clang static analysis of xorg-server

Jeremy Huddleston jeremyhu at
Mon Mar 22 11:59:38 PDT 2010

I aree ... some of the "dead store" issues are more stylistic or future proofing.

The real ones we should consider are the logic errors... garbage assignment and null dereference.

Some of the errors seem outright bogus (, so if you see any others like that, let me know.  I'm building the latest version of clang right now, and if those oddities are still present, I'll report them to the developers.

On Mar 22, 2010, at 10:25, Matthias Hopf wrote:

> On Mar 22, 10 09:58:59 -0700, Jeremy Huddleston wrote:
>> I ran the static analyzer on a build of the current git master of xorg-server.  Here are the results:
>> There are quite a number of hidden issues.  Would people find it useful to have this data part of  If so, I'll look into seeing how easily it would be to integrate clang into jhbuild.
> While 'rand is a poor random generator' and 'Dead assignment' are
> questionable, at least some of the NULL pointer accesses seem real.
> It might be interesting to have this on tinderbox, however, there should
> be a possibility to mark false positives (like the use of rand() in not
> security critical code). Any ideas?
> Thanks for the test
> Matthias
> -- 
> Matthias Hopf <mhopf at>      __        __   __
> Maxfeldstr. 5 / 90409 Nuernberg   (_   | |  (_   |__          mat at
> Phone +49-911-74053-715           __)  |_|  __)  |__  R & D

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 5820 bytes
Desc: not available
URL: <>

More information about the xorg-devel mailing list