FYI: clang static analyzer page has moved to
http://scan.freebsd.your.org/freebsd-head/
Erik Cederstrand
erik at cederstrand.dk
Wed Jan 5 14:11:53 UTC 2011
Den 05/01/2011 kl. 14.56 skrev Erik Cederstrand:
> Ignoring contrib code for the moment, I decided to look at usr.sbin.pw from 2011-01-05. There's one report (http://scan.freebsd.your.org/freebsd-head/usr.sbin.pw/2011-01-05-amd64/report-KkilQ3.html#EndPath) which turns out to be a false positive:
>
> * Step 6 calls cmdhelp() on line 168;
> * cmdhelp() ends with "exit(EXIT_FAILURE);" on line 432 which I assume is exit(3) from libc
> * The analyzer doesn't know that this function never returns and continues to flag a null dereference in step 8
The same is true of err(), verr(), errc(), verrc(), errx(), and verrx() which is also causing false positive reports. They ultimately call exit(3).
Erik
More information about the freebsd-current
mailing list