From: "Gerd Hoffmann" <kraxel@redhat.com>
To: devel@edk2.groups.io, mikuback@linux.microsoft.com
Subject: Re: [edk2-devel] CodeQL Analysis in edk2
Date: Tue, 27 Feb 2024 12:39:55 +0100 [thread overview]
Message-ID: <m5d4pkkh3heotifcj33hplpe7ipyviph2badkbzxoom4mnbaw6@pqlbrnfghgfh> (raw)
In-Reply-To: <T663.1699371805643893704.pTvc@groups.io>
Hi,
> I am hoping we can work together to improve the overall quality of the
> code and minimize the number of CodeQL alerts.
Seems CodeQL now runs as part of CI and flags issues it has found.
It complains about a possible NULL pointer dereference:
https://github.com/tianocore/edk2/runs/22021016348
This is not correct, but I doubt code analysis will ever be clever
enough to figure this automatically. So I've added an ASSERT()
explicitly saying so, which should help both human reviewers and
code analyzers.
Apparently that does not change anything for CodeQL though. I guess
the CodeQL config must be updated so it knows what ASSERT() means?
Maybe it is ignored simply because it is upper case (unlike the
standard C library version which is lower case)?
thanks & take care,
Gerd
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#116028): https://edk2.groups.io/g/devel/message/116028
Mute This Topic: https://groups.io/mt/102444916/7686176
Group Owner: devel+owner@edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [rebecca@openfw.io]
-=-=-=-=-=-=-=-=-=-=-=-
next prev parent reply other threads:[~2024-02-27 11:40 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-11-07 15:43 [edk2-devel] CodeQL Analysis in edk2 Michael Kubacki
2023-11-13 13:39 ` Laszlo Ersek
2023-11-13 13:42 ` Laszlo Ersek
2023-11-15 0:35 ` Michael Kubacki
2023-11-15 12:00 ` Laszlo Ersek
2024-02-27 11:39 ` Gerd Hoffmann [this message]
2024-02-27 16:04 ` Michael Kubacki
2024-02-28 3:43 ` Laszlo Ersek
2024-02-28 3:55 ` Michael Kubacki
2024-02-28 11:29 ` Gerd Hoffmann
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-list from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=m5d4pkkh3heotifcj33hplpe7ipyviph2badkbzxoom4mnbaw6@pqlbrnfghgfh \
--to=devel@edk2.groups.io \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox