Coverity-updates archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
New Defects reported by Coverity Scan for NetBSD-amd64-user
Hi,
Please find the latest report on new defect(s) introduced to NetBSD-amd64-user found with Coverity Scan.
1201 new defect(s) introduced to NetBSD-amd64-user found with Coverity Scan.
43 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan.
New defect(s) Reported-by: Coverity Scan
Showing 20 of 1201 defect(s)
** CID 1428433: Memory - corruptions (OVERRUN)
________________________________________________________________________________________________________
*** CID 1428433: Memory - corruptions (OVERRUN)
/external/bsd/tcpdump/dist/print-rx.c: 702 in rx_cache_insert()
696 rx_cache_next = 0;
697
698 rxent->callnum = EXTRACT_32BITS(&rxh->callNumber);
699 UNALIGNED_MEMCPY(&rxent->client, &ip->ip_src, sizeof(uint32_t));
700 UNALIGNED_MEMCPY(&rxent->server, &ip->ip_dst, sizeof(uint32_t));
701 rxent->dport = dport;
>>> CID 1428433: Memory - corruptions (OVERRUN)
>>> Overrunning array "rxh->serviceId" of 2 bytes by passing it to a function which accesses it at byte offset 3.
702 rxent->serviceId = EXTRACT_32BITS(&rxh->serviceId);
703 rxent->opcode = EXTRACT_32BITS(bp + sizeof(struct rx_header));
704 }
705
706 /*
707 * Lookup an entry in the cache. Also taken from print-nfs.c
** CID 1315729: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/pass5.c: 112 in pass5()
/sbin/fsck_lfs/pass5.c: 116 in pass5()
________________________________________________________________________________________________________
*** CID 1315729: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/pass5.c: 112 in pass5()
106 }
107 if (su->su_flags & SEGUSE_DIRTY) {
108 bb += lfs_btofsb(fs, su->su_nbytes +
109 su->su_nsums * lfs_sb_getsumsize(fs));
110 ubb += lfs_btofsb(fs, su->su_nbytes +
111 su->su_nsums * lfs_sb_getsumsize(fs) +
>>> CID 1315729: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "su->su_ninos * lfs_sb_getibsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
112 su->su_ninos * lfs_sb_getibsize(fs));
113 dmeta += lfs_btofsb(fs,
114 lfs_sb_getsumsize(fs) * su->su_nsums);
115 dmeta += lfs_btofsb(fs,
116 lfs_sb_getibsize(fs) * su->su_ninos);
117 } else {
/sbin/fsck_lfs/pass5.c: 116 in pass5()
110 ubb += lfs_btofsb(fs, su->su_nbytes +
111 su->su_nsums * lfs_sb_getsumsize(fs) +
112 su->su_ninos * lfs_sb_getibsize(fs));
113 dmeta += lfs_btofsb(fs,
114 lfs_sb_getsumsize(fs) * su->su_nsums);
115 dmeta += lfs_btofsb(fs,
>>> CID 1315729: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "lfs_sb_getibsize(fs) * su->su_ninos" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
116 lfs_sb_getibsize(fs) * su->su_ninos);
117 } else {
118 nclean++;
119 avail += lfs_segtod(fs, 1);
120 if (su->su_flags & SEGUSE_SUPERBLOCK)
121 avail -= lfs_btofsb(fs, LFS_SBPAD);
** CID 1315728: (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 923 in make_lfs()
/sbin/newfs_lfs/make_lfs.c: 925 in make_lfs()
/sbin/newfs_lfs/make_lfs.c: 928 in make_lfs()
________________________________________________________________________________________________________
*** CID 1315728: (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 923 in make_lfs()
917 lfs_sb_setavail(fs, 0);
918 bb = ubb = dmeta = 0;
919 for (i = 0; i < lfs_sb_getnseg(fs); i++) {
920 LFS_SEGENTRY(segp, fs, i, bp);
921 if (segp->su_flags & SEGUSE_DIRTY) {
922 bb += lfs_btofsb(fs, segp->su_nbytes +
>>> CID 1315728: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "segp->su_nsums * lfs_sb_getsumsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
923 segp->su_nsums * lfs_sb_getsumsize(fs));
924 ubb += lfs_btofsb(fs, segp->su_nbytes +
925 segp->su_nsums * lfs_sb_getsumsize(fs) +
926 segp->su_ninos * lfs_sb_getibsize(fs));
927 dmeta += lfs_btofsb(fs,
928 lfs_sb_getsumsize(fs) * segp->su_nsums);
/sbin/newfs_lfs/make_lfs.c: 925 in make_lfs()
919 for (i = 0; i < lfs_sb_getnseg(fs); i++) {
920 LFS_SEGENTRY(segp, fs, i, bp);
921 if (segp->su_flags & SEGUSE_DIRTY) {
922 bb += lfs_btofsb(fs, segp->su_nbytes +
923 segp->su_nsums * lfs_sb_getsumsize(fs));
924 ubb += lfs_btofsb(fs, segp->su_nbytes +
>>> CID 1315728: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "segp->su_nsums * lfs_sb_getsumsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
925 segp->su_nsums * lfs_sb_getsumsize(fs) +
926 segp->su_ninos * lfs_sb_getibsize(fs));
927 dmeta += lfs_btofsb(fs,
928 lfs_sb_getsumsize(fs) * segp->su_nsums);
929 dmeta += lfs_btofsb(fs,
930 lfs_sb_getibsize(fs) * segp->su_ninos);
/sbin/newfs_lfs/make_lfs.c: 928 in make_lfs()
922 bb += lfs_btofsb(fs, segp->su_nbytes +
923 segp->su_nsums * lfs_sb_getsumsize(fs));
924 ubb += lfs_btofsb(fs, segp->su_nbytes +
925 segp->su_nsums * lfs_sb_getsumsize(fs) +
926 segp->su_ninos * lfs_sb_getibsize(fs));
927 dmeta += lfs_btofsb(fs,
>>> CID 1315728: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "lfs_sb_getsumsize(fs) * segp->su_nsums" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
928 lfs_sb_getsumsize(fs) * segp->su_nsums);
929 dmeta += lfs_btofsb(fs,
930 lfs_sb_getibsize(fs) * segp->su_ninos);
931 } else {
932 lfs_sb_addavail(fs, lfs_segtod(fs, 1));
933 if (segp->su_flags & SEGUSE_SUPERBLOCK)
** CID 1315727: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 670 in make_lfs()
________________________________________________________________________________________________________
*** CID 1315727: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 670 in make_lfs()
664 * and segment usage table, and half a block per segment that can't
665 * be written due to fragmentation.
666 */
667 lfs_sb_setdsize(fs,
668 lfs_segtod(fs, lfs_sb_getnseg(fs) - lfs_sb_getminfreeseg(fs)));
669 lfs_sb_setbfree(fs, lfs_sb_getdsize(fs));
>>> CID 1315727: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "lfs_sb_getnseg(fs) / 2U << lfs_sb_getblktodb(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
670 lfs_sb_subbfree(fs, LFS_DBTOFSB(fs, ((lfs_sb_getnseg(fs) / 2) <<
671 lfs_sb_getblktodb(fs))));
672
673 lfs_sb_setsegtabsz(fs, SEGTABSIZE_SU(fs));
674 lfs_sb_setcleansz(fs, CLEANSIZE_SU(fs));
675 if (time(&stamp) == -1)
** CID 1315726: (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 926 in make_lfs()
/sbin/newfs_lfs/make_lfs.c: 930 in make_lfs()
________________________________________________________________________________________________________
*** CID 1315726: (OVERFLOW_BEFORE_WIDEN)
/sbin/newfs_lfs/make_lfs.c: 926 in make_lfs()
920 LFS_SEGENTRY(segp, fs, i, bp);
921 if (segp->su_flags & SEGUSE_DIRTY) {
922 bb += lfs_btofsb(fs, segp->su_nbytes +
923 segp->su_nsums * lfs_sb_getsumsize(fs));
924 ubb += lfs_btofsb(fs, segp->su_nbytes +
925 segp->su_nsums * lfs_sb_getsumsize(fs) +
>>> CID 1315726: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "segp->su_ninos * lfs_sb_getibsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
926 segp->su_ninos * lfs_sb_getibsize(fs));
927 dmeta += lfs_btofsb(fs,
928 lfs_sb_getsumsize(fs) * segp->su_nsums);
929 dmeta += lfs_btofsb(fs,
930 lfs_sb_getibsize(fs) * segp->su_ninos);
931 } else {
/sbin/newfs_lfs/make_lfs.c: 930 in make_lfs()
924 ubb += lfs_btofsb(fs, segp->su_nbytes +
925 segp->su_nsums * lfs_sb_getsumsize(fs) +
926 segp->su_ninos * lfs_sb_getibsize(fs));
927 dmeta += lfs_btofsb(fs,
928 lfs_sb_getsumsize(fs) * segp->su_nsums);
929 dmeta += lfs_btofsb(fs,
>>> CID 1315726: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "lfs_sb_getibsize(fs) * segp->su_ninos" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
930 lfs_sb_getibsize(fs) * segp->su_ninos);
931 } else {
932 lfs_sb_addavail(fs, lfs_segtod(fs, 1));
933 if (segp->su_flags & SEGUSE_SUPERBLOCK)
934 lfs_sb_subavail(fs, lfs_btofsb(fs, LFS_SBPAD));
935 if (i == 0 && lfs_sb_getversion(fs) > 1 &&
** CID 1315722: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/segwrite.c: 821 in lfs_writeseg()
/sbin/fsck_lfs/segwrite.c: 867 in lfs_writeseg()
________________________________________________________________________________________________________
*** CID 1315722: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/segwrite.c: 821 in lfs_writeseg()
815 if (lfs_sb_getversion(fs) == 1)
816 sup->su_olastmod = write_time;
817 else
818 sup->su_lastmod = write_time;
819 sup->su_ninos += ninos;
820 ++sup->su_nsums;
>>> CID 1315722: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "ninos * lfs_sb_getibsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
821 lfs_sb_adddmeta(fs, (lfs_btofsb(fs, lfs_sb_getsumsize(fs)) + lfs_btofsb(fs, ninos *
822 lfs_sb_getibsize(fs))));
823 lfs_sb_subavail(fs, lfs_btofsb(fs, lfs_sb_getsumsize(fs)));
824
825 do_again = !(bp->b_flags & B_GATHERED);
826 LFS_WRITESEGENTRY(sup, fs, sp->seg_number, bp); /* Ifile */
/sbin/fsck_lfs/segwrite.c: 867 in lfs_writeseg()
861 lfs_ss_setdatasum(fs, ssp, cksum(datap, (nblocks - 1) * el_size));
862 sumstart = lfs_ss_getsumstart(fs);
863 lfs_ss_setsumsum(fs, ssp,
864 cksum((char *)ssp + sumstart, lfs_sb_getsumsize(fs) - sumstart));
865 free(datap);
866 datap = dp = NULL;
>>> CID 1315722: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "ninos * lfs_sb_getibsize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
867 lfs_sb_subbfree(fs, (lfs_btofsb(fs, ninos * lfs_sb_getibsize(fs)) +
868 lfs_btofsb(fs, lfs_sb_getsumsize(fs))));
869
870 if (devvp == NULL)
871 errx(EXIT_FAILURE, "devvp is NULL");
872 for (bpp = sp->bpp, i = nblocks; i; bpp++, i--) {
** CID 1315713: Error handling issues (CHECKED_RETURN)
/sys/external/bsd/compiler_rt/dist/lib/profile/InstrProfilingUtil.c: 32 in __llvm_profile_recursive_mkdir()
________________________________________________________________________________________________________
*** CID 1315713: Error handling issues (CHECKED_RETURN)
/sys/external/bsd/compiler_rt/dist/lib/profile/InstrProfilingUtil.c: 32 in __llvm_profile_recursive_mkdir()
26 for (i = 1; path[i] != '\0'; ++i) {
27 if (path[i] != '/') continue;
28 path[i] = '\0';
29 #ifdef _WIN32
30 _mkdir(path);
31 #else
>>> CID 1315713: Error handling issues (CHECKED_RETURN)
>>> Calling "mkdir(path, 493U)" without checking return value. This library function may fail and return an error code.
32 mkdir(path, 0755); /* Some of these will fail, ignore it. */
33 #endif
34 path[i] = '/';
35 }
** CID 1314949: Error handling issues (CHECKED_RETURN)
/external/public-domain/sqlite/dist/sqlite3.c: 61004 in pageReinit()
________________________________________________________________________________________________________
*** CID 1314949: Error handling issues (CHECKED_RETURN)
/external/public-domain/sqlite/dist/sqlite3.c: 61004 in pageReinit()
60998 /* pPage might not be a btree page; it might be an overflow page
60999 ** or ptrmap page or a free page. In those cases, the following
61000 ** call to btreeInitPage() will likely return SQLITE_CORRUPT.
61001 ** But no harm is done by this. And it is very important that
61002 ** btreeInitPage() be called on every btree page so we make
61003 ** the call for every page that comes in for re-initing. */
>>> CID 1314949: Error handling issues (CHECKED_RETURN)
>>> Calling "btreeInitPage" without checking return value (as is done elsewhere 5 out of 6 times).
61004 btreeInitPage(pPage);
61005 }
61006 }
61007 }
61008
61009 /*
** CID 1314931: Error handling issues (CHECKED_RETURN)
/usr/xsrc/external/mit/libXmu/dist/src/ClientWin.c: 55 in XmuClientWindow()
________________________________________________________________________________________________________
*** CID 1314931: Error handling issues (CHECKED_RETURN)
/usr/xsrc/external/mit/libXmu/dist/src/ClientWin.c: 55 in XmuClientWindow()
49 unsigned char *data = NULL;
50 Window inf;
51
52 WM_STATE = XInternAtom(dpy, "WM_STATE", True);
53 if (!WM_STATE)
54 return win;
>>> CID 1314931: Error handling issues (CHECKED_RETURN)
>>> Calling "XGetWindowProperty" without checking return value (as is done elsewhere 57 out of 64 times).
55 XGetWindowProperty(dpy, win, WM_STATE, 0, 0, False, AnyPropertyType,
56 &type, &format, &nitems, &after, &data);
57 if (data)
58 XFree(data);
59 if (type)
60 return win;
** CID 1314930: Error handling issues (CHECKED_RETURN)
/usr/xsrc/external/mit/xwd/dist/multiVis.c: 1076 in GetXVisualInfo()
________________________________________________________________________________________________________
*** CID 1314930: Error handling issues (CHECKED_RETURN)
/usr/xsrc/external/mit/xwd/dist/multiVis.c: 1076 in GetXVisualInfo()
1070 */
1071 bytesAfter = 0;
1072 numLongs = sizeof(OverlayVisualPropertyRec) / sizeof(long);
1073 do
1074 {
1075 numLongs += bytesAfter * sizeof(long);
>>> CID 1314930: Error handling issues (CHECKED_RETURN)
>>> Calling "XGetWindowProperty" without checking return value (as is done elsewhere 57 out of 64 times).
1076 XGetWindowProperty(display, RootWindow(display, screen),
1077 overlayVisualsAtom, 0, numLongs, False,
1078 overlayVisualsAtom, &actualType, &actualFormat,
1079 &numLongs, &bytesAfter, (unsigned char**) pOverlayVisuals);
1080 } while (bytesAfter > 0);
1081
** CID 1314741: (FORWARD_NULL)
/usr/obj/amd64-x86_64/src/usr.sbin/wsmoused.amd64-x86_64/config_lex.c: 1325 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/racoon.amd64-x86_64/cftoken.c: 4179 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/isdn/isdnd.amd64-x86_64/rc_scan.c: 2124 in yyrestart()
/usr/obj/amd64-x86_64/src/sbin/setkey.amd64-x86_64/token.c: 2381 in yyrestart()
/usr/obj/amd64-x86_64/src/sbin/veriexecctl.amd64-x86_64/veriexecctl_conf.c: 1313 in yyrestart()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/veriexecctl/veriexecctl_conf.c: 1313 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/config.amd64-x86_64/scan.c: 2288 in yyrestart()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/cgdconfig/cgdlex.c: 1419 in yyrestart()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/setkey/token.c: 2381 in yyrestart()
/usr/obj/amd64-x86_64/src/games/atc.amd64-x86_64/lex.c: 1310 in yyrestart()
/usr/obj/amd64-x86_64/src/sbin/cgdconfig.amd64-x86_64/cgdlex.c: 1419 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/pf/pfs.amd64-x86_64/token.c: 1390 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/fgen.amd64-x86_64/fgen.c: 1908 in yyrestart()
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/twm.amd64-x86_64/lex.c: 1400 in yyrestart()
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/xgc.amd64-x86_64/lex.c: 1865 in yyrestart()
/usr/obj/amd64-x86_64/src/sbin/wsconsctl.amd64-x86_64/map_scan.c: 1325 in yyrestart()
/usr/obj/amd64-x86_64/src/tests/lib/libcurses/director.amd64-x86_64/testlang_conf.c: 1815 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/menuc.amd64-x86_64/scan.c: 1608 in yyrestart()
/usr/obj/amd64-x86_64/src/external/cddl/osnet/lib/libdtrace.amd64-x86_64/dt_lex.c: 3107 in yyrestart()
/usr/obj/amd64-x86_64/src/external/bsd/bc/bin.amd64-x86_64/scan.c: 1959 in yyrestart()
/usr/obj/amd64-x86_64/src/external/gpl2/dtc/usr.bin/dtc.amd64-x86_64/dtc-lexer.c: 1670 in yyrestart()
/usr/obj/amd64-x86_64/src/external/bsd/ipf/bin/ipsend.amd64-x86_64/iplang_l.c: 1424 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/m4.amd64-x86_64/tokenizer.c: 1266 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/mkcsmapper.amd64-x86_64/lex.c: 1421 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/mkesdb.amd64-x86_64/lex.c: 1350 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/mklocale.amd64-x86_64/lex.c: 1660 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/xlint/lint1.amd64-x86_64/scan.c: 1667 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.bin/msgc.amd64-x86_64/msgscan.c: 1378 in yyrestart()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/wsconsctl/map_scan.c: 1325 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/autofs.amd64-x86_64/token.c: 1241 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/envstat.amd64-x86_64/config_lex.c: 1336 in yyrestart()
/usr/obj/amd64-x86_64/src/usr.sbin/npf/npfctl.amd64-x86_64/npf_scan.c: 1918 in yyrestart()
________________________________________________________________________________________________________
*** CID 1314741: (FORWARD_NULL)
/usr/obj/amd64-x86_64/src/usr.sbin/wsmoused.amd64-x86_64/config_lex.c: 1325 in yyrestart()
1319 * @note This function does not reset the start condition to @c INITIAL .
1320 */
1321 void yyrestart (FILE * input_file )
1322 {
1323
1324 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1325 yyensure_buffer_stack ();
1326 YY_CURRENT_BUFFER_LVALUE =
1327 yy_create_buffer( yyin, YY_BUF_SIZE );
1328 }
1329
1330 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/racoon.amd64-x86_64/cftoken.c: 4179 in yyrestart()
4173 * @note This function does not reset the start condition to @c INITIAL .
4174 */
4175 void yyrestart (FILE * input_file )
4176 {
4177
4178 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
4179 yyensure_buffer_stack ();
4180 YY_CURRENT_BUFFER_LVALUE =
4181 yy_create_buffer( yyin, YY_BUF_SIZE );
4182 }
4183
4184 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/isdn/isdnd.amd64-x86_64/rc_scan.c: 2124 in yyrestart()
2118 * @note This function does not reset the start condition to @c INITIAL .
2119 */
2120 void yyrestart (FILE * input_file )
2121 {
2122
2123 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
2124 yyensure_buffer_stack ();
2125 YY_CURRENT_BUFFER_LVALUE =
2126 yy_create_buffer( yyin, YY_BUF_SIZE );
2127 }
2128
2129 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/sbin/setkey.amd64-x86_64/token.c: 2381 in yyrestart()
2375 * @note This function does not reset the start condition to @c INITIAL .
2376 */
2377 void yyrestart (FILE * input_file )
2378 {
2379
2380 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
2381 yyensure_buffer_stack ();
2382 YY_CURRENT_BUFFER_LVALUE =
2383 yy_create_buffer( yyin, YY_BUF_SIZE );
2384 }
2385
2386 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/sbin/veriexecctl.amd64-x86_64/veriexecctl_conf.c: 1313 in yyrestart()
1307 * @note This function does not reset the start condition to @c INITIAL .
1308 */
1309 void yyrestart (FILE * input_file )
1310 {
1311
1312 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1313 yyensure_buffer_stack ();
1314 YY_CURRENT_BUFFER_LVALUE =
1315 yy_create_buffer( yyin, YY_BUF_SIZE );
1316 }
1317
1318 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/veriexecctl/veriexecctl_conf.c: 1313 in yyrestart()
1307 * @note This function does not reset the start condition to @c INITIAL .
1308 */
1309 void yyrestart (FILE * input_file )
1310 {
1311
1312 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1313 yyensure_buffer_stack ();
1314 YY_CURRENT_BUFFER_LVALUE =
1315 yy_create_buffer( yyin, YY_BUF_SIZE );
1316 }
1317
1318 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/config.amd64-x86_64/scan.c: 2288 in yyrestart()
2282 * @note This function does not reset the start condition to @c INITIAL .
2283 */
2284 void yyrestart (FILE * input_file )
2285 {
2286
2287 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
2288 yyensure_buffer_stack ();
2289 YY_CURRENT_BUFFER_LVALUE =
2290 yy_create_buffer( yyin, YY_BUF_SIZE );
2291 }
2292
2293 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/cgdconfig/cgdlex.c: 1419 in yyrestart()
1413 * @note This function does not reset the start condition to @c INITIAL .
1414 */
1415 void yyrestart (FILE * input_file )
1416 {
1417
1418 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1419 yyensure_buffer_stack ();
1420 YY_CURRENT_BUFFER_LVALUE =
1421 yy_create_buffer( yyin, YY_BUF_SIZE );
1422 }
1423
1424 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/setkey/token.c: 2381 in yyrestart()
2375 * @note This function does not reset the start condition to @c INITIAL .
2376 */
2377 void yyrestart (FILE * input_file )
2378 {
2379
2380 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
2381 yyensure_buffer_stack ();
2382 YY_CURRENT_BUFFER_LVALUE =
2383 yy_create_buffer( yyin, YY_BUF_SIZE );
2384 }
2385
2386 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/games/atc.amd64-x86_64/lex.c: 1310 in yyrestart()
1304 * @note This function does not reset the start condition to @c INITIAL .
1305 */
1306 void yyrestart (FILE * input_file )
1307 {
1308
1309 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1310 yyensure_buffer_stack ();
1311 YY_CURRENT_BUFFER_LVALUE =
1312 yy_create_buffer( yyin, YY_BUF_SIZE );
1313 }
1314
1315 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/sbin/cgdconfig.amd64-x86_64/cgdlex.c: 1419 in yyrestart()
1413 * @note This function does not reset the start condition to @c INITIAL .
1414 */
1415 void yyrestart (FILE * input_file )
1416 {
1417
1418 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1419 yyensure_buffer_stack ();
1420 YY_CURRENT_BUFFER_LVALUE =
1421 yy_create_buffer( yyin, YY_BUF_SIZE );
1422 }
1423
1424 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/pf/pfs.amd64-x86_64/token.c: 1390 in yyrestart()
1384 * @note This function does not reset the start condition to @c INITIAL .
1385 */
1386 void yyrestart (FILE * input_file )
1387 {
1388
1389 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1390 yyensure_buffer_stack ();
1391 YY_CURRENT_BUFFER_LVALUE =
1392 yy_create_buffer( yyin, YY_BUF_SIZE );
1393 }
1394
1395 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/fgen.amd64-x86_64/fgen.c: 1908 in yyrestart()
1902 * @note This function does not reset the start condition to @c INITIAL .
1903 */
1904 void yyrestart (FILE * input_file )
1905 {
1906
1907 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1908 yyensure_buffer_stack ();
1909 YY_CURRENT_BUFFER_LVALUE =
1910 yy_create_buffer( yyin, YY_BUF_SIZE );
1911 }
1912
1913 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/twm.amd64-x86_64/lex.c: 1400 in yyrestart()
1394 * @note This function does not reset the start condition to @c INITIAL .
1395 */
1396 void yyrestart (FILE * input_file )
1397 {
1398
1399 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1400 yyensure_buffer_stack ();
1401 YY_CURRENT_BUFFER_LVALUE =
1402 yy_create_buffer( yyin, YY_BUF_SIZE );
1403 }
1404
1405 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/xgc.amd64-x86_64/lex.c: 1865 in yyrestart()
1859 * @note This function does not reset the start condition to @c INITIAL .
1860 */
1861 void yyrestart (FILE * input_file )
1862 {
1863
1864 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1865 yyensure_buffer_stack ();
1866 YY_CURRENT_BUFFER_LVALUE =
1867 yy_create_buffer( yyin, YY_BUF_SIZE );
1868 }
1869
1870 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/sbin/wsconsctl.amd64-x86_64/map_scan.c: 1325 in yyrestart()
1319 * @note This function does not reset the start condition to @c INITIAL .
1320 */
1321 void yyrestart (FILE * input_file )
1322 {
1323
1324 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1325 yyensure_buffer_stack ();
1326 YY_CURRENT_BUFFER_LVALUE =
1327 yy_create_buffer( yyin, YY_BUF_SIZE );
1328 }
1329
1330 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/tests/lib/libcurses/director.amd64-x86_64/testlang_conf.c: 1815 in yyrestart()
1809 * @note This function does not reset the start condition to @c INITIAL .
1810 */
1811 void yyrestart (FILE * input_file )
1812 {
1813
1814 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1815 yyensure_buffer_stack ();
1816 YY_CURRENT_BUFFER_LVALUE =
1817 yy_create_buffer( yyin, YY_BUF_SIZE );
1818 }
1819
1820 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/menuc.amd64-x86_64/scan.c: 1608 in yyrestart()
1602 * @note This function does not reset the start condition to @c INITIAL .
1603 */
1604 void yyrestart (FILE * input_file )
1605 {
1606
1607 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1608 yyensure_buffer_stack ();
1609 YY_CURRENT_BUFFER_LVALUE =
1610 yy_create_buffer( yyin, YY_BUF_SIZE );
1611 }
1612
1613 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/cddl/osnet/lib/libdtrace.amd64-x86_64/dt_lex.c: 3107 in yyrestart()
3101 * @note This function does not reset the start condition to @c INITIAL .
3102 */
3103 void yyrestart (FILE * input_file )
3104 {
3105
3106 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
3107 yyensure_buffer_stack ();
3108 YY_CURRENT_BUFFER_LVALUE =
3109 yy_create_buffer( yyin, YY_BUF_SIZE );
3110 }
3111
3112 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/bsd/bc/bin.amd64-x86_64/scan.c: 1959 in yyrestart()
1953 * @note This function does not reset the start condition to @c INITIAL .
1954 */
1955 void yyrestart (FILE * input_file )
1956 {
1957
1958 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1959 yyensure_buffer_stack ();
1960 YY_CURRENT_BUFFER_LVALUE =
1961 yy_create_buffer( yyin, YY_BUF_SIZE );
1962 }
1963
1964 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/gpl2/dtc/usr.bin/dtc.amd64-x86_64/dtc-lexer.c: 1670 in yyrestart()
1664 * @note This function does not reset the start condition to @c INITIAL .
1665 */
1666 void yyrestart (FILE * input_file )
1667 {
1668
1669 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1670 yyensure_buffer_stack ();
1671 YY_CURRENT_BUFFER_LVALUE =
1672 yy_create_buffer( yyin, YY_BUF_SIZE );
1673 }
1674
1675 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/external/bsd/ipf/bin/ipsend.amd64-x86_64/iplang_l.c: 1424 in yyrestart()
1418 * @note This function does not reset the start condition to @c INITIAL .
1419 */
1420 void yyrestart (FILE * input_file )
1421 {
1422
1423 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1424 yyensure_buffer_stack ();
1425 YY_CURRENT_BUFFER_LVALUE =
1426 yy_create_buffer( yyin, YY_BUF_SIZE );
1427 }
1428
1429 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/m4.amd64-x86_64/tokenizer.c: 1266 in yyrestart()
1260 * @note This function does not reset the start condition to @c INITIAL .
1261 */
1262 void yyrestart (FILE * input_file )
1263 {
1264
1265 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1266 yyensure_buffer_stack ();
1267 YY_CURRENT_BUFFER_LVALUE =
1268 yy_create_buffer( yyin, YY_BUF_SIZE );
1269 }
1270
1271 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/mkcsmapper.amd64-x86_64/lex.c: 1421 in yyrestart()
1415 * @note This function does not reset the start condition to @c INITIAL .
1416 */
1417 void yyrestart (FILE * input_file )
1418 {
1419
1420 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1421 yyensure_buffer_stack ();
1422 YY_CURRENT_BUFFER_LVALUE =
1423 yy_create_buffer( yyin, YY_BUF_SIZE );
1424 }
1425
1426 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/mkesdb.amd64-x86_64/lex.c: 1350 in yyrestart()
1344 * @note This function does not reset the start condition to @c INITIAL .
1345 */
1346 void yyrestart (FILE * input_file )
1347 {
1348
1349 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1350 yyensure_buffer_stack ();
1351 YY_CURRENT_BUFFER_LVALUE =
1352 yy_create_buffer( yyin, YY_BUF_SIZE );
1353 }
1354
1355 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/mklocale.amd64-x86_64/lex.c: 1660 in yyrestart()
1654 * @note This function does not reset the start condition to @c INITIAL .
1655 */
1656 void yyrestart (FILE * input_file )
1657 {
1658
1659 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1660 yyensure_buffer_stack ();
1661 YY_CURRENT_BUFFER_LVALUE =
1662 yy_create_buffer( yyin, YY_BUF_SIZE );
1663 }
1664
1665 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/xlint/lint1.amd64-x86_64/scan.c: 1667 in yyrestart()
1661 * @note This function does not reset the start condition to @c INITIAL .
1662 */
1663 void yyrestart (FILE * input_file )
1664 {
1665
1666 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1667 yyensure_buffer_stack ();
1668 YY_CURRENT_BUFFER_LVALUE =
1669 yy_create_buffer( yyin, YY_BUF_SIZE );
1670 }
1671
1672 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.bin/msgc.amd64-x86_64/msgscan.c: 1378 in yyrestart()
1372 * @note This function does not reset the start condition to @c INITIAL .
1373 */
1374 void yyrestart (FILE * input_file )
1375 {
1376
1377 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1378 yyensure_buffer_stack ();
1379 YY_CURRENT_BUFFER_LVALUE =
1380 yy_create_buffer( yyin, YY_BUF_SIZE );
1381 }
1382
1383 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/wsconsctl/map_scan.c: 1325 in yyrestart()
1319 * @note This function does not reset the start condition to @c INITIAL .
1320 */
1321 void yyrestart (FILE * input_file )
1322 {
1323
1324 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1325 yyensure_buffer_stack ();
1326 YY_CURRENT_BUFFER_LVALUE =
1327 yy_create_buffer( yyin, YY_BUF_SIZE );
1328 }
1329
1330 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/autofs.amd64-x86_64/token.c: 1241 in yyrestart()
1235 * @note This function does not reset the start condition to @c INITIAL .
1236 */
1237 void yyrestart (FILE * input_file )
1238 {
1239
1240 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1241 yyensure_buffer_stack ();
1242 YY_CURRENT_BUFFER_LVALUE =
1243 yy_create_buffer( yyin, YY_BUF_SIZE );
1244 }
1245
1246 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/envstat.amd64-x86_64/config_lex.c: 1336 in yyrestart()
1330 * @note This function does not reset the start condition to @c INITIAL .
1331 */
1332 void yyrestart (FILE * input_file )
1333 {
1334
1335 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1336 yyensure_buffer_stack ();
1337 YY_CURRENT_BUFFER_LVALUE =
1338 yy_create_buffer( yyin, YY_BUF_SIZE );
1339 }
1340
1341 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
/usr/obj/amd64-x86_64/src/usr.sbin/npf/npfctl.amd64-x86_64/npf_scan.c: 1918 in yyrestart()
1912 * @note This function does not reset the start condition to @c INITIAL .
1913 */
1914 void yyrestart (FILE * input_file )
1915 {
1916
1917 if ( ! YY_CURRENT_BUFFER ){
>>> CID 1314741: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1918 yyensure_buffer_stack ();
1919 YY_CURRENT_BUFFER_LVALUE =
1920 yy_create_buffer( yyin, YY_BUF_SIZE );
1921 }
1922
1923 yy_init_buffer( YY_CURRENT_BUFFER, input_file );
** CID 1314740: (FORWARD_NULL)
/usr/obj/amd64-x86_64/src/usr.sbin/pf/pfs.amd64-x86_64/token.c: 756 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/menuc.amd64-x86_64/scan.c: 804 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/config.amd64-x86_64/scan.c: 1231 in yylex()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/setkey/token.c: 1311 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/fgen.amd64-x86_64/fgen.c: 1010 in yylex()
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/twm.amd64-x86_64/lex.c: 765 in yylex()
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/xgc.amd64-x86_64/lex.c: 926 in yylex()
/usr/obj/amd64-x86_64/src/external/gpl2/dtc/usr.bin/dtc.amd64-x86_64/dtc-lexer.c: 866 in yylex()
/usr/obj/amd64-x86_64/src/external/bsd/bc/bin.amd64-x86_64/scan.c: 1098 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/xlint/lint1.amd64-x86_64/scan.c: 848 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/mklocale.amd64-x86_64/lex.c: 841 in yylex()
/usr/obj/amd64-x86_64/src/tests/lib/libcurses/director.amd64-x86_64/testlang_conf.c: 942 in yylex()
/usr/obj/amd64-x86_64/src/usr.sbin/npf/npfctl.amd64-x86_64/npf_scan.c: 973 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/mkesdb.amd64-x86_64/lex.c: 766 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/m4.amd64-x86_64/tokenizer.c: 708 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/msgc.amd64-x86_64/msgscan.c: 730 in yylex()
/usr/obj/amd64-x86_64/src/usr.sbin/isdn/isdnd.amd64-x86_64/rc_scan.c: 1117 in yylex()
/usr/obj/amd64-x86_64/src/usr.bin/mkcsmapper.amd64-x86_64/lex.c: 797 in yylex()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/wsconsctl/map_scan.c: 718 in yylex()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/veriexecctl/veriexecctl_conf.c: 745 in yylex()
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/cgdconfig/cgdlex.c: 807 in yylex()
/usr/obj/amd64-x86_64/src/sbin/setkey.amd64-x86_64/token.c: 1311 in yylex()
/usr/obj/amd64-x86_64/src/sbin/cgdconfig.amd64-x86_64/cgdlex.c: 807 in yylex()
/usr/obj/amd64-x86_64/src/sbin/wsconsctl.amd64-x86_64/map_scan.c: 718 in yylex()
/usr/obj/amd64-x86_64/src/usr.sbin/autofs.amd64-x86_64/token.c: 710 in yylex()
/usr/obj/amd64-x86_64/src/usr.sbin/wsmoused.amd64-x86_64/config_lex.c: 767 in yylex()
/usr/obj/amd64-x86_64/src/games/atc.amd64-x86_64/lex.c: 746 in yylex()
/usr/obj/amd64-x86_64/src/sbin/veriexecctl.amd64-x86_64/veriexecctl_conf.c: 745 in yylex()
/usr/obj/amd64-x86_64/src/usr.sbin/envstat.amd64-x86_64/config_lex.c: 773 in yylex()
/usr/obj/amd64-x86_64/src/external/bsd/ipf/bin/ipsend.amd64-x86_64/iplang_l.c: 838 in yylex()
________________________________________________________________________________________________________
*** CID 1314740: (FORWARD_NULL)
/usr/obj/amd64-x86_64/src/usr.sbin/pf/pfs.amd64-x86_64/token.c: 756 in yylex()
750 yyin = stdin;
751
752 if ( ! yyout )
753 yyout = stdout;
754
755 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
756 yyensure_buffer_stack ();
757 YY_CURRENT_BUFFER_LVALUE =
758 yy_create_buffer( yyin, YY_BUF_SIZE );
759 }
760
761 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/menuc.amd64-x86_64/scan.c: 804 in yylex()
798 yyin = stdin;
799
800 if ( ! yyout )
801 yyout = stdout;
802
803 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
804 yyensure_buffer_stack ();
805 YY_CURRENT_BUFFER_LVALUE =
806 yy_create_buffer( yyin, YY_BUF_SIZE );
807 }
808
809 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/config.amd64-x86_64/scan.c: 1231 in yylex()
1225 yyin = stdin;
1226
1227 if ( ! yyout )
1228 yyout = stdout;
1229
1230 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1231 yyensure_buffer_stack ();
1232 YY_CURRENT_BUFFER_LVALUE =
1233 yy_create_buffer( yyin, YY_BUF_SIZE );
1234 }
1235
1236 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/setkey/token.c: 1311 in yylex()
1305 yyin = stdin;
1306
1307 if ( ! yyout )
1308 yyout = stdout;
1309
1310 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1311 yyensure_buffer_stack ();
1312 YY_CURRENT_BUFFER_LVALUE =
1313 yy_create_buffer( yyin, YY_BUF_SIZE );
1314 }
1315
1316 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/fgen.amd64-x86_64/fgen.c: 1010 in yylex()
1004 yyin = stdin;
1005
1006 if ( ! yyout )
1007 yyout = stdout;
1008
1009 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1010 yyensure_buffer_stack ();
1011 YY_CURRENT_BUFFER_LVALUE =
1012 yy_create_buffer( yyin, YY_BUF_SIZE );
1013 }
1014
1015 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/twm.amd64-x86_64/lex.c: 765 in yylex()
759 yyin = stdin;
760
761 if ( ! yyout )
762 yyout = stdout;
763
764 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
765 yyensure_buffer_stack ();
766 YY_CURRENT_BUFFER_LVALUE =
767 yy_create_buffer( yyin, YY_BUF_SIZE );
768 }
769
770 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/external/mit/xorg/bin/xgc.amd64-x86_64/lex.c: 926 in yylex()
920 yyin = stdin;
921
922 if ( ! yyout )
923 yyout = stdout;
924
925 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
926 yyensure_buffer_stack ();
927 YY_CURRENT_BUFFER_LVALUE =
928 yy_create_buffer( yyin, YY_BUF_SIZE );
929 }
930
931 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/external/gpl2/dtc/usr.bin/dtc.amd64-x86_64/dtc-lexer.c: 866 in yylex()
860 yyin = stdin;
861
862 if ( ! yyout )
863 yyout = stdout;
864
865 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
866 yyensure_buffer_stack ();
867 YY_CURRENT_BUFFER_LVALUE =
868 yy_create_buffer( yyin, YY_BUF_SIZE );
869 }
870
871 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/external/bsd/bc/bin.amd64-x86_64/scan.c: 1098 in yylex()
1092 yyin = stdin;
1093
1094 if ( ! yyout )
1095 yyout = stdout;
1096
1097 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1098 yyensure_buffer_stack ();
1099 YY_CURRENT_BUFFER_LVALUE =
1100 yy_create_buffer( yyin, YY_BUF_SIZE );
1101 }
1102
1103 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/xlint/lint1.amd64-x86_64/scan.c: 848 in yylex()
842 yyin = stdin;
843
844 if ( ! yyout )
845 yyout = stdout;
846
847 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
848 yyensure_buffer_stack ();
849 YY_CURRENT_BUFFER_LVALUE =
850 yy_create_buffer( yyin, YY_BUF_SIZE );
851 }
852
853 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/mklocale.amd64-x86_64/lex.c: 841 in yylex()
835 yyin = stdin;
836
837 if ( ! yyout )
838 yyout = stdout;
839
840 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
841 yyensure_buffer_stack ();
842 YY_CURRENT_BUFFER_LVALUE =
843 yy_create_buffer( yyin, YY_BUF_SIZE );
844 }
845
846 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/tests/lib/libcurses/director.amd64-x86_64/testlang_conf.c: 942 in yylex()
936 yyin = stdin;
937
938 if ( ! yyout )
939 yyout = stdout;
940
941 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
942 yyensure_buffer_stack ();
943 YY_CURRENT_BUFFER_LVALUE =
944 yy_create_buffer( yyin, YY_BUF_SIZE );
945 }
946
947 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.sbin/npf/npfctl.amd64-x86_64/npf_scan.c: 973 in yylex()
967 yyin = stdin;
968
969 if ( ! yyout )
970 yyout = stdout;
971
972 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
973 yyensure_buffer_stack ();
974 YY_CURRENT_BUFFER_LVALUE =
975 yy_create_buffer( yyin, YY_BUF_SIZE );
976 }
977
978 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/mkesdb.amd64-x86_64/lex.c: 766 in yylex()
760 yyin = stdin;
761
762 if ( ! yyout )
763 yyout = stdout;
764
765 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
766 yyensure_buffer_stack ();
767 YY_CURRENT_BUFFER_LVALUE =
768 yy_create_buffer( yyin, YY_BUF_SIZE );
769 }
770
771 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/m4.amd64-x86_64/tokenizer.c: 708 in yylex()
702 yyin = stdin;
703
704 if ( ! yyout )
705 yyout = stdout;
706
707 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
708 yyensure_buffer_stack ();
709 YY_CURRENT_BUFFER_LVALUE =
710 yy_create_buffer( yyin, YY_BUF_SIZE );
711 }
712
713 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/msgc.amd64-x86_64/msgscan.c: 730 in yylex()
724 yyin = stdin;
725
726 if ( ! yyout )
727 yyout = stdout;
728
729 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
730 yyensure_buffer_stack ();
731 YY_CURRENT_BUFFER_LVALUE =
732 yy_create_buffer( yyin, YY_BUF_SIZE );
733 }
734
735 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.sbin/isdn/isdnd.amd64-x86_64/rc_scan.c: 1117 in yylex()
1111 yyin = stdin;
1112
1113 if ( ! yyout )
1114 yyout = stdout;
1115
1116 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1117 yyensure_buffer_stack ();
1118 YY_CURRENT_BUFFER_LVALUE =
1119 yy_create_buffer( yyin, YY_BUF_SIZE );
1120 }
1121
1122 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.bin/mkcsmapper.amd64-x86_64/lex.c: 797 in yylex()
791 yyin = stdin;
792
793 if ( ! yyout )
794 yyout = stdout;
795
796 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
797 yyensure_buffer_stack ();
798 YY_CURRENT_BUFFER_LVALUE =
799 yy_create_buffer( yyin, YY_BUF_SIZE );
800 }
801
802 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/wsconsctl/map_scan.c: 718 in yylex()
712 yyin = stdin;
713
714 if ( ! yyout )
715 yyout = stdout;
716
717 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
718 yyensure_buffer_stack ();
719 YY_CURRENT_BUFFER_LVALUE =
720 yy_create_buffer( yyin, YY_BUF_SIZE );
721 }
722
723 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/veriexecctl/veriexecctl_conf.c: 745 in yylex()
739 yyin = stdin;
740
741 if ( ! yyout )
742 yyout = stdout;
743
744 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
745 yyensure_buffer_stack ();
746 YY_CURRENT_BUFFER_LVALUE =
747 yy_create_buffer( yyin, YY_BUF_SIZE );
748 }
749
750 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/rescue.amd64-x86_64/cgdconfig/cgdlex.c: 807 in yylex()
801 yyin = stdin;
802
803 if ( ! yyout )
804 yyout = stdout;
805
806 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
807 yyensure_buffer_stack ();
808 YY_CURRENT_BUFFER_LVALUE =
809 yy_create_buffer( yyin, YY_BUF_SIZE );
810 }
811
812 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/sbin/setkey.amd64-x86_64/token.c: 1311 in yylex()
1305 yyin = stdin;
1306
1307 if ( ! yyout )
1308 yyout = stdout;
1309
1310 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
1311 yyensure_buffer_stack ();
1312 YY_CURRENT_BUFFER_LVALUE =
1313 yy_create_buffer( yyin, YY_BUF_SIZE );
1314 }
1315
1316 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/sbin/cgdconfig.amd64-x86_64/cgdlex.c: 807 in yylex()
801 yyin = stdin;
802
803 if ( ! yyout )
804 yyout = stdout;
805
806 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
807 yyensure_buffer_stack ();
808 YY_CURRENT_BUFFER_LVALUE =
809 yy_create_buffer( yyin, YY_BUF_SIZE );
810 }
811
812 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/sbin/wsconsctl.amd64-x86_64/map_scan.c: 718 in yylex()
712 yyin = stdin;
713
714 if ( ! yyout )
715 yyout = stdout;
716
717 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
718 yyensure_buffer_stack ();
719 YY_CURRENT_BUFFER_LVALUE =
720 yy_create_buffer( yyin, YY_BUF_SIZE );
721 }
722
723 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.sbin/autofs.amd64-x86_64/token.c: 710 in yylex()
704 yyin = stdin;
705
706 if ( ! yyout )
707 yyout = stdout;
708
709 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
710 yyensure_buffer_stack ();
711 YY_CURRENT_BUFFER_LVALUE =
712 yy_create_buffer( yyin, YY_BUF_SIZE );
713 }
714
715 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.sbin/wsmoused.amd64-x86_64/config_lex.c: 767 in yylex()
761 yyin = stdin;
762
763 if ( ! yyout )
764 yyout = stdout;
765
766 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
767 yyensure_buffer_stack ();
768 YY_CURRENT_BUFFER_LVALUE =
769 yy_create_buffer( yyin, YY_BUF_SIZE );
770 }
771
772 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/games/atc.amd64-x86_64/lex.c: 746 in yylex()
740 yyin = stdin;
741
742 if ( ! yyout )
743 yyout = stdout;
744
745 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
746 yyensure_buffer_stack ();
747 YY_CURRENT_BUFFER_LVALUE =
748 yy_create_buffer( yyin, YY_BUF_SIZE );
749 }
750
751 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/sbin/veriexecctl.amd64-x86_64/veriexecctl_conf.c: 745 in yylex()
739 yyin = stdin;
740
741 if ( ! yyout )
742 yyout = stdout;
743
744 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
745 yyensure_buffer_stack ();
746 YY_CURRENT_BUFFER_LVALUE =
747 yy_create_buffer( yyin, YY_BUF_SIZE );
748 }
749
750 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/usr.sbin/envstat.amd64-x86_64/config_lex.c: 773 in yylex()
767 yyin = stdin;
768
769 if ( ! yyout )
770 yyout = stdout;
771
772 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
773 yyensure_buffer_stack ();
774 YY_CURRENT_BUFFER_LVALUE =
775 yy_create_buffer( yyin, YY_BUF_SIZE );
776 }
777
778 yy_load_buffer_state( );
/usr/obj/amd64-x86_64/src/external/bsd/ipf/bin/ipsend.amd64-x86_64/iplang_l.c: 838 in yylex()
832 yyin = stdin;
833
834 if ( ! yyout )
835 yyout = stdout;
836
837 if ( ! YY_CURRENT_BUFFER ) {
>>> CID 1314740: (FORWARD_NULL)
>>> Dereferencing null pointer "yy_buffer_stack".
838 yyensure_buffer_stack ();
839 YY_CURRENT_BUFFER_LVALUE =
840 yy_create_buffer( yyin, YY_BUF_SIZE );
841 }
842
843 yy_load_buffer_state( );
** CID 1314738: Control flow issues (UNREACHABLE)
/usr/xsrc/external/mit/xev/dist/xev.c: 1081 in main()
________________________________________________________________________________________________________
*** CID 1314738: Control flow issues (UNREACHABLE)
/usr/xsrc/external/mit/xev/dist/xev.c: 1081 in main()
1075 case 'v': /* -rv */
1076 reverse = True;
1077 continue;
1078 default:
1079 goto unrecognized;
1080 }
>>> CID 1314738: Control flow issues (UNREACHABLE)
>>> This code cannot be reached: "continue;".
1081 continue;
1082 case 's': /* -s */
1083 attr.save_under = True;
1084 mask |= CWSaveUnder;
1085 continue;
1086 case 'e': /* -event */
** CID 1314735: Insecure data handling (TAINTED_SCALAR)
/lib/libc/stdio/makebuf.c: 95 in __senvbuf()
________________________________________________________________________________________________________
*** CID 1314735: Insecure data handling (TAINTED_SCALAR)
/lib/libc/stdio/makebuf.c: 95 in __senvbuf()
89 case 'F':
90 evp++;
91 *couldbetty = 0;
92 break;
93 }
94
>>> CID 1314735: Insecure data handling (TAINTED_SCALAR)
>>> Using tainted variable "(unsigned char)*evp" as an index to pointer "_ctype_tab_ + 1".
95 if (!isdigit((unsigned char)*evp))
96 return flags;
97
98 s = strtoi(evp, NULL, 0, 0, 1024 * 1024, &e);
99 if (e != 0)
100 return flags;
** CID 1314730: Incorrect expression (SIZEOF_MISMATCH)
/usr/xsrc/external/mit/libdrm/dist/xf86drmMode.c: 510 in _drmModeGetConnector()
________________________________________________________________________________________________________
*** CID 1314730: Incorrect expression (SIZEOF_MISMATCH)
/usr/xsrc/external/mit/libdrm/dist/xf86drmMode.c: 510 in _drmModeGetConnector()
504 counts = conn;
505
506 if (conn.count_props) {
507 conn.props_ptr = VOID2U64(drmMalloc(conn.count_props*sizeof(uint32_t)));
508 if (!conn.props_ptr)
509 goto err_allocs;
>>> CID 1314730: Incorrect expression (SIZEOF_MISMATCH)
>>> Passing argument "conn.count_props * 8UL /* sizeof (__uint64_t) */" to function "drmMalloc" and then casting the return value to "__u64" is suspicious.
510 conn.prop_values_ptr = VOID2U64(drmMalloc(conn.count_props*sizeof(uint64_t)));
511 if (!conn.prop_values_ptr)
512 goto err_allocs;
513 }
514
515 if (conn.count_modes) {
** CID 1314728: (RESOURCE_LEAK)
/usr/xsrc/external/mit/setxkbmap/dist/setxkbmap.c: 931 in applyRules()
/usr/xsrc/external/mit/setxkbmap/dist/setxkbmap.c: 931 in applyRules()
________________________________________________________________________________________________________
*** CID 1314728: (RESOURCE_LEAK)
/usr/xsrc/external/mit/setxkbmap/dist/setxkbmap.c: 931 in applyRules()
925 }
926 }
927 else if (verbose > 6)
928 {
929 MSG("No rules variables specified. Rules file ignored\n");
930 }
>>> CID 1314728: (RESOURCE_LEAK)
>>> Variable "rules" going out of scope leaks the storage it points to.
931 return True;
932 }
933
934 /* Primitive sanity check - filter out 'map names' (inside parenthesis) */
935 /* that can confuse xkbcomp parser */
936 static Bool
/usr/xsrc/external/mit/setxkbmap/dist/setxkbmap.c: 931 in applyRules()
925 }
926 }
927 else if (verbose > 6)
928 {
929 MSG("No rules variables specified. Rules file ignored\n");
930 }
>>> CID 1314728: (RESOURCE_LEAK)
>>> Variable "rules" going out of scope leaks the storage it points to.
931 return True;
932 }
933
934 /* Primitive sanity check - filter out 'map names' (inside parenthesis) */
935 /* that can confuse xkbcomp parser */
936 static Bool
** CID 1314721: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/setup.c: 375 in setup()
/sbin/fsck_lfs/setup.c: 379 in setup()
________________________________________________________________________________________________________
*** CID 1314721: (OVERFLOW_BEFORE_WIDEN)
/sbin/fsck_lfs/setup.c: 375 in setup()
369 if (preen)
370 printf(" (FIXED)\n");
371 if (preen || reply("FIX") == 1) {
372 sbdirty();
373 }
374 }
>>> CID 1314721: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "1U << lfs_sb_getfbshift(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
375 if (lfs_sb_getfbmask(fs) != (1U << lfs_sb_getfbshift(fs)) - 1) {
376 pwarn("INCORRECT FBMASK=0x%jx IN SUPERBLOCK (SHOULD BE 0x%x)",
377 (uintmax_t)lfs_sb_getfbmask(fs),
378 (1U << lfs_sb_getfbshift(fs)) - 1);
379 lfs_sb_setfbmask(fs, (1U << lfs_sb_getfbshift(fs)) - 1);
380 if (preen)
/sbin/fsck_lfs/setup.c: 379 in setup()
373 }
374 }
375 if (lfs_sb_getfbmask(fs) != (1U << lfs_sb_getfbshift(fs)) - 1) {
376 pwarn("INCORRECT FBMASK=0x%jx IN SUPERBLOCK (SHOULD BE 0x%x)",
377 (uintmax_t)lfs_sb_getfbmask(fs),
378 (1U << lfs_sb_getfbshift(fs)) - 1);
>>> CID 1314721: (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "1U << lfs_sb_getfbshift(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__uint64_t" (64 bits, unsigned).
379 lfs_sb_setfbmask(fs, (1U << lfs_sb_getfbshift(fs)) - 1);
380 if (preen)
381 printf(" (FIXED)\n");
382 if (preen || reply("FIX") == 1) {
383 sbdirty();
384 }
** CID 1314720: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1140 in clean_fs()
________________________________________________________________________________________________________
*** CID 1314720: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1140 in clean_fs()
1134 lfs_sb_getfsmnt(fs), goal, cip->clean, npos);
1135 totbytes = 0;
1136 for (i = 0; i < lfs_sb_getnseg(fs) && totbytes < goal; i++) {
1137 if (fs->clfs_segtabp[i]->priority == 0)
1138 break;
1139 /* Upper bound on number of segments at once */
>>> CID 1314720: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "ngood * lfs_sb_getssize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__off_t" (64 bits, signed).
1140 if (ngood * lfs_sb_getssize(fs) > 4 * goal)
1141 break;
1142 sn = (fs->clfs_segtabp[i] - fs->clfs_segtab);
1143 dlog("%s: add seg %d prio %" PRIu64
1144 " containing %ld bytes",
1145 lfs_sb_getfsmnt(fs), sn, fs->clfs_segtabp[i]->priority,
** CID 1314719: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1124 in clean_fs()
________________________________________________________________________________________________________
*** CID 1314719: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1124 in clean_fs()
1118 /* Load some segments' blocks into bip */
1119 bic = 0;
1120 fs->clfs_nactive = 0;
1121 ngood = 0;
1122 if (use_bytes) {
1123 /* Set attainable goal */
>>> CID 1314719: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "lfs_sb_getssize(fs) * atatime" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__off_t" (64 bits, signed).
1124 goal = lfs_sb_getssize(fs) * atatime;
1125 if (goal > (cip->clean - 1) * lfs_sb_getssize(fs) / 2)
1126 goal = MAX((cip->clean - 1) * lfs_sb_getssize(fs),
1127 lfs_sb_getssize(fs)) / 2;
1128
1129 dlog("%s: cleaning with goal %" PRId64
** CID 1314718: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1125 in clean_fs()
________________________________________________________________________________________________________
*** CID 1314718: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
/libexec/lfs_cleanerd/lfs_cleanerd.c: 1125 in clean_fs()
1119 bic = 0;
1120 fs->clfs_nactive = 0;
1121 ngood = 0;
1122 if (use_bytes) {
1123 /* Set attainable goal */
1124 goal = lfs_sb_getssize(fs) * atatime;
>>> CID 1314718: Integer handling issues (OVERFLOW_BEFORE_WIDEN)
>>> Potentially overflowing expression "(cip->clean - 1U) * lfs_sb_getssize(fs)" with type "unsigned int" (32 bits, unsigned) is evaluated using 32-bit arithmetic, and then used in a context that expects an expression of type "__off_t" (64 bits, signed).
1125 if (goal > (cip->clean - 1) * lfs_sb_getssize(fs) / 2)
1126 goal = MAX((cip->clean - 1) * lfs_sb_getssize(fs),
1127 lfs_sb_getssize(fs)) / 2;
1128
1129 dlog("%s: cleaning with goal %" PRId64
1130 " bytes (%d segs clean, %d cleanable)",
________________________________________________________________________________________________________
To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRb2JZfDAOAZcqzsy8LMBKBjWas0CuiLQxeHDPm0bvVkx3qGSbylcqhUWgyuH34f4u8-3D_XWm3CUIFU8ffmjzuNhQ8cIHoQgXzXkm61Fmjr59D05UFC4M4z5KqdqPQ-2B1uTevwOnJiMUfC7fgNB9olx-2FY8H7HPv2C8NlMQiADoC3OFdOdVuAgoU3cDqJ6l9tl7KS5ba26S7VHqHpbNaU1AwozTuOy6EAAAkEGqry-2B3Ng8u-2BcmLH7N-2F7ln7v0wmPDrRCCQ8oqh07kdvFLiNwAK0M97T7TIxjyjCm9NrxqX1vaBBBpVw-3D
To manage Coverity Scan email notifications for "coverity-updates%netbsd.org@localhost", click https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V05UPxvVjWch-2Bd2MGckcRbVDbis712qZDP-2FA8y06Nq4m7U7Yoel-2F6MYPxol7ToiLwYIjoNbVQOCAwEeTNJofEDwTlN0JRhKMyijhpnAObR-2FlLVG-2Fr3EBKWgiICNdX1HPA6Ws0-2F1wHBf2tG9AnMDB8g-3D_XWm3CUIFU8ffmjzuNhQ8cIHoQgXzXkm61Fmjr59D05UFC4M4z5KqdqPQ-2B1uTevwOnJiMUfC7fgNB9olx-2FY8H7GLHYRj1I9U1-2BfawiPVC5iW178lbwIzrbjONYQ107HIsYSIQ2u5yt3hjk1zuKtegs1pTLrF8-2B3iG8GzOoyx5xSros-2FVXZkUtBdh-2B6ZUE4tdcnTCp6ubXSLBAZP86QaWZd-2BsS3YN2uOGJBNcpBKKNexY-3D
Home |
Main Index |
Thread Index |
Old Index