zephyr

bartoszek/zephyr

Fork 0

Commit Graph

Author	SHA1	Message	Date
Alex Fabre	5ba659c43f	sca: gcc: add support for additional analyzer options This commit brings support for additional GCC static analyzer options with 'GCC_SCA_OPTS=...' Linked to discussion on 'ccache' side effect on analyzer file generation[1] [1] https://github.com/zephyrproject-rtos/zephyr/discussions/86196 Signed-off-by: Alex Fabre <alex.fabre@rtone.fr>	2025-03-13 16:53:26 +00:00
Flavio Ceolin	3fc5d971fe	security: Add compiler static analysis support Enable GCC builtin static analysis in Zephyr's static code analysis (SCA) infra. When this option is enabled GCC performs a static analysis and can point problems like: sample.c + int j; + + if (j != NULL) { + printf("j != NULL\n"); output: ${ZEPHYR_BASE}/samples/userspace/hello_world_user/src/main.c:30:12: warning: use of uninitialized value 'j' [CWE-457] [-Wanalyzer-use-of-uninitialized-value] 30 \| if (j != NULL) { \| ^ 'main': events 1-2 \| \| 25 \| int j; \| \| ^ \| \| \| \| \| (1) region created on stack here \|...... \| 30 \| if (j != NULL) { \| \| ~ \| \| \| \| \| (2) use of uninitialized value 'j' here Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>	2024-01-25 12:07:27 +01:00

Author

SHA1

Message

Date

Alex Fabre

5ba659c43f

sca: gcc: add support for additional analyzer options

This commit brings support for additional GCC static analyzer options
with 'GCC_SCA_OPTS=...'

Linked to discussion on 'ccache' side effect on analyzer file
generation[1]

[1] https://github.com/zephyrproject-rtos/zephyr/discussions/86196

Signed-off-by: Alex Fabre <alex.fabre@rtone.fr>

2025-03-13 16:53:26 +00:00

Flavio Ceolin

3fc5d971fe

security: Add compiler static analysis support

Enable GCC builtin static analysis in Zephyr's static code analysis
(SCA) infra.

When this option is enabled GCC performs a static analysis and
can point problems like:

sample.c

+	int *j;
+
+	if (j != NULL) {
+		printf("j != NULL\n");

output:

${ZEPHYR_BASE}/samples/userspace/hello_world_user/src/main.c:30:12:
warning: use of uninitialized value 'j' [CWE-457]
[-Wanalyzer-use-of-uninitialized-value]

   30 |         if (j != NULL) {
      |            ^
  'main': events 1-2
    |
    |   25 |         int *j;
    |      |              ^
    |      |              |
    |      |              (1) region created on stack here
    |......
    |   30 |         if (j != NULL) {
    |      |            ~
    |      |            |
    |      |            (2) use of uninitialized value 'j' here

Signed-off-by: Flavio Ceolin <flavio.ceolin@intel.com>

2024-01-25 12:07:27 +01:00

2 Commits