Andrew Cooper

icon indicating an email [email protected]

icon company Citrix icon location Cambridge, UK icon location Hypervisor and kernel hacker. XenServer, upstream Xen maintainer and security team member.

Results 5 issues of Andrew Cooper

LGTM.com - false positive: size_t expression has no side effects

I'm transitioning a project from LGTM.com to Github Actions CodeQL. This particular issue shows up in both cases and is (I think) the root cause of a huge amount of...

false-positive

CodeQL - false positive: Potentially uninitialized local variable after noreturn function.

I'm transitioning a project from LGTM.com to Github Actions CodeQL. While doing so, https://github.com/TrenchBoot/secure-kernel-loader/security/code-scanning/18 got reported. The complaint is a "Potentially uninitialized local variable" and while strictly speaking, this statement...

false-positive

gestures don't work with gitweb

4 comment

Take https://xenbits.xen.org/gitweb/?p=xen.git as an example, but this appears to affect any gitweb website. Trying to perform a gesture draws the gesture, but no action occurs as a result. Looking at...

Add a dry_run option

This lets people trial their Coverity action environment/setup without making final submissions for analysis. Example: https://github.com/andyhhp/xen/actions/runs/9843491247/job/27174800430

False positive "Comparison result is always the same" because of incorrect sizeof evaluation

3 comment

**Description of the false positive** CodeQL complains "Comparison is always true because i

false-positive