT_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/qmp/qobject.h:119:47: note: in expansion of macro ‘QOBJECT’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2095:5: note: in expansion of macro ‘qobject_unref’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2095:5: note: in expansion of macro ‘qobject_unref’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2095:5: note: in expansion of macro ‘qobject_unref’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2095:5: note: in expansion of macro ‘qobject_unref’
qemu-9.0.0-build/qemu-9.0.0/include/qapi/compat-policy.h:16: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:1674:13: note: in expansion of macro ‘error_setg’
# 2100| {
# 2101| MachineClass *machine_class = select_machine(qdict, &error_fatal);
# 2102|-> object_set_machine_compat_props(machine_class->compat_props);
# 2103|
# 2104| current_machine = MACHINE(object_new_with_class(OBJECT_CLASS(machine_class)));
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2254:19: warning[core.NullDereference]: Array access (from variable 'str') results in a null pointer dereference
# 2252|
# 2253| rc = sscanf(str, "%63[^.].%63[^.].%63[^=]%n", group, id, arg, &offset);
# 2254|-> if (rc < 3 || str[offset] != '=') {
# 2255| error_setg(errp, "can't parse: \"%s\"", str);
# 2256| return;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2568:17: warning[unix.Malloc]: Potential leak of memory pointed to by 'pid_file_realpath'
# 2566| pid_file_realpath = g_malloc0(PATH_MAX);
# 2567| if (!realpath(pid_file, pid_file_realpath)) {
# 2568|-> if (errno != ENOENT) {
# 2569| warn_report("not removing PID file on exit: cannot resolve PID "
# 2570| "file path: %s: %s", pid_file, strerror(errno));
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c: scope_hint: In function ‘qemu_init’
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2901:34: warning[-Wanalyzer-null-argument]: use of NULL ‘optarg’ where non-null expected
/usr/include/features.h:511: included_from: Included from here.
/usr/include/bits/libc-header-start.h:33: included_from: Included from here.
/usr/include/stdint.h:26: included_from: Included from here.
/usr/lib/gcc/x86_64-redhat-linux/14/include/stdint.h:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:111: included_from: Included from here.
/usr/include/stdlib.h:215:17: note: argument 1 of ‘strtol’ must be non-null
# 2899| break;
# 2900| case QEMU_OPTION_rotate:
# 2901|-> graphic_rotate = strtol(optarg, (char **) &optarg, 10);
# 2902| if (graphic_rotate != 0 && graphic_rotate != 90 &&
# 2903| graphic_rotate != 180 && graphic_rotate != 270) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:2901:34: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 2899| break;
# 2900| case QEMU_OPTION_rotate:
# 2901|-> graphic_rotate = strtol(optarg, (char **) &optarg, 10);
# 2902| if (graphic_rotate != 0 && graphic_rotate != 90 &&
# 2903| graphic_rotate != 180 && graphic_rotate != 270) {
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3076:25: warning[-Wanalyzer-null-argument]: use of NULL ‘optarg’ where non-null expected
/usr/include/stdlib.h:215:17: note: argument 1 of ‘strtol’ must be non-null
# 3074| int w, h, depth;
# 3075| p = optarg;
# 3076|-> w = strtol(p, (char **)&p, 10);
# 3077| if (w <= 0) {
# 3078| graphic_error:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3076:25: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3074| int w, h, depth;
# 3075| p = optarg;
# 3076|-> w = strtol(p, (char **)&p, 10);
# 3077| if (w <= 0) {
# 3078| graphic_error:
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3109:40: warning[-Wanalyzer-null-argument]: use of NULL ‘optarg’ where non-null expected
/usr/include/stdlib.h:215:17: note: argument 1 of ‘strtol’ must be non-null
# 3107| {
# 3108| char *r;
# 3109|-> term_escape_char = strtol(optarg, &r, 0);
# 3110| if (r == optarg)
# 3111| printf("Bad argument to echr\n");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3109:40: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3107| {
# 3108| char *r;
# 3109|-> term_escape_char = strtol(optarg, &r, 0);
# 3110| if (r == optarg)
# 3111| printf("Bad argument to echr\n");
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3116:21: warning[-Wanalyzer-null-argument]: use of NULL ‘optarg’ where non-null expected
/usr/include/string.h:159:12: note: argument 1 of ‘strncmp’ must be non-null
# 3114| case QEMU_OPTION_monitor:
# 3115| default_monitor = 0;
# 3116|-> if (strncmp(optarg, "none", 4)) {
# 3117| monitor_parse(optarg, "readline", false);
# 3118| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3116:21: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3114| case QEMU_OPTION_monitor:
# 3115| default_monitor = 0;
# 3116|-> if (strncmp(optarg, "none", 4)) {
# 3117| monitor_parse(optarg, "readline", false);
# 3118| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3234:21: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3232| add_device_config(DEV_SERIAL, optarg);
# 3233| default_serial = 0;
# 3234|-> if (strncmp(optarg, "mon:", 4) == 0) {
# 3235| default_monitor = 0;
# 3236| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3252:21: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3250| add_device_config(DEV_PARALLEL, optarg);
# 3251| default_parallel = 0;
# 3252|-> if (strncmp(optarg, "mon:", 4) == 0) {
# 3253| default_monitor = 0;
# 3254| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3346:21: warning[core.NullDereference]: Array access (from variable 'optarg') results in a null pointer dereference
# 3344| break;
# 3345| case QEMU_OPTION_device:
# 3346|-> if (optarg[0] == '{') {
# 3347| QObject *obj = qobject_from_json(optarg, &error_fatal);
# 3348| DeviceOption *opt = g_new0(DeviceOption, 1);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3346:27: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘optarg’
# 3344| break;
# 3345| case QEMU_OPTION_device:
# 3346|-> if (optarg[0] == '{') {
# 3347| QObject *obj = qobject_from_json(optarg, &error_fatal);
# 3348| DeviceOption *opt = g_new0(DeviceOption, 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/system/vl.c:3463:29: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 3461| exit(1);
# 3462| }
# 3463|-> xen_domid = atoi(optarg);
# 3464| break;
# 3465| case QEMU_OPTION_xen_attach:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/arch_dump.c:213:30: warning[deadcode.DeadStores]: Although the value stored to 'r' is used in the enclosing expression, the value is never actually read from 'r'
# 211|
# 212| for (i = 0; i < 17; ++i) {
# 213|-> r = sve_bswap64(tmp, r = &env->vfp.pregs[i].p[0],
# 214| DIV_ROUND_UP(vq * 2, 8));
# 215| memcpy(&buf[sve_preg_offset(vq, i)], r, vq * 16 / 8);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/arm-powerctl.c:187:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'info'
# 185|
# 186| /* We are good to go */
# 187|-> return QEMU_ARM_POWERCTL_RET_SUCCESS;
# 188| }
# 189|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/cpu64.c:554:13: warning[deadcode.DeadStores]: Value stored to 'cpu' during its initialization is never read
# 552| void aarch64_add_pauth_properties(Object *obj)
# 553| {
# 554|-> ARMCPU *cpu = ARM_CPU(obj);
# 555|
# 556| /* Default to PAUTH on, with the architected algorithm on TCG. */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/debug_helper.c:176:14: warning[deadcode.DeadStores]: Value stored to 'bcr' during its initialization is never read
# 174| {
# 175| CPUARMState *env = &cpu->env;
# 176|-> uint64_t bcr = env->cp15.dbgbcr[lbn];
# 177| int brps = arm_num_brps(cpu);
# 178| int ctx_cmps = arm_num_ctx_cmps(cpu);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c:100:15: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘param[1]’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
# 98| case QEMU_PSCI_0_2_FN_AFFINITY_INFO:
# 99| case QEMU_PSCI_0_2_FN64_AFFINITY_INFO:
# 100|-> mpidr = param[1];
# 101|
# 102| switch (param[2]) {
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c:148:15: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘param[1]’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c:19: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
# 146| bool target_aarch64 = arm_el_is_aa64(env, target_el);
# 147|
# 148|-> mpidr = param[1];
# 149| entry = param[2];
# 150| context_id = param[3];
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c:162:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘param[1]’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
# 160| case QEMU_PSCI_0_2_FN64_CPU_SUSPEND:
# 161| /* Affinity levels are not supported in QEMU */
# 162|-> if (param[1] & 0xfffe0000) {
# 163| ret = QEMU_PSCI_RET_INVALID_PARAMS;
# 164| break;
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c:175:22: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘param[1]’
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/psci.c: scope_hint: In function ‘arm_handle_psci_call’
# 173| break;
# 174| case QEMU_PSCI_1_0_FN_PSCI_FEATURES:
# 175|-> switch (param[1]) {
# 176| case QEMU_PSCI_0_2_FN_PSCI_VERSION:
# 177| case QEMU_PSCI_0_2_FN_MIGRATE_INFO_TYPE:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/translate-sve.c:53:16: warning[core.BitwiseShift]: Right operand is negative in left shift
# 51| static int tszimm_shr(DisasContext *s, int x)
# 52| {
# 53|-> return (16 << tszimm_esz(s, x)) - x;
# 54| }
# 55|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/tcg/translate-sve.c:59:19: warning[core.BitwiseShift]: Right operand is negative in left shift
# 57| static int tszimm_shl(DisasContext *s, int x)
# 58| {
# 59|-> return x - (8 << tszimm_esz(s, x));
# 60| }
# 61|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/arm/vfp_helper.c:1096:5: warning[deadcode.DeadStores]: Value stored to 'new_flags' is never read
# 1094| ret = float64_round_to_int(x, fp_status);
# 1095|
# 1096|-> new_flags = get_float_exception_flags(fp_status);
# 1097|
# 1098| /* Suppress any inexact exceptions the conversion produced */
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y: scope_hint: In function ‘main’
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:841:25: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(argv[4], "w")’
# 839| FILE *enabled_file = fopen(argv[ARG_INDEX_ENABLED_INSTRUCTIONS_LIST], "w");
# 840|
# 841|-> FILE *output_file = fopen(argv[ARG_INDEX_EMITTER_C], "w");
# 842| fputs("#include \"qemu/osdep.h\"\n", output_file);
# 843| fputs("#include \"qemu/log.h\"\n", output_file);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:841:25: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(argv[4], "w")’
# 839| FILE *enabled_file = fopen(argv[ARG_INDEX_ENABLED_INSTRUCTIONS_LIST], "w");
# 840|
# 841|-> FILE *output_file = fopen(argv[ARG_INDEX_EMITTER_C], "w");
# 842| fputs("#include \"qemu/osdep.h\"\n", output_file);
# 843| fputs("#include \"qemu/log.h\"\n", output_file);
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:842:5: warning[-Wanalyzer-possible-null-argument]: use of possibly-NULL ‘fopen(argv[2], "w")’ where non-null expected
<built-in>: note: argument 4 of ‘__builtin_fwrite’ must be non-null
# 840|
# 841| FILE *output_file = fopen(argv[ARG_INDEX_EMITTER_C], "w");
# 842|-> fputs("#include \"qemu/osdep.h\"\n", output_file);
# 843| fputs("#include \"qemu/log.h\"\n", output_file);
# 844| fputs("#include \"cpu.h\"\n", output_file);
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:876:5: warning[-Wanalyzer-possible-null-argument]: use of possibly-NULL ‘fopen(argv[1], "r")’ where non-null expected
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.h:22: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:14: included_from: Included from here.
/usr/include/stdio.h:769:12: note: argument 1 of ‘fseek’ must be non-null
# 874| /* Read input file */
# 875| FILE *input_file = fopen(argv[ARG_INDEX_IDEFS], "r");
# 876|-> fseek(input_file, 0L, SEEK_END);
# 877| long input_size = ftell(input_file);
# 878| context.input_buffer = (char *) calloc(input_size + 1, sizeof(char));
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:884:8: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(argv[1], "r")’
# 882| input_size,
# 883| input_file);
# 884|-> if (read_chars != (size_t) input_size) {
# 885| fprintf(stderr, "Error: an error occurred while reading input file!\n");
# 886| return -1;
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:884:8: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(argv[1], "r")’
# 882| input_size,
# 883| input_file);
# 884|-> if (read_chars != (size_t) input_size) {
# 885| fprintf(stderr, "Error: an error occurred while reading input file!\n");
# 886| return -1;
Error: CPPCHECK_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:886: error[memleak]: Memory leak: context.input_buffer
# 884| if (read_chars != (size_t) input_size) {
# 885| fprintf(stderr, "Error: an error occurred while reading input file!\n");
# 886|-> return -1;
# 887| }
# 888| yylex_init(&context.scanner);
Error: CPPCHECK_WARNING (CWE-404):
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/idef-parser.y:886: error[resourceLeak]: Resource leak: input_file
# 884| if (read_chars != (size_t) input_size) {
# 885| fprintf(stderr, "Error: an error occurred while reading input file!\n");
# 886|-> return -1;
# 887| }
# 888| yylex_init(&context.scanner);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/idef-parser/parser-helpers.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/op_helper.c:182:22: warning[deadcode.DeadStores]: Value stored to 'data' during its initialization is never read
# 180| uint8_t width = env->mem_log_stores[slot].width;
# 181| if (width == 1) {
# 182|-> uint32_t data = env->mem_log_stores[slot].data32 & 0xff;
# 183| HEX_DEBUG_LOG("\tmemb[0x" TARGET_FMT_lx "] = %" PRId32
# 184| " (0x%02" PRIx32 ")\n",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/op_helper.c:187:22: warning[deadcode.DeadStores]: Value stored to 'data' during its initialization is never read
# 185| env->mem_log_stores[slot].va, data, data);
# 186| } else if (width == 2) {
# 187|-> uint32_t data = env->mem_log_stores[slot].data32 & 0xffff;
# 188| HEX_DEBUG_LOG("\tmemh[0x" TARGET_FMT_lx "] = %" PRId32
# 189| " (0x%04" PRIx32 ")\n",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/hexagon/op_helper.c:192:22: warning[deadcode.DeadStores]: Value stored to 'data' during its initialization is never read
# 190| env->mem_log_stores[slot].va, data, data);
# 191| } else if (width == 4) {
# 192|-> uint32_t data = env->mem_log_stores[slot].data32;
# 193| HEX_DEBUG_LOG("\tmemw[0x" TARGET_FMT_lx "] = %" PRId32
# 194| " (0x%08" PRIx32 ")\n",
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c: scope_hint: In function ‘kvm_arch_update_guest_debug’
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5123:53: warning[-Wanalyzer-out-of-bounds]: buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5123:53: note: read of 4 bytes from after the end of ‘hw_breakpoint’
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5123:53: note: valid subscripts for ‘hw_breakpoint’ are ‘[0]’ to ‘[3]’
# └────────────────────────────────┘
# ^
# 5121| dbg->arch.debugreg[7] = 0x0600;
# 5122| for (n = 0; n < nb_hw_breakpoint; n++) {
# 5123|-> dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:44: warning[-Wanalyzer-out-of-bounds]: buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:44: note: read of 4 bytes from after the end of ‘hw_breakpoint’
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:44: note: valid subscripts for ‘hw_breakpoint’ are ‘[0]’ to ‘[3]’
# └───────────────────────┘
# ^
# 5123| dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125|-> (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126| ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:51: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘32’) >= precision of type (‘32’)
# 5123| dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125|-> (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126| ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:51: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘36’) >= precision of type (‘32’)
# 5123| dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125|-> (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126| ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:51: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘40’) >= precision of type (‘32’)
# 5123| dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125|-> (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126| ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5125:51: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘44’) >= precision of type (‘32’)
# 5123| dbg->arch.debugreg[n] = hw_breakpoint[n].addr;
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125|-> (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126| ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:53: warning[-Wanalyzer-out-of-bounds]: buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:53: note: read of 4 bytes from after the end of ‘hw_breakpoint’
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:53: note: valid subscripts for ‘hw_breakpoint’ are ‘[0]’ to ‘[3]’
# └───────────────────────┘
# ^
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126|-> ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
# 5128| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:59: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘34’) >= precision of type (‘32’)
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126|-> ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
# 5128| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:59: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘38’) >= precision of type (‘32’)
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126|-> ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
# 5128| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:59: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘42’) >= precision of type (‘32’)
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126|-> ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
# 5128| }
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/kvm.c:5126:59: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘46’) >= precision of type (‘32’)
# 5124| dbg->arch.debugreg[7] |= (2 << (n * 2)) |
# 5125| (type_code[hw_breakpoint[n].type] << (16 + n*4)) |
# 5126|-> ((uint32_t)len_code[hw_breakpoint[n].len] << (18 + n*4));
# 5127| }
# 5128| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/i386/kvm/xen-emu.c:1113:9: warning[deadcode.DeadStores]: Value stored to 'timeout_abs' is never read
# 1111| */
# 1112| delta = (100 * SCALE_MS);
# 1113|-> timeout_abs = now + delta;
# 1114| }
# 1115|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/i386/tcg/translate.c:2214:9: warning[deadcode.DeadStores]: Value stored to 'havesib' is never read
# 2212| case MO_64:
# 2213| case MO_32:
# 2214|-> havesib = 0;
# 2215| if (rm == 4) {
# 2216| int code = x86_ldub_code(env, s);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/i386/tcg/translate.c:2223:13: warning[deadcode.DeadStores]: Value stored to 'havesib' is never read
# 2221| }
# 2222| base = (code & 7) | REX_B(s);
# 2223|-> havesib = 1;
# 2224| }
# 2225|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/i386/tcg/translate.c:3197:17: warning[deadcode.DeadStores]: Value stored to 'vex2' during its initialization is never read
# 3195| case 0xc4: /* 3-byte VEX */
# 3196| if (CODE32(s) && !VM86(s)) {
# 3197|-> int vex2 = x86_ldub_code(env, s);
# 3198| s->pc--; /* rewind the advance_pc() x86_ldub_code() did */
# 3199|
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvtl_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2616:34: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:53: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:8: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2603:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvtl_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:9: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvtl_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:10: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2619:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvtl_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvtl_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2616:34: note: write of 8 bytes to beyond the end of ‘temp’
# 2614| for (i = 0; i < oprsz / 16; i++) {
# 2615| for (j = 0; j < ofs; j++) {
# 2616|-> temp.UD(j + ofs * i) = float32_cvt_float64(Vj->UW(j + ofs * 2 * i),
# 2617| &env->fp_status);
# 2618| }
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvth_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2658:34: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2645:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvth_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvth_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2661:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvth_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvth_d_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2658:34: note: write of 8 bytes to beyond the end of ‘temp’
# 2656| for (i = 0; i < oprsz / 16; i++) {
# 2657| for (j = 0; j < ofs; j++) {
# 2658|-> temp.UD(j + ofs * i) = float32_cvt_float64(Vj->UW(j + ofs * (2 * i + 1)),
# 2659| &env->fp_status);
# 2660| }
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2704:44: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2690:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2709:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2704:44: note: write of 4 bytes to beyond the end of ‘temp’
# 2702| for(i = 0; i < oprsz / 16; i++) {
# 2703| for (j = 0; j < ofs; j++) {
# 2704|-> temp.UW(j + ofs * (2 * i + 1)) = float64_cvt_float32(Vj->UD(j + ofs * i),
# 2705| &env->fp_status);
# 2706| temp.UW(j + ofs * 2 * i) = float64_cvt_float32(Vk->UD(j + ofs * i),
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2706:38: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2690:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2709:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcvt_s_d’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2706:38: note: write of 4 bytes to beyond the end of ‘temp’
# 2704| temp.UW(j + ofs * (2 * i + 1)) = float64_cvt_float32(Vj->UD(j + ofs * i),
# 2705| &env->fp_status);
# 2706|-> temp.UW(j + ofs * 2 * i) = float64_cvt_float32(Vk->UD(j + ofs * i),
# 2707| &env->fp_status);
# 2708| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vftintl_l_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2893:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘temp’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2896:1: note: in expansion of macro ‘FTINTL_L_S’
# 2891| } \
# 2892| } \
# 2893|-> *Vd = temp; \
# 2894| }
# 2895|
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffintl_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2961:33: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2948:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffintl_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffintl_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2964:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffintl_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffintl_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2961:33: note: write of 8 bytes to beyond the end of ‘temp’
# 2959| for (i = 0; i < oprsz / 16; i++) {
# 2960| for (j = 0; j < ofs; j++) {
# 2961|-> temp.D(j + ofs * i) = int32_to_float64(Vj->W(j + ofs * 2 * i),
# 2962| &env->fp_status);
# 2963| }
Error: GCC_ANALYZER_WARNING (CWE-121):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffinth_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2982:33: warning[-Wanalyzer-out-of-bounds]: stack-based buffer overflow
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:34:21: note: in definition of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/exec/helper-head.h:11:22: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2969:6: note: in expansion of macro ‘HELPER’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffinth_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffinth_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2985:31: note: in expansion of macro ‘GETPC’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffinth_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:64:32: note: in expansion of macro ‘FIELD_EX32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2388:9: note: in expansion of macro ‘GET_FP_ENABLES’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/cpu.h:78:18: note: in expansion of macro ‘FIELD_DP32’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2391:9: note: in expansion of macro ‘UPDATE_FP_FLAGS’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vffinth_d_w’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:2982:33: note: write of 8 bytes to beyond the end of ‘temp’
# 2980| for (i = 0; i < oprsz /16; i++) {
# 2981| for (j = 0; j < ofs; j++) {
# 2982|-> temp.D(j + ofs * i) = int32_to_float64(Vj->W(j + ofs * (2 * i + 1)),
# 2983| &env->fp_status);
# 2984| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c: scope_hint: In function ‘helper_vfcmp_c_s’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3095:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘t’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
qemu-9.0.0-build/qemu-9.0.0/target/loongarch/tcg/vec_helper.c:3098:1: note: in expansion of macro ‘VFCMP’
# 3093| vec_update_fcsr0(env, GETPC()); \
# 3094| } \
# 3095|-> *Vd = t; \
# 3096| }
# 3097|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/m68k/softfloat.c:276:5: warning[deadcode.DeadStores]: Value stored to 'compact' is never read
# 274| status->floatx80_rounding_precision = floatx80_precision_x;
# 275|
# 276|-> compact = floatx80_make_compact(aExp, aSig);
# 277|
# 278| fp0 = a; /* Z */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/m68k/softfloat.c:756:5: warning[deadcode.DeadStores]: Value stored to 'adjflag' is never read
# 754| status->floatx80_rounding_precision = floatx80_precision_x;
# 755|
# 756|-> adjflag = 0;
# 757|
# 758| if (aExp >= 0x3FBE) { /* |X| >= 2^(-65) */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/m68k/softfloat.c:1520:13: warning[deadcode.DeadStores]: Value stored to 'fp0' is never read
# 1518| } else {
# 1519| /* SINSM */
# 1520|-> fp0 = float32_to_floatx80(make_float32(0x3F800000),
# 1521| status); /* 1 */
# 1522|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/msa.c:22: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/mips/internal.h:272:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 270| static inline int mips_vp_active(CPUMIPSState *env)
# 271| {
# 272|-> CPUState *other_cs = first_cpu;
# 273|
# 274| /* Check if the VP disabled other VPs (which means the VP is enabled) */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/msa_translate.c:138:9: warning[deadcode.DeadStores]: Value stored to 'off' is never read
# 136| * scalar floating-point unit (FPU) registers.
# 137| */
# 138|-> off = offsetof(CPUMIPSState, active_fpu.fpr[i].wr.d[0]);
# 139| msa_wr_d[i * 2] = fpu_f64[i];
# 140|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/cp0_helper.c:878:15: warning[core.BitwiseShift]: Right shift by '32' overflows the capacity of 'uint32_t'
# 876|
# 877| /* Ensure no more set bit after first zero */
# 878|-> if ((mask >> maskbits) != 0) {
# 879| goto invalid;
# 880| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/cp0_helper.c:1574:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 1572| target_ulong helper_dvpe(CPUMIPSState *env)
# 1573| {
# 1574|-> CPUState *other_cs = first_cpu;
# 1575| target_ulong prev = env->mvp->CP0_MVPControl;
# 1576|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/cp0_helper.c:1590:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 1588| target_ulong helper_evpe(CPUMIPSState *env)
# 1589| {
# 1590|-> CPUState *other_cs = first_cpu;
# 1591| target_ulong prev = env->mvp->CP0_MVPControl;
# 1592|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/cp0_helper.c:1610:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 1608| target_ulong helper_dvp(CPUMIPSState *env)
# 1609| {
# 1610|-> CPUState *other_cs = first_cpu;
# 1611| target_ulong prev = env->CP0_VPControl;
# 1612|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/cp0_helper.c:1628:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 1626| target_ulong helper_evp(CPUMIPSState *env)
# 1627| {
# 1628|-> CPUState *other_cs = first_cpu;
# 1629| target_ulong prev = env->CP0_VPControl;
# 1630|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/sysemu/tlb_helper.c:346:15: warning[deadcode.DeadStores]: Value stored to 'other_cs' during its initialization is never read
# 344| uint8_t invMsgR = 0;
# 345| uint32_t invMsgMMid = env->CP0_MemoryMapID;
# 346|-> CPUState *other_cs = first_cpu;
# 347|
# 348| #ifdef TARGET_MIPS64
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/mips/tcg/translate.c:8709:17: warning[deadcode.DeadStores]: Value stored to 'opn' during its initialization is never read
# 8707| int rt, int rd)
# 8708| {
# 8709|-> const char *opn = "ldst";
# 8710|
# 8711| check_cp0_enabled(ctx);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/hw/ppc/ppc.h:4: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c: scope_hint: In function ‘ppc_heathrow_init’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu.h:284:30: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘env’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:266:17: note: in expansion of macro ‘PPC_INPUT’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:27: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:477:28: note: in definition of macro ‘ROUND_DOWN’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-all.h:172:33: note: in expansion of macro ‘ROUND_UP’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:182:27: note: in expansion of macro ‘TARGET_PAGE_ALIGN’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:477:28: note: in definition of macro ‘ROUND_DOWN’
qemu-9.0.0-build/qemu-9.0.0/include/exec/cpu-all.h:172:33: note: in expansion of macro ‘ROUND_UP’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:192:28: note: in expansion of macro ‘TARGET_PAGE_ALIGN’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:266:17: note: in expansion of macro ‘PPC_INPUT’
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/mac_oldworld.c:266:17: note: in expansion of macro ‘PPC_INPUT’
# 282| } powerpc_input_t;
# 283|
# 284|-> #define PPC_INPUT(env) ((env)->bus_model)
# 285|
# 286| /*****************************************************************************/
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/hw/ppc/e500.c:31: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/kvm.h:214: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu.h:2804:13: warning[core.BitwiseShift]: Left shift by '32' overflows the capacity of 'target_ulong'
# 2802| ea >>= MAS2_EPN_SHIFT;
# 2803| ea &= (1 << (tlb_bits - ways_bits)) - 1;
# 2804|-> r = (ea << ways_bits) | way;
# 2805|
# 2806| if (r >= booke206_tlb_size(env, tlbn)) {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:45: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c: scope_hint: In function ‘register_BookE206_sprs’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:896:29: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
# 894| SPR_NOACCESS, SPR_NOACCESS,
# 895| &spr_read_generic, SPR_NOACCESS,
# 896|-> tlbncfg[3]);
# 897| /* Fallthru */
# 898| case 3:
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:896:29: warning[-Wanalyzer-out-of-bounds]: stack-based buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:896:29: note: read of 4 bytes from after the end of ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:896:29: note: valid subscripts for ‘tlbncfg’ are ‘[0]’ to ‘[1]’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
# └────────────────────────────┘
# ^
# 894| SPR_NOACCESS, SPR_NOACCESS,
# 895| &spr_read_generic, SPR_NOACCESS,
# 896|-> tlbncfg[3]);
# 897| /* Fallthru */
# 898| case 3:
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:902:29: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
# 900| SPR_NOACCESS, SPR_NOACCESS,
# 901| &spr_read_generic, SPR_NOACCESS,
# 902|-> tlbncfg[2]);
# 903| /* Fallthru */
# 904| case 2:
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:902:29: warning[-Wanalyzer-out-of-bounds]: stack-based buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:902:29: note: read of 4 bytes from after the end of ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:902:29: note: valid subscripts for ‘tlbncfg’ are ‘[0]’ to ‘[1]’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:899:9: note: in expansion of macro ‘spr_register’
# └────────────────────────────┘
# ^
# 900| SPR_NOACCESS, SPR_NOACCESS,
# 901| &spr_read_generic, SPR_NOACCESS,
# 902|-> tlbncfg[2]);
# 903| /* Fallthru */
# 904| case 2:
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:908:29: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:905:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:905:9: note: in expansion of macro ‘spr_register’
# 906| SPR_NOACCESS, SPR_NOACCESS,
# 907| &spr_read_generic, SPR_NOACCESS,
# 908|-> tlbncfg[1]);
# 909| /* Fallthru */
# 910| case 1:
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:914:29: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:911:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:61:39: note: in definition of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:911:9: note: in expansion of macro ‘spr_register’
# 912| SPR_NOACCESS, SPR_NOACCESS,
# 913| &spr_read_generic, SPR_NOACCESS,
# 914|-> tlbncfg[0]);
# 915| /* Fallthru */
# 916| case 0:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/translate.c:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/internal.h:54:1: warning[core.BitwiseShift]: Right shift overflows the capacity of 'unsigned long'
# 52|
# 53| #if defined(TARGET_PPC64)
# 54|-> FUNC_MASK(MASK, target_ulong, 64, UINT64_MAX);
# 55| #else
# 56| FUNC_MASK(MASK, target_ulong, 32, UINT32_MAX);
Error: GCC_ANALYZER_WARNING (CWE-1335):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/misc_helper.c: scope_hint: In function ‘helper_hfscr_facility_check’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/misc_helper.c:121:38: warning[-Wanalyzer-shift-count-overflow]: shift by count (‘1024’) >= precision of type (‘64’)
# 119| #ifdef TARGET_PPC64
# 120| if ((env->msr_mask & MSR_HVB) && !FIELD_EX64(env->msr, MSR, HV) &&
# 121|-> !(env->spr[SPR_HFSCR] & (1UL << bit))) {
# 122| raise_hv_fu_exception(env, bit, caller, cause, GETPC());
# 123| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/misc_helper.c:121:67: warning[core.BitwiseShift]: Left shift by '1024' overflows the capacity of 'unsigned long'
# 119| #ifdef TARGET_PPC64
# 120| if ((env->msr_mask & MSR_HVB) && !FIELD_EX64(env->msr, MSR, HV) &&
# 121|-> !(env->spr[SPR_HFSCR] & (1UL << bit))) {
# 122| raise_hv_fu_exception(env, bit, caller, cause, GETPC());
# 123| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:400:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 398| "pte segment: key=%d ds %d nx %d vsid " TARGET_FMT_lx "\n",
# 399| ctx->key, ds, ctx->nx, vsid);
# 400|-> ret = -1;
# 401| if (!ds) {
# 402| /* Check if instruction fetch is allowed, if needed */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:596:6: warning[core.CallAndMessage]: 5th function call argument is an uninitialized value
# 594| }
# 595| }
# 596|-> qemu_log_mask(CPU_LOG_MMU, "%s: access refused " TARGET_FMT_lx
# 597| " => " HWADDR_FMT_plx
# 598| " %d %d\n", __func__, address, raddr, ctx->prot, ret);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:686:10: warning[core.CallAndMessage]: 5th function call argument is an uninitialized value
# 684| address, ctx->raddr, ctx->prot, ret);
# 685| } else {
# 686|-> qemu_log_mask(CPU_LOG_MMU, "%s: access refused " TARGET_FMT_lx
# 687| " => " HWADDR_FMT_plx " %d %d\n", __func__,
# 688| address, raddr, ctx->prot, ret);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/mmu_common.c:1231:13: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 1229| case POWERPC_MMU_REAL:
# 1230| if (real_mode) {
# 1231|-> ret = check_physical(env, ctx, eaddr, access_type);
# 1232| } else {
# 1233| cpu_abort(env_cpu(env),
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:45: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c: scope_hint: In function ‘register_BookE206_sprs’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:57:5: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
# 55| oea_read, oea_write, hea_read, hea_write, \
# 56| one_reg_id, initial_value) \
# 57|-> _spr_register(env, num, name, \
# 58| USR_ARG(uea_read) USR_ARG(uea_write) \
# 59| SYS_ARG(oea_read) SYS_ARG(oea_write) \
Error: GCC_ANALYZER_WARNING (CWE-126):
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:57:5: warning[-Wanalyzer-out-of-bounds]: stack-based buffer over-read
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:770:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:857:13: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:57:5: note: read of 4 bytes from after the end of ‘tlbncfg’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:57:5: note: valid subscripts for ‘tlbncfg’ are ‘[0]’ to ‘[1]’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:66:5: note: in expansion of macro ‘spr_register_kvm_hv’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/spr_common.h:77:5: note: in expansion of macro ‘spr_register_kvm’
qemu-9.0.0-build/qemu-9.0.0/target/ppc/cpu_init.c:893:9: note: in expansion of macro ‘spr_register’
# └────────────────────────────┘
# ^
# 55| oea_read, oea_write, hea_read, hea_write, \
# 56| one_reg_id, initial_value) \
# 57|-> _spr_register(env, num, name, \
# 58| USR_ARG(uea_read) USR_ARG(uea_write) \
# 59| SYS_ARG(oea_read) SYS_ARG(oea_write) \
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/ppc/timebase_helper.c:424:9: warning[deadcode.DeadStores]: Value stored to 'tfmr' is never read
# 422| qemu_log_mask(LOG_GUEST_ERROR, "TFMR error: mtspr TFMR in TB_ERROR"
# 423| " state\n");
# 424|-> tfmr |= TFMR_FIRMWARE_CONTROL_ERROR;
# 425| return;
# 426| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/cpu_helper.c:154:14: warning[deadcode.DeadStores]: Value stored to 'xl' during its initialization is never read
# 152| {
# 153| target_ulong mask = 0, base = 0;
# 154|-> RISCVMXL xl = env->xl;
# 155| /*
# 156| * TODO: Current RVJ spec does not specify
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/cpu_helper.c:1154:44: warning[core.BitwiseShift]: Left shift by '36' overflows the capacity of 'target_ulong'
# 1152| napot_mask = (1 << napot_bits) - 1;
# 1153| *physical = (((ppn & ~napot_mask) | (vpn & napot_mask) |
# 1154|-> (vpn & (((target_ulong)1 << ptshift) - 1))
# 1155| ) << PGSHIFT) | (addr & ~TARGET_PAGE_MASK);
# 1156|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:742:33: warning[core.BitwiseShift]: Left shift by '64' overflows the capacity of 'unsigned long long'
# 740| * to hold the largest element index, i.e. lg2(VLEN) bits.
# 741| */
# 742|-> env->vstart = val & ~(~0ULL << ctzl(riscv_cpu_cfg(env)->vlenb << 3));
# 743| return RISCV_EXCP_NONE;
# 744| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2086:27: warning[deadcode.DeadStores]: Value stored to 'cfg' during its initialization is never read
# 2084| target_ulong val)
# 2085| {
# 2086|-> const RISCVCPUConfig *cfg = riscv_cpu_cfg(env);
# 2087| uint64_t mask = MENVCFG_FIOM | MENVCFG_CBIE | MENVCFG_CBCFE | MENVCFG_CBZE;
# 2088|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2606:18: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 2604| ret = rmw_mvip64(env, csrno, &rval, new_val, wr_mask);
# 2605| if (ret_val) {
# 2606|-> *ret_val = rval;
# 2607| }
# 2608|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2622:25: warning[core.UndefinedBinaryOperatorResult]: The left operand of '>>' is a garbage value
# 2620| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 2621| if (ret_val) {
# 2622|-> *ret_val = rval >> 32;
# 2623| }
# 2624|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2635:9: warning[deadcode.DeadStores]: Value stored to 'mask' is never read
# 2633| uint64_t sstatus = env->mstatus & mask;
# 2634| if (env->xl != MXL_RV32 || env->debugger) {
# 2635|-> mask |= SSTATUS64_UXL;
# 2636| }
# 2637|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_sieh’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2803:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 2801| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 2802| if (ret_val) {
# 2803|-> *ret_val = rval >> 32;
# 2804| }
# 2805|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:2803:25: warning[core.UndefinedBinaryOperatorResult]: The left operand of '>>' is a garbage value
# 2801| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 2802| if (ret_val) {
# 2803|-> *ret_val = rval >> 32;
# 2804| }
# 2805|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_sip’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3013:18: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 3011| ret = rmw_sip64(env, csrno, &rval, new_val, wr_mask);
# 3012| if (ret_val) {
# 3013|-> *ret_val = rval;
# 3014| }
# 3015|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3013:18: warning[core.uninitialized.Assign]: Assigned value is garbage or undefined
# 3011| ret = rmw_sip64(env, csrno, &rval, new_val, wr_mask);
# 3012| if (ret_val) {
# 3013|-> *ret_val = rval;
# 3014| }
# 3015|
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c: scope_hint: In function ‘rmw_siph’
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3029:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘rval’
# 3027| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 3028| if (ret_val) {
# 3029|-> *ret_val = rval >> 32;
# 3030| }
# 3031|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/csr.c:3029:25: warning[core.UndefinedBinaryOperatorResult]: The left operand of '>>' is a garbage value
# 3027| ((uint64_t)new_val) << 32, ((uint64_t)wr_mask) << 32);
# 3028| if (ret_val) {
# 3029|-> *ret_val = rval >> 32;
# 3030| }
# 3031|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/translate.c:1110: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/target/riscv/insn_trans/trans_xthead.c.inc:916:10: warning[deadcode.DeadStores]: Value stored to 'addr1' during its initialization is never read
# 914| TCGv t1 = tcg_temp_new();
# 915| TCGv t2 = tcg_temp_new();
# 916|-> TCGv addr1 = tcg_temp_new();
# 917| TCGv addr2 = tcg_temp_new();
# 918| int imm = a->sh2 << shamt;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/insn_trans/trans_xthead.c.inc:917:10: warning[deadcode.DeadStores]: Value stored to 'addr2' during its initialization is never read
# 915| TCGv t2 = tcg_temp_new();
# 916| TCGv addr1 = tcg_temp_new();
# 917|-> TCGv addr2 = tcg_temp_new();
# 918| int imm = a->sh2 << shamt;
# 919|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/insn_trans/trans_xthead.c.inc:954:10: warning[deadcode.DeadStores]: Value stored to 'addr1' during its initialization is never read
# 952| TCGv data1 = get_gpr(ctx, a->rd1, EXT_NONE);
# 953| TCGv data2 = get_gpr(ctx, a->rd2, EXT_NONE);
# 954|-> TCGv addr1 = tcg_temp_new();
# 955| TCGv addr2 = tcg_temp_new();
# 956| int imm = a->sh2 << shamt;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/insn_trans/trans_xthead.c.inc:955:10: warning[deadcode.DeadStores]: Value stored to 'addr2' during its initialization is never read
# 953| TCGv data2 = get_gpr(ctx, a->rd2, EXT_NONE);
# 954| TCGv addr1 = tcg_temp_new();
# 955|-> TCGv addr2 = tcg_temp_new();
# 956| int imm = a->sh2 << shamt;
# 957|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:529:5: warning[deadcode.DeadStores]: Value stored to 'h' is never read
# 527| T1 = h + sum1_64(e) + ch(e, f, g) + W1;
# 528| T2 = sum0_64(a) + maj(a, b, c);
# 529|-> h = g;
# 530| g = f;
# 531| f = e;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:530:5: warning[deadcode.DeadStores]: Value stored to 'g' is never read
# 528| T2 = sum0_64(a) + maj(a, b, c);
# 529| h = g;
# 530|-> g = f;
# 531| f = e;
# 532| e = d + T1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:533:5: warning[deadcode.DeadStores]: Value stored to 'd' is never read
# 531| f = e;
# 532| e = d + T1;
# 533|-> d = c;
# 534| c = b;
# 535| b = a;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:534:5: warning[deadcode.DeadStores]: Value stored to 'c' is never read
# 532| e = d + T1;
# 533| d = c;
# 534|-> c = b;
# 535| b = a;
# 536| a = T1 + T2;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:563:5: warning[deadcode.DeadStores]: Value stored to 'h' is never read
# 561| T1 = h + sum1_32(e) + ch(e, f, g) + W1;
# 562| T2 = sum0_32(a) + maj(a, b, c);
# 563|-> h = g;
# 564| g = f;
# 565| f = e;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:564:5: warning[deadcode.DeadStores]: Value stored to 'g' is never read
# 562| T2 = sum0_32(a) + maj(a, b, c);
# 563| h = g;
# 564|-> g = f;
# 565| f = e;
# 566| e = d + T1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:567:5: warning[deadcode.DeadStores]: Value stored to 'd' is never read
# 565| f = e;
# 566| e = d + T1;
# 567|-> d = c;
# 568| c = b;
# 569| b = a;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/riscv/vcrypto_helper.c:568:5: warning[deadcode.DeadStores]: Value stored to 'c' is never read
# 566| e = d + T1;
# 567| d = c;
# 568|-> c = b;
# 569| b = a;
# 570| a = T1 + T2;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/arch_dump.c:251:9: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 249| }
# 250|
# 251|-> memset(notep, 0, note_size);
# 252|
# 253| /* Setup note header data */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/arch_dump.c:446:8: warning[unix.Malloc]: Potential leak of memory pointed to by 'buff'
# 444|
# 445| buff = g_malloc(kvm_s390_pv_dmp_get_size_completion_data());
# 446|-> rc = kvm_s390_dump_completion_data(buff);
# 447| if (!rc) {
# 448| pv_dump_initialized = false;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/cpu_models_sysemu.c:352:9: warning[core.NullDereference]: Access to field 'gen' results in a dereference of an undefined pointer value (loaded from field 'def')
# 350|
# 351| /* detect the maximum model not regarding features */
# 352|-> if (modela.def->gen == modelb.def->gen) {
# 353| if (modela.def->type == modelb.def->type) {
# 354| cpu_type = modela.def->type;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/cpu_models_sysemu.c:352:28: warning[core.NullDereference]: Access to field 'gen' results in a dereference of an undefined pointer value (loaded from field 'def')
# 350|
# 351| /* detect the maximum model not regarding features */
# 352|-> if (modela.def->gen == modelb.def->gen) {
# 353| if (modela.def->type == modelb.def->type) {
# 354| cpu_type = modela.def->type;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/gen-features.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/s390x/mmu_helper.c:39:14: warning[deadcode.DeadStores]: Value stored to 'cpu' during its initialization is never read
# 37| uint64_t tec)
# 38| {
# 39|-> S390CPU *cpu = env_archcpu(env);
# 40|
# 41| if (kvm_enabled()) {
Error: GCC_ANALYZER_WARNING (CWE-835):
qemu-9.0.0-build/qemu-9.0.0/target/sh4/op_helper.c: scope_hint: In function ‘helper_ocbi’
qemu-9.0.0-build/qemu-9.0.0/target/sh4/op_helper.c:141:12: warning[-Wanalyzer-infinite-loop]: infinite loop
# 139| {
# 140| memory_content **current = &(env->movcal_backup);
# 141|-> while (*current)
# 142| {
# 143| uint32_t a = (*current)->address;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1865:5: warning[deadcode.DeadStores]: Value stored to 'ld_adr' is never read
# 1863| }
# 1864|
# 1865|-> ld_adr = ld_dst = ld_mop = -1;
# 1866| mv_src = -1;
# 1867| op_dst = op_src = op_opc = -1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1865:14: warning[deadcode.DeadStores]: Although the value stored to 'ld_dst' is used in the enclosing expression, the value is never actually read from 'ld_dst'
# 1863| }
# 1864|
# 1865|-> ld_adr = ld_dst = ld_mop = -1;
# 1866| mv_src = -1;
# 1867| op_dst = op_src = op_opc = -1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1865:23: warning[deadcode.DeadStores]: Although the value stored to 'ld_mop' is used in the enclosing expression, the value is never actually read from 'ld_mop'
# 1863| }
# 1864|
# 1865|-> ld_adr = ld_dst = ld_mop = -1;
# 1866| mv_src = -1;
# 1867| op_dst = op_src = op_opc = -1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1867:5: warning[deadcode.DeadStores]: Value stored to 'op_dst' is never read
# 1865| ld_adr = ld_dst = ld_mop = -1;
# 1866| mv_src = -1;
# 1867|-> op_dst = op_src = op_opc = -1;
# 1868| mt_dst = -1;
# 1869| st_src = st_mop = -1;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1869:5: warning[deadcode.DeadStores]: Value stored to 'st_src' is never read
# 1867| op_dst = op_src = op_opc = -1;
# 1868| mt_dst = -1;
# 1869|-> st_src = st_mop = -1;
# 1870| op_arg = NULL;
# 1871| i = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sh4/translate.c:1869:14: warning[deadcode.DeadStores]: Although the value stored to 'st_mop' is used in the enclosing expression, the value is never actually read from 'st_mop'
# 1867| op_dst = op_src = op_opc = -1;
# 1868| mt_dst = -1;
# 1869|-> st_src = st_mop = -1;
# 1870| op_arg = NULL;
# 1871| i = 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sparc/mmu_helper.c:660:9: warning[deadcode.DeadStores]: Value stored to 'context' is never read
# 658| /* fallthru */
# 659| case MMU_KERNEL_IDX:
# 660|-> context = env->dmmu.mmu_primary_context & 0x1fff;
# 661| break;
# 662| default:
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/sparc/mmu_helper.c:663:9: warning[deadcode.DeadStores]: Value stored to 'context' is never read
# 661| break;
# 662| default:
# 663|-> context = 0;
# 664| break;
# 665| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/tricore/op_helper.c:1915:5: warning[deadcode.DeadStores]: Value stored to 'nOnes' is never read
# 1913|
# 1914| ret = 0;
# 1915|-> nOnes = 0;
# 1916| for (i = 0; i < 8; i++) {
# 1917| ret ^= (r1 & 1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/tricore/op_helper.c:2421:20: warning[core.BitwiseShift]: Right operand is negative in left shift
# 2419| /* check for overflow */
# 2420| int lo = clo32((*psw & MASK_PSW_CDC) << (32 - 7));
# 2421|-> int mask = (1u << (7 - lo)) - 1;
# 2422| int count = *psw & mask;
# 2423| if (count == 0) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/tricore/op_helper.c:2437:20: warning[core.BitwiseShift]: Right operand is negative in left shift
# 2435| /* check for underflow */
# 2436| int lo = clo32((*psw & MASK_PSW_CDC) << (32 - 7));
# 2437|-> int mask = (1u << (7 - lo)) - 1;
# 2438| int count = *psw & mask;
# 2439| if (count == 0) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/tricore/op_helper.c:2456:20: warning[core.BitwiseShift]: Right operand is negative in left shift
# 2454| /* find CDC.COUNT */
# 2455| int lo = clo32((*psw & MASK_PSW_CDC) << (32 - 7));
# 2456|-> int mask = (1u << (7 - lo)) - 1;
# 2457| int count = *psw & mask;
# 2458| return count == 0;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/tricore/translate.c:2569:9: warning[deadcode.DeadStores]: Value stored to 'high' is never read
# 2567| } else {
# 2568| low = tcg_temp_new();
# 2569|-> high = tcg_temp_new();
# 2570|
# 2571| tcg_gen_ext16s_tl(low, r1);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/mmu_helper.c:1007:16: warning[core.uninitialized.ArraySubscript]: Array subscript is undefined
# 1005| env->config->n_mpu_bg_segments,
# 1006| v, &bg_segment);
# 1007|-> return env->config->mpu_bg[bg_segment].attr | segment;
# 1008| }
# 1009| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/translate.c:562:5: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 560| TCGLabel *label = gen_new_label();
# 561|
# 562|-> tcg_gen_brcondi_i32(TCG_COND_NE, arg[2].in, 0, label);
# 563| gen_exception_cause(dc, INTEGER_DIVIDE_BY_ZERO_CAUSE);
# 564| gen_set_label(label);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/translate.c:953:28: warning[core.NullDereference]: Access to field 'par' results in a dereference of a null pointer (loaded from variable 'ops')
# 951| }
# 952| if (op_flags & XTENSA_OP_DEBUG_BREAK) {
# 953|-> debug_cause |= ops->par[0];
# 954| }
# 955| if (ops->test_overflow) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/translate.c:955:13: warning[core.NullDereference]: Access to field 'test_overflow' results in a dereference of a null pointer (loaded from variable 'ops')
# 953| debug_cause |= ops->par[0];
# 954| }
# 955|-> if (ops->test_overflow) {
# 956| windowed_register |= ops->test_overflow(dc, arg, ops->par);
# 957| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c: scope_hint: In function ‘xtensa_isa_num_pipe_stages’
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c:411:19: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c: scope_hint: In function ‘xtensa_isa_num_pipe_stages’
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c:799:5: note: in expansion of macro ‘CHECK_OPCODE’
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c:799:5: note: in expansion of macro ‘CHECK_OPCODE’
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-isa.c:809:5: note: in expansion of macro ‘CHECK_OPCODE’
# 409| for (i = 0; i < num_uses; i++) {
# 410| use = xtensa_opcode_funcUnit_use(isa, opcode, i);
# 411|-> stage = use->stage;
# 412| if (stage > max_stage) {
# 413| max_stage = stage;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/target/xtensa/xtensa-semi.c:264:21: warning[deadcode.DeadStores]: Value stored to 'error' is never read
# 262| cpu_physical_memory_unmap(buf, sz, !is_write, io_done);
# 263| } else {
# 264|-> error = true;
# 265| regs[3] = TARGET_EINVAL;
# 266| break;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tcg/tcg.c:258:20: warning[core.NullDereference]: Dereference of null pointer
# 256| static __attribute__((unused)) inline void tcg_out8(TCGContext *s, uint8_t v)
# 257| {
# 258|-> *s->code_ptr++ = v;
# 259| }
# 260|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tcg/tcg.c:2589:13: warning[deadcode.DeadStores]: Value stored to 'nb_cargs' is never read
# 2587| nb_oargs = TCGOP_CALLO(op);
# 2588| nb_iargs = TCGOP_CALLI(op);
# 2589|-> nb_cargs = def->nb_cargs;
# 2590|
# 2591| col += ne_fprintf(f, " %s ", def->name);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tcg/tcg.c:5189:23: warning[deadcode.DeadStores]: Value stored to 'arg_life' during its initialization is never read
# 5187| static bool tcg_reg_alloc_dup2(TCGContext *s, const TCGOp *op)
# 5188| {
# 5189|-> const TCGLifeData arg_life = op->life;
# 5190| TCGTemp *ots, *itsl, *itsh;
# 5191| TCGType vtype = TCGOP_VECL(op) + TCG_TYPE_V64;
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tcg/tcg.c:5191:13: warning[deadcode.DeadStores]: Value stored to 'vtype' during its initialization is never read
# 5189| const TCGLifeData arg_life = op->life;
# 5190| TCGTemp *ots, *itsl, *itsh;
# 5191|-> TCGType vtype = TCGOP_VECL(op) + TCG_TYPE_V64;
# 5192|
# 5193| /* This opcode is only valid for 32-bit hosts, for 64-bit elements. */
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tcg/tcg.c:5928:9: warning[deadcode.DeadStores]: Value stored to 'ofs_slot0' is never read
# 5926| case TCG_TYPE_I128:
# 5927| tcg_debug_assert(TCG_TARGET_REG_BITS == 64);
# 5928|-> ofs_slot0 = TCG_TARGET_CALL_STACK_OFFSET;
# 5929| switch (TCG_TARGET_CALL_RET_I128) {
# 5930| case TCG_CALL_RET_NORMAL:
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/bench/benchmark-crypto-akcipher.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/bench/benchmark-crypto-cipher.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/bench/benchmark-crypto-hash.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/bench/benchmark-crypto-hmac.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c: scope_hint: In function ‘remove_iso’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1545:5: warning[-Wanalyzer-null-argument]: use of NULL ‘name’ where non-null expected
/usr/lib64/glib-2.0/include/glibconfig.h:9: included_from: Included from here.
/usr/include/glib-2.0/glib/gtypes.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib/galloca.h:34: included_from: Included from here.
/usr/include/glib-2.0/glib.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:25: included_from: Included from here.
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1528:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1529:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1529:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1530:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1530:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gmacros.h:1243:31: note: in expansion of macro ‘_G_BOOLEAN_EXPR_IMPL’
/usr/include/glib-2.0/glib/gmacros.h:1244:43: note: in expansion of macro ‘_G_BOOLEAN_EXPR’
/usr/include/glib-2.0/glib/gtestutils.h:276:49: note: in expansion of macro ‘G_LIKELY’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1536:5: note: in expansion of macro ‘g_assert’
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1538:13: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c:1538:13: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ahci-test.c: scope_hint: In function ‘remove_iso’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:122: included_from: Included from here.
/usr/include/unistd.h:858:12: note: argument 1 of ‘unlink’ must be non-null
# 1543| static void remove_iso(int fd, char *name)
# 1544| {
# 1545|-> unlink(name);
# 1546| g_free(name);
# 1547| close(fd);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/bcm2835-dma-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/boot-sector.c:173: warning[uninitvar]: Uninitialized variable: signature
# 171| }
# 172|
# 173|-> g_assert_cmphex(signature, ==, SIGNATURE);
# 174| }
# 175|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/boot-serial-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/cdrom-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/cpu-plug-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/emc141x-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/fdc-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/hd-geo-test.c:355:5: warning[deadcode.DeadStores]: Value stored to 'argc' is never read
# 353| expected_chst.secs);
# 354| cur_ide[0] = &expected_chst;
# 355|-> argc = setup_ide(argc, argv, ARGV_SIZE, 0, opts, backend_small, mbr_chs);
# 356| g_free(opts);
# 357| args = g_strjoinv(" ", argv);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c:850:24: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 848| for (i = 0; i < sizeof(Read10CDB)/2; i++) {
# 849| qpci_io_writew(dev, ide_bar, reg_data,
# 850|-> le16_to_cpu(((uint16_t *)&pkt)[i]));
# 851| }
# 852| }
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c: scope_hint: In function ‘cdrom_pio_impl’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c:925:11: warning[-Wanalyzer-possible-null-argument]: use of possibly-NULL ‘fopen(tmp_path[0], "wb+")’ where non-null expected
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:114: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c:25: included_from: Included from here.
/usr/include/stdio.h:735:15: note: argument 4 of ‘fwrite’ must be non-null
# 923| generate_pattern(pattern, patt_len, ATAPI_BLOCK_SIZE);
# 924| fh = fopen(tmp_path[0], "wb+");
# 925|-> ret = fwrite(pattern, ATAPI_BLOCK_SIZE, patt_blocks, fh);
# 926| g_assert_cmpint(ret, ==, patt_blocks);
# 927| fclose(fh);
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c: scope_hint: In function ‘test_cdrom_dma’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ide-test.c:1026:11: warning[-Wanalyzer-possible-null-argument]: use of possibly-NULL ‘fopen(tmp_path[0], "wb+")’ where non-null expected
/usr/include/stdio.h:735:15: note: argument 4 of ‘fwrite’ must be non-null
# 1024| generate_pattern(pattern, ATAPI_BLOCK_SIZE * 16, ATAPI_BLOCK_SIZE);
# 1025| fh = fopen(tmp_path[0], "wb+");
# 1026|-> ret = fwrite(pattern, ATAPI_BLOCK_SIZE, 16, fh);
# 1027| g_assert_cmpint(ret, ==, 16);
# 1028| fclose(fh);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ipmi-bt-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/ivshmem-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqmp.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqmp.c: scope_hint: In function ‘socket_send_fds’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqmp.c:119:24: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
/usr/include/glib-2.0/glib.h:89: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqmp.c:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqmp.c:113:9: note: in expansion of macro ‘g_assert_cmpuint’
/usr/include/sys/socket.h:33: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/sysemu/os-posix.h:30: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:168: included_from: Included from here.
# 117|
# 118| cmsg = CMSG_FIRSTHDR(&msg);
# 119|-> cmsg->cmsg_len = CMSG_LEN(fdsize);
# 120| cmsg->cmsg_level = SOL_SOCKET;
# 121| cmsg->cmsg_type = SCM_RIGHTS;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/libqos.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph_internal.h:261:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.addr.used_user_addr’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:429:9: note: in expansion of macro ‘qos_printf’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:429:9: note: in expansion of macro ‘qos_printf’
# 259| * Prepends a '#' character in front for not breaking TAP output format.
# 260| */
# 261|-> #define qos_printf(...) printf("# " __VA_ARGS__)
# 262|
# 263| /*
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph_internal.h:261:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.state.num’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:425:9: note: in expansion of macro ‘qos_printf’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:425:9: note: in expansion of macro ‘qos_printf’
# 259| * Prepends a '#' character in front for not breaking TAP output format.
# 260| */
# 261|-> #define qos_printf(...) printf("# " __VA_ARGS__)
# 262|
# 263| /*
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:29: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c: scope_hint: In function ‘chr_read’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph_internal.h:261:25: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.u64’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:417:9: note: in expansion of macro ‘qos_printf’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:417:9: note: in expansion of macro ‘qos_printf’
# 259| * Prepends a '#' character in front for not breaking TAP output format.
# 260| */
# 261|-> #define qos_printf(...) printf("# " __VA_ARGS__)
# 262|
# 263| /*
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qos_external.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qos_external.c:131:19: warning[core.NullDereference]: Access to field 'get_driver' results in a dereference of a null pointer (loaded from variable 'parent')
# 129| switch (qos_graph_edge_get_type(edge)) {
# 130| case QEDGE_PRODUCES:
# 131|-> obj = parent->get_driver(parent, path[current]);
# 132| break;
# 133|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qos_external.c:141:19: warning[core.NullDereference]: Access to field 'get_device' results in a dereference of a null pointer (loaded from variable 'parent')
# 139|
# 140| case QEDGE_CONTAINS:
# 141|-> obj = parent->get_device(parent, path[current]);
# 142| break;
# 143| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/virtio-9p-client.c:149:18: warning[core.NonNullParamChecker]: Null pointer passed to 1st parameter expecting 'nonnull'
# 147| uint16_t v9fs_string_size(const char *string)
# 148| {
# 149|-> size_t len = strlen(string);
# 150|
# 151| g_assert_cmpint(len, <=, UINT16_MAX - 2);
Error: GCC_ANALYZER_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c: scope_hint: In function ‘qtest_socket_server’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c:769:11: warning[-Wanalyzer-fd-use-without-check]: ‘listen’ on possibly invalid file descriptor ‘sock’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c: scope_hint: In function ‘qtest_socket_server’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c: scope_hint: In function ‘qtest_socket_server’
/usr/include/glib-2.0/glib.h:89: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c:17: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c:762:5: note: in expansion of macro ‘g_assert_cmpint’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqtest.c:762:5: note: in expansion of macro ‘g_assert_cmpint’
# 767| ret = RETRY_ON_EINTR(bind(sock, (struct sockaddr *)&addr, sizeof(addr)));
# 768| g_assert_cmpint(ret, !=, -1);
# 769|-> ret = listen(sock, 1);
# 770| g_assert_cmpint(ret, !=, -1);
# 771|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/lsm303dlhc-mag-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/m48t59-test.c:194: error[legacyUninitvar]: Uninitialized variable: datep
# 192| }
# 193|
# 194|-> if (!(tm_cmp(&start, datep) <= 0 && tm_cmp(datep, &end) <= 0)) {
# 195| long date_s, start_s;
# 196| unsigned long diff;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/migration-helpers.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/migration-test.c:2677:5: warning[deadcode.DeadStores]: Value stored to 'percentage' is never read
# 2675|
# 2676| /* Wait for throttling begins */
# 2677|-> percentage = 0;
# 2678| do {
# 2679| percentage = read_migrate_property_int(from, "cpu-throttle-percentage");
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/netdev-socket.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/netdev-socket.c:105:12: warning[unix.Malloc]: Potential leak of memory pointed to by 'sock'
# 103| }
# 104|
# 105|-> return nb;
# 106| }
# 107|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/npcm7xx_gpio-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/numa-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/pca9552-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/pflash-cfi02-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/qmp-cmd-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/qmp-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/qom-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/readconfig-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/stm32l4x5_exti-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/stm32l4x5_gpio-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/tmp105-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/tpm-tis-i2c-test.c:381:9: warning[deadcode.DeadStores]: Value stored to 'access' is never read
# 379| l--;
# 380|
# 381|-> access = tpm_tis_i2c_readb(l, TPM_I2C_REG_ACCESS);
# 382| DPRINTF_ACCESS;
# 383|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/tpm-tis-i2c-test.c:597:5: warning[deadcode.DeadStores]: Value stored to 'access' is never read
# 595| tpm_tis_i2c_writeb(0,
# 596| TPM_I2C_REG_ACCESS, TPM_TIS_ACCESS_ACTIVE_LOCALITY);
# 597|-> access = tpm_tis_i2c_readb(0, TPM_I2C_REG_ACCESS);
# 598| }
# 599|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/tpm-tis-util.c:255:9: warning[deadcode.DeadStores]: Value stored to 'access' is never read
# 253| l--;
# 254|
# 255|-> access = readb(TIS_REG(l, TPM_TIS_REG_ACCESS));
# 256| DPRINTF_ACCESS;
# 257|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/tpm-tis-util.c:450:5: warning[deadcode.DeadStores]: Value stored to 'access' is never read
# 448| /* relinquish use of locality 0 */
# 449| writeb(TIS_REG(0, TPM_TIS_REG_ACCESS), TPM_TIS_ACCESS_ACTIVE_LOCALITY);
# 450|-> access = readb(TIS_REG(0, TPM_TIS_REG_ACCESS));
# 451| }
# 452|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-blk-test.c:50:23: warning[core.CallAndMessage]: 1st function call argument is an uninitialized value
# 48| if (qvirtio_is_big_endian(d) != host_is_big_endian) {
# 49| req->type = bswap32(req->type);
# 50|-> req->ioprio = bswap32(req->ioprio);
# 51| req->sector = bswap64(req->sector);
# 52| }
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:11: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:443:33: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.state.index’
# 441| qemu_chr_fe_write_all(chr, p, VHOST_USER_HDR_SIZE + msg.size);
# 442|
# 443|-> assert(msg.payload.state.index < s->queues * 2);
# 444| s->rings &= ~(0x1ULL << msg.payload.state.index);
# 445| g_cond_broadcast(&s->data_cond);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:486:33: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.state.index’
# 484|
# 485| case VHOST_USER_SET_VRING_BASE:
# 486|-> assert(msg.payload.state.index < s->queues * 2);
# 487| s->rings |= 0x1ULL << msg.payload.state.index;
# 488| g_cond_broadcast(&s->data_cond);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/vhost-user-test.c:506:37: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘msg.payload.state.num’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph_internal.h:261:37: note: in definition of macro ‘qos_printf’
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/libqos/qgraph_internal.h:261:37: note: in definition of macro ‘qos_printf’
# 504| */
# 505| qos_printf("set_vring(%d)=%s\n", msg.payload.state.index,
# 506|-> msg.payload.state.num ? "enabled" : "disabled");
# 507| break;
# 508|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/virtio-net-test.c:212:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 210| len = ntohl(len);
# 211|
# 212|-> ret = recv(sv[0], buffer, len, 0);
# 213| g_assert_cmpint(*proto, ==, htons(ETH_P_RARP));
# 214|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/virtio-scsi-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/qtest/xlnx-versal-trng-test.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/check-block-qdict.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/check-qdict.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/check-qjson.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/check-qnum.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/check-qobject.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/crypto-tls-x509-helpers.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-835):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/thread.h:5: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/block/aio.h:23: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c:14: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c: scope_hint: In function ‘mcs_mutex_unlock’
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c:321:39: warning[-Wanalyzer-infinite-loop]: infinite loop
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c:321:16: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c:321:16: note: in expansion of macro ‘qatomic_read’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/atomic.h:132:21: note: in definition of macro ‘qatomic_read__nocheck’
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-aio-multithread.c:321:16: note: in expansion of macro ‘qatomic_read’
# 319| return;
# 320| }
# 321|-> while (qatomic_read(&nodes[id].next) == -1) {
# 322| /* mcs_mutex_lock did the xchg, but has not updated
# 323| * nodes[prev].next yet.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-char.c:1343:5: warning[deadcode.DeadStores]: Value stored to 'chr' is never read
# 1341| g_assert_null(chr);
# 1342|
# 1343|-> chr = qemu_chr_new("label-null", "null", NULL);
# 1344| chr = qemu_chr_find("label-null");
# 1345| g_assert_nonnull(chr);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-clone-visitor.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-akcipher.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-cipher.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-der.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-hmac.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-ivgen.c:144:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'iv'
# 142| if (!qcrypto_cipher_supports(data->cipheralg,
# 143| QCRYPTO_CIPHER_MODE_ECB)) {
# 144|-> return;
# 145| }
# 146|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-crypto-tlssession.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-cutils.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-iov.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-iov.c:472:5: warning[deadcode.DeadStores]: Value stored to 'old_base' is never read
# 470| iov_random(&iov, &iov_cnt);
# 471| iov_cnt_tmp = iov_cnt;
# 472|-> old_base = iov[iov_cnt - 1].iov_base;
# 473| size = iov[iov_cnt - 1].iov_len;
# 474| ret = iov_discard_back(iov, &iov_cnt_tmp, size);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-iov.c:560:12: warning[core.CallAndMessage]: 2nd function call argument is an uninitialized value
# 558| iov_cnt_tmp = iov_cnt;
# 559| size = iov[iov_cnt - 1].iov_len +
# 560|-> g_test_rand_int_range(1, iov[iov_cnt - 2].iov_len);
# 561| iov_discard_back_undoable(iov, &iov_cnt_tmp, size, &undo);
# 562| iov_discard_undo(&undo);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qapi-util.c:27:5: warning[deadcode.DeadStores]: Value stored to 'ret' is never read
# 25| g_assert_cmpint(ret, ==, -1);
# 26|
# 27|-> ret = qapi_enum_parse(&QType_lookup, "junk", -1, &err);
# 28| error_free_or_abort(&err);
# 29|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qga.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qgraph.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qobject-input-visitor.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qobject-output-visitor.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-qtree.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-visitor-serialization.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/tests/unit/test-vmstate.c:1311:16: warning[unix.Malloc]: Use of memory after it is freed
# 1309| first_item_c2 = QLIST_FIRST(&c2->list);
# 1310| assert(first_item_c2);
# 1311|-> assert(first_item_c1->id == first_item_c2->id);
# 1312| QLIST_REMOVE(first_item_c1, next);
# 1313| QLIST_REMOVE(first_item_c2, next);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/tests/vhost-user-bridge.c: scope_hint: In function ‘vubr_new’
qemu-9.0.0-build/qemu-9.0.0/tests/vhost-user-bridge.c:547:15: warning[-Wanalyzer-possible-null-dereference]: dereference of possibly-NULL ‘dev’
# 545|
# 546| /* Get a UNIX socket. */
# 547|-> dev->sock = socket(AF_UNIX, SOCK_STREAM, 0);
# 548| if (dev->sock == -1) {
# 549| vubr_die("socket");
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:95:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'curses_line'
# 93| }
# 94|
# 95|-> pnoutrefresh(screenpad, py, px, sminy, sminx, smaxy - 1, smaxx - 1);
# 96| refresh();
# 97| }
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c: scope_hint: In function ‘font_setup’
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:578:29: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), "UCS-2")’
# 576| };
# 577|
# 578|-> ucs2_to_nativecharset = iconv_open(local_codeset, "UCS-2");
# 579| if (ucs2_to_nativecharset == (iconv_t) -1) {
# 580| fprintf(stderr, "Could not convert font glyphs from UCS-2: '%s'\n",
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:579:8: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), "UCS-2")’
# 577|
# 578| ucs2_to_nativecharset = iconv_open(local_codeset, "UCS-2");
# 579|-> if (ucs2_to_nativecharset == (iconv_t) -1) {
# 580| fprintf(stderr, "Could not convert font glyphs from UCS-2: '%s'\n",
# 581| strerror(errno));
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:585:29: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open("UCS-2", g_get_codeset())’
# 583| }
# 584|
# 585|-> nativecharset_to_ucs2 = iconv_open("UCS-2", local_codeset);
# 586| if (nativecharset_to_ucs2 == (iconv_t) -1) {
# 587| iconv_close(ucs2_to_nativecharset);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:585:29: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), "UCS-2")’
# 583| }
# 584|
# 585|-> nativecharset_to_ucs2 = iconv_open("UCS-2", local_codeset);
# 586| if (nativecharset_to_ucs2 == (iconv_t) -1) {
# 587| iconv_close(ucs2_to_nativecharset);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:586:8: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open("UCS-2", g_get_codeset())’
# 584|
# 585| nativecharset_to_ucs2 = iconv_open("UCS-2", local_codeset);
# 586|-> if (nativecharset_to_ucs2 == (iconv_t) -1) {
# 587| iconv_close(ucs2_to_nativecharset);
# 588| fprintf(stderr, "Could not convert font glyphs to UCS-2: '%s'\n",
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:593:17: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open("UCS-2", g_get_codeset())’
# 591| }
# 592|
# 593|-> font_conv = iconv_open(local_codeset, font_charset);
# 594| if (font_conv == (iconv_t) -1) {
# 595| iconv_close(ucs2_to_nativecharset);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:593:17: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), "UCS-2")’
# 591| }
# 592|
# 593|-> font_conv = iconv_open(local_codeset, font_charset);
# 594| if (font_conv == (iconv_t) -1) {
# 595| iconv_close(ucs2_to_nativecharset);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:593:17: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), font_charset)’
# 591| }
# 592|
# 593|-> font_conv = iconv_open(local_codeset, font_charset);
# 594| if (font_conv == (iconv_t) -1) {
# 595| iconv_close(ucs2_to_nativecharset);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:594:8: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), font_charset)’
# 592|
# 593| font_conv = iconv_open(local_codeset, font_charset);
# 594|-> if (font_conv == (iconv_t) -1) {
# 595| iconv_close(ucs2_to_nativecharset);
# 596| iconv_close(nativecharset_to_ucs2);
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/ui/curses.c:604:42: warning[-Wanalyzer-malloc-leak]: leak of ‘iconv_open(g_get_codeset(), font_charset)’
# 602| /* Control characters */
# 603| for (i = 0; i <= 0x1F; i++) {
# 604|-> convert_ucs(i, control_characters[i], ucs2_to_nativecharset);
# 605| }
# 606|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c: scope_hint: In function ‘cursor_parse_xpm’
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c:54:34: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ctab[<unknown>]’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/cursor.c:1: included_from: Included from here.
# 52| for (x = 0; x < height; x++, pixel++) {
# 53| idx = xpm[line][x];
# 54|-> c->data[pixel] = ctab[idx];
# 55| }
# 56| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gd_update_cursor’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:194:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vc’
# 192| static void gd_update_cursor(VirtualConsole *vc)
# 193| {
# 194|-> GtkDisplayState *s = vc->s;
# 195| GdkWindow *window;
# 196|
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gd_update_windowsize’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:331:22: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vc’
# 329| void gd_update_windowsize(VirtualConsole *vc)
# 330| {
# 331|-> GtkDisplayState *s = vc->s;
# 332|
# 333| gd_update_geometry_hints(vc);
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gtk_release_modifiers’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:360:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 358| VirtualConsole *vc = gd_vc_find_current(s);
# 359|
# 360|-> if (vc->type != GD_VC_GFX ||
# 361| !qemu_console_is_graphic(vc->gfx.dcl.con)) {
# 362| return;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gd_menu_untabify’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1390:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 1388| VirtualConsole *vc = gd_vc_find_current(s);
# 1389|
# 1390|-> if (vc->type == GD_VC_GFX &&
# 1391| qemu_console_is_graphic(vc->gfx.dcl.con)) {
# 1392| gtk_check_menu_item_set_active(GTK_CHECK_MENU_ITEM(s->grab_item),
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gd_menu_full_screen’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1460:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
/usr/include/glib-2.0/gobject/gobject.h:26: included_from: Included from here.
/usr/include/glib-2.0/gobject/gbinding.h:31: included_from: Included from here.
/usr/include/glib-2.0/glib-object.h:24: included_from: Included from here.
/usr/include/glib-2.0/gio/gioenums.h:30: included_from: Included from here.
/usr/include/glib-2.0/gio/giotypes.h:30: included_from: Included from here.
/usr/include/glib-2.0/gio/gio.h:28: included_from: Included from here.
/usr/include/gtk-3.0/gdk/gdkapplaunchcontext.h:28: included_from: Included from here.
/usr/include/gtk-3.0/gdk/gdk.h:32: included_from: Included from here.
/usr/include/gtk-3.0/gtk/gtk.h:30: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/ui/gtk.h:7: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:43: included_from: Included from here.
/usr/include/glib-2.0/gobject/gtype.h:2656:57: note: in definition of macro ‘_G_TYPE_CIC’
/usr/include/gtk-3.0/gtk/gtknotebook.h:40:45: note: in expansion of macro ‘G_TYPE_CHECK_INSTANCE_CAST’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1458:36: note: in expansion of macro ‘GTK_NOTEBOOK’
# 1458| gtk_notebook_set_show_tabs(GTK_NOTEBOOK(s->notebook), FALSE);
# 1459| gtk_widget_hide(s->menu_bar);
# 1460|-> if (vc->type == GD_VC_GFX) {
# 1461| gtk_widget_set_size_request(vc->gfx.drawing_area, -1, -1);
# 1462| }
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1473:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
/usr/include/glib-2.0/gobject/gtype.h:2656:57: note: in definition of macro ‘_G_TYPE_CIC’
/usr/include/gtk-3.0/gtk/gtkwindow.h:40:42: note: in expansion of macro ‘G_TYPE_CHECK_INSTANCE_CAST’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1466:33: note: in expansion of macro ‘GTK_WINDOW’
# 1471| }
# 1472| s->full_screen = FALSE;
# 1473|-> if (vc->type == GD_VC_GFX) {
# 1474| vc->gfx.scale_x = 1.0;
# 1475| vc->gfx.scale_y = 1.0;
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c: scope_hint: In function ‘gd_grab_keyboard’
qemu-9.0.0-build/qemu-9.0.0/ui/gtk.c:1580:11: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘vc’
# 1578| static void gd_grab_keyboard(VirtualConsole *vc, const char *reason)
# 1579| {
# 1580|-> if (vc->s->kbd_owner) {
# 1581| if (vc->s->kbd_owner == vc) {
# 1582| return;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/input-legacy.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/input.c:279:17: warning[unix.Malloc]: Use of memory after it is freed
# 277| while (!QTAILQ_EMPTY(queue)) {
# 278| item = QTAILQ_FIRST(queue);
# 279|-> switch (item->type) {
# 280| case QEMU_INPUT_QUEUE_DELAY:
# 281| timer_mod(item->timer, qemu_clock_get_ms(QEMU_CLOCK_VIRTUAL)
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/spice-display.c:251:5: warning[unix.Malloc]: Potential leak of memory pointed to by 'dirty_top'
# 249| }
# 250|
# 251|-> memset(&ssd->dirty, 0, sizeof(ssd->dirty));
# 252| }
# 253|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/spice-display.c:431:9: warning[unix.Malloc]: Use of memory after it is freed
# 429| ssd->ds = surface;
# 430| while ((update = QTAILQ_FIRST(&ssd->updates)) != NULL) {
# 431|-> QTAILQ_REMOVE(&ssd->updates, update, next);
# 432| qemu_spice_destroy_update(ssd, update);
# 433| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/vdagent.c:347:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'msg'
# 345| msg->size += sizeof(uint32_t);
# 346| } else if (info->selection != QEMU_CLIPBOARD_SELECTION_CLIPBOARD) {
# 347|-> return;
# 348| }
# 349|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/vdagent.c:387:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'msg'
# 385| msg->size += sizeof(uint32_t);
# 386| } else if (info->selection != QEMU_CLIPBOARD_SELECTION_CLIPBOARD) {
# 387|-> return;
# 388| }
# 389|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/vdagent.c:410:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'msg'
# 408| msg->size += sizeof(uint32_t);
# 409| } else if (info->selection != QEMU_CLIPBOARD_SELECTION_CLIPBOARD) {
# 410|-> return;
# 411| }
# 412|
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/ui/vdagent.c:501:9: warning[unix.Malloc]: Potential leak of memory pointed to by 'msg'
# 499|
# 500| if (type == VD_AGENT_CLIPBOARD_NONE) {
# 501|-> return;
# 502| }
# 503|
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-auth-sasl.c: scope_hint: In function ‘start_auth_sasl’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-auth-sasl.c:678:19: warning[-Wanalyzer-null-argument]: use of NULL ‘mechlist’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-auth-sasl.c:25: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-auth-sasl.c:677:25: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-auth-sasl.c: scope_hint: In function ‘start_auth_sasl’
<built-in>: note: argument 1 of ‘__builtin_strlen’ must be non-null
# 676|
# 677| vs->sasl.mechlist = g_strdup(mechlist);
# 678|-> mechlistlen = strlen(mechlist);
# 679| vnc_write_u32(vs, mechlistlen);
# 680| vnc_write(vs, mechlist, mechlistlen);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c: scope_hint: In function ‘tight_fill_palette16’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:400:9: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘ci’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-enc-tight.c:417:1: note: in expansion of macro ‘DEFINE_FILL_PALETTE_FUNCTION’
# 398| palette_put(palette, c0); \
# 399| palette_put(palette, c1); \
# 400|-> palette_put(palette, ci); \
# 401| \
# 402| for (i++; i < count; i++) { \
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-jobs.c:29: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-jobs.c: scope_hint: In function ‘vnc_worker_thread_loop’
qemu-9.0.0-build/qemu-9.0.0/ui/vnc-jobs.c:258:15: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
# 256| }
# 257|
# 258|-> assert(job->vs->magic == VNC_MAGIC);
# 259|
# 260| vnc_lock_output(job->vs);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/aio-posix.c:400:9: warning[core.NullDereference]: Dereference of null pointer (loaded from field 'le_prev')
# 398|
# 399| while ((node = QLIST_FIRST(ready_list))) {
# 400|-> QLIST_REMOVE(node, node_ready);
# 401| progress = aio_dispatch_handler(ctx, node) || progress;
# 402| }
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/cpuinfo-i386.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/util/cutils.c: scope_hint: In function ‘qemu_strtod_finite’
qemu-9.0.0-build/qemu-9.0.0/util/cutils.c:765:16: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘tmp’
# 763| } else if (endptr) {
# 764| *endptr = tmp;
# 765|-> } else if (*tmp) {
# 766| ret = -EINVAL;
# 767| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/cutils.c:1155:17: warning[deadcode.DeadStores]: Value stored to 'bindir' during its initialization is never read
# 1153| {
# 1154| size_t prefix_len = strlen(CONFIG_PREFIX);
# 1155|-> const char *bindir = CONFIG_BINDIR;
# 1156| GString *result;
# 1157| int len_dir, len_bindir;
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/drm.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/envlist.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/envlist.c:46:9: warning[unix.Malloc]: Use of memory after it is freed
# 44| while (envlist->el_entries.lh_first != NULL) {
# 45| entry = envlist->el_entries.lh_first;
# 46|-> QLIST_REMOVE(entry, ev_link);
# 47|
# 48| g_free((char *)entry->ev_var);
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/envlist.c:162:5: warning[unix.Malloc]: Use of memory after it is freed
# 160| entry = g_malloc(sizeof(*entry));
# 161| entry->ev_var = g_strdup(env);
# 162|-> QLIST_INSERT_HEAD(&envlist->el_entries, entry, ev_link);
# 163|
# 164| return (0);
Error: GCC_ANALYZER_WARNING (CWE-457):
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c: scope_hint: In function ‘hbitmap_iter_skip_words’
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:117:23: warning[-Wanalyzer-use-of-uninitialized-value]: use of uninitialized value ‘*hbi.cur[i]’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:12: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c: scope_hint: In function ‘hbitmap_iter_skip_words’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:397:31: note: in definition of macro ‘MIN_INTERNAL’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:35:20: note: in expansion of macro ‘xglue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/compiler.h:41:30: note: in expansion of macro ‘glue’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:402:28: note: in expansion of macro ‘MAKE_IDENTFIER’
qemu-9.0.0-build/qemu-9.0.0/util/hbitmap.c:281:11: note: in expansion of macro ‘MIN’
# 115| i--;
# 116| pos >>= BITS_PER_LEVEL;
# 117|-> cur = hbi->cur[i] & hb->levels[i][pos];
# 118| } while (cur == 0);
# 119|
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/hexdump.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/iov.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c: scope_hint: In function ‘keyval_parse_one’
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c:270:13: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘val_end’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:130: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c:92: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c: scope_hint: In function ‘keyval_parse_one’
# 268| val = g_string_new_len(params, val_end - params);
# 269| s = val_end;
# 270|-> if (*s == ',') {
# 271| s++;
# 272| }
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/keyval.c:270:13: warning[core.NullDereference]: Dereference of null pointer (loaded from variable 's')
# 268| val = g_string_new_len(params, val_end - params);
# 269| s = val_end;
# 270|-> if (*s == ',') {
# 271| s++;
# 272| }
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/util/log.c: scope_hint: In function ‘qemu_log_trylock_with_err’
qemu-9.0.0-build/qemu-9.0.0/util/log.c:99:23: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(g_strdup_printf(global_filename, gettid()), "w")’
qemu-9.0.0-build/qemu-9.0.0/util/log.c: scope_hint: In function ‘qemu_log_trylock_with_err’
# 97| g_autofree char *filename
# 98| = g_strdup_printf(global_filename, log_thread_id());
# 99|-> logfile = fopen(filename, "w");
# 100| if (!logfile) {
# 101| error_setg_errno(errp, errno,
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/util/log.c:99:23: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(g_strdup_printf(global_filename, gettid()), "w")’
qemu-9.0.0-build/qemu-9.0.0/util/log.c: scope_hint: In function ‘qemu_log_trylock_with_err’
# 97| g_autofree char *filename
# 98| = g_strdup_printf(global_filename, log_thread_id());
# 99|-> logfile = fopen(filename, "w");
# 100| if (!logfile) {
# 101| error_setg_errno(errp, errno,
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/log.c:279:5: warning[deadcode.DeadStores]: Value stored to 'need_to_open_file' is never read
# 277|
# 278| daemonized = is_daemonized();
# 279|-> need_to_open_file = false;
# 280| if (!daemonized) {
# 281| /*
Error: GCC_ANALYZER_WARNING (CWE-775):
qemu-9.0.0-build/qemu-9.0.0/util/log.c: scope_hint: In function ‘qemu_set_log_internal’
qemu-9.0.0-build/qemu-9.0.0/util/log.c:320:27: warning[-Wanalyzer-file-leak]: leak of FILE ‘fopen(filename, "w")’
# 318| qemu_log_unlock(logfile);
# 319| } else {
# 320|-> logfile = fopen(filename, "w");
# 321| if (!logfile) {
# 322| error_setg_errno(errp, errno, "Error opening logfile %s",
Error: GCC_ANALYZER_WARNING (CWE-401):
qemu-9.0.0-build/qemu-9.0.0/util/log.c:320:27: warning[-Wanalyzer-malloc-leak]: leak of ‘fopen(filename, "w")’
# 318| qemu_log_unlock(logfile);
# 319| } else {
# 320|-> logfile = fopen(filename, "w");
# 321| if (!logfile) {
# 322| error_setg_errno(errp, errno, "Error opening logfile %s",
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/oslib-posix.c:484:36: warning[core.DivideZero]: Division by zero
# 482|
# 483| context->threads = g_new0(MemsetThread, context->num_threads);
# 484|-> numpages_per_thread = numpages / context->num_threads;
# 485| leftover = numpages % context->num_threads;
# 486| for (i = 0; i < context->num_threads; i++) {
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c:98:12: warning[core.NullDereference]: Access to field 'next' results in a dereference of a null pointer (loaded from variable 'cur')
# 96|
# 97| cur = head;
# 98|-> while (cur->next) {
# 99| pre_entry = head;
# 100| while (pre_entry != cur->next) {
Error: GCC_ANALYZER_WARNING (CWE-688):
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c: scope_hint: In function ‘qmp_query_command_line_options’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c:232:18: warning[-Wanalyzer-null-argument]: use of NULL ‘*vm_config_groups[i_13].name’ where non-null expected
/usr/include/glib-2.0/glib/gstring.h:37: included_from: Included from here.
/usr/include/glib-2.0/glib/giochannel.h:36: included_from: Included from here.
/usr/include/glib-2.0/glib.h:56: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/glib-compat.h:32: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:161: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c:1: included_from: Included from here.
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c:231:28: note: in expansion of macro ‘g_strdup’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-config.c: scope_hint: In function ‘qmp_query_command_line_options’
qemu-9.0.0-build/qemu-9.0.0/include/qemu/osdep.h:116: included_from: Included from here.
/usr/include/string.h:156:12: note: argument 2 of ‘strcmp’ must be non-null
# 230| info = g_malloc0(sizeof(*info));
# 231| info->option = g_strdup(vm_config_groups[i]->name);
# 232|-> if (!strcmp("drive", vm_config_groups[i]->name)) {
# 233| info->parameters = get_drive_infolist();
# 234| } else {
Error: GCC_ANALYZER_WARNING (CWE-476):
qemu-9.0.0-build/qemu-9.0.0/util/qemu-coroutine-lock.c: scope_hint: In function ‘qemu_co_mutex_lock_slowpath’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-coroutine-lock.c:221:20: warning[-Wanalyzer-null-dereference]: dereference of NULL ‘0’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-coroutine-lock.c:176:12: note: in expansion of macro ‘QSLIST_EMPTY’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-coroutine-lock.c: scope_hint: In function ‘qemu_co_mutex_lock_slowpath’
# 219| */
# 220| CoWaitRecord *to_wake = pop_waiter(mutex);
# 221|-> Coroutine *co = to_wake->co;
# 222| if (co == self) {
# 223| /* We got the lock ourselves! */
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/qemu-option.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/qemu-option.c:683:9: warning[unix.Malloc]: Use of memory after it is freed
# 681| if (opt == NULL)
# 682| break;
# 683|-> qemu_opt_del(opt);
# 684| }
# 685| QTAILQ_REMOVE(&opts->list->head, opts, next);
Error: GCC_ANALYZER_WARNING (CWE-465):
qemu-9.0.0-build/qemu-9.0.0/util/qemu-sockets.c: scope_hint: In function ‘unix_listen_saddr’
qemu-9.0.0-build/qemu-9.0.0/util/qemu-sockets.c:930:8: warning[-Wanalyzer-deref-before-check]: check of ‘pathbuf’ for NULL after already dereferencing it
# 928| }
# 929|
# 930|-> if (pathbuf != NULL) {
# 931| /*
# 932| * This dummy fd usage silences the mktemp() insecure warning.
Error: CLANG_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/qht.c:738:5: warning[core.NullDereference]: Array access (via field 'pointers') results in a null pointer dereference
# 736| qht_debug_assert(!(to == from && i == j));
# 737| qht_debug_assert(to->pointers[i]);
# 738|-> qht_debug_assert(from->pointers[j]);
# 739|
# 740| qatomic_set(&to->hashes[i], from->hashes[j]);
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/readline.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/selfmap.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/unicode.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.
Error: CPPCHECK_WARNING:
qemu-9.0.0-build/qemu-9.0.0/util/uri.c: information[normalCheckLevelMaxBranches]: Limiting analysis of branches. Use --check-level=exhaustive to analyze all branches.