summaryrefslogtreecommitdiff
path: root/.github/workflows/analyze.yml
blob: cbdea0e504e73eb2fe2508caeb4768e67ffa1222 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78

name: Static Analysis
on: [push, pull_request]
jobs:
  static-analysis:
    name: GCC
    runs-on: ubuntu-latest
    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Add ubuntu mirrors
      run: |
        # Github Actions caching proxy is at times unreliable
        echo -e 'http://azure.archive.ubuntu.com/ubuntu\tpriority:1\n' | sudo tee /etc/apt/mirrors.txt
        curl http://mirrors.ubuntu.com/mirrors.txt | sudo tee --append /etc/apt/mirrors.txt
        sudo sed -i 's#http://azure.archive.ubuntu.com/ubuntu/#mirror+file:/etc/apt/mirrors.txt#' /etc/apt/sources.list

    - name: Install packages (Ubuntu)
      run: sudo apt-get install -y gcc-10

    - name: Generate project files
      run: |
        cmake . \
          -DCMAKE_BUILD_TYPE=Release \
          -DBUILD_SHARED_LIBS=OFF \
          -DWITH_FUZZERS=OFF \
          -DWITH_CODE_COVERAGE=OFF \
          -DWITH_MAINTAINER_WARNINGS=OFF
      env:
        CC: gcc-10
        CFLAGS:
          -fanalyzer
          -Werror
          -Wanalyzer-double-fclose
          -Wanalyzer-double-free
          -Wanalyzer-exposure-through-output-file
          -Wanalyzer-file-leak
          -Wanalyzer-free-of-non-heap
          -Wanalyzer-malloc-leak
          -Wanalyzer-null-argument
          -Wanalyzer-null-dereference
          -Wanalyzer-possible-null-argument
          -Wanalyzer-possible-null-dereference
          -Wanalyzer-stale-setjmp-buffer
          -Wanalyzer-tainted-array-index
          -Wanalyzer-unsafe-call-within-signal-handler
          -Wanalyzer-use-after-free
          -Wanalyzer-use-of-pointer-in-stale-stack-frame
        CI: true

    - name: Compile source code
      run: cmake --build . -j2 --config Release > /dev/null

  Clang:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout repository
      uses: actions/checkout@v3

    - name: Install packages (Ubuntu)
      run: sudo apt-get install -y clang-tools

    - name: Generate project files
      run: |
        scan-build --status-bugs \
          cmake . \
            -DCMAKE_BUILD_TYPE=Release \
            -DBUILD_SHARED_LIBS=OFF \
            -DWITH_FUZZERS=OFF \
            -DWITH_CODE_COVERAGE=OFF \
            -DWITH_MAINTAINER_WARNINGS=OFF
      env:
        CI: true

    - name: Compile source code
      run: |
        scan-build --status-bugs \
          cmake --build . -j2 --config Release > /dev/null
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-03 03:43:37 +0000