Fix High and Medium Level issues

[Sid2001-maker]

RDKEMW-12252: Coverity Scan Report - Analyzing and Fixing all the Critical and High issues

Reason for change: Resolve Critical and high level issues in coverity
Test Procedure: build should be successful
Risk: low
Priority: P2

[Copilot]

Pull request overview

This PR addresses Critical and High level issues identified by Coverity scan (RDKEMW-12252). The changes focus on improving error handling, fixing memory leaks, addressing concurrency issues, and correcting format specifiers.

Changes:

• Added exception handling with try-catch blocks in main functions across multiple files
• Improved error checking for file operations, curl operations, and null pointers
• Fixed memory leaks by properly deallocating resources and adding missing delete statements
• Enhanced thread safety with atomic counters and improved mutex usage patterns
• Corrected format specifiers and log messages to match actual data types

Reviewed changes

Copilot reviewed 11 out of 11 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
src/jsruntime.cpp	Added exception handling, bounds checking for command-line arguments, and Coverity annotations for tainted data
src/jsc/jsc_lib/jsc_lib.cpp	Fixed exception value conversion, added curl error checking with lambda helper, improved string comparison
src/jsc/JavaScriptUtils.cpp	Improved mutex locking patterns, added file operation error handling, fixed memory leaks in network metrics
src/jsc/JavaScriptEngine.cpp	Corrected format specifier from %d to %f for double variable
src/jsc/JavaScriptContext.cpp	Added memory cleanup for mNetworkMetricsData, added null check for gAAMPJSBindings
src/NativeJSRenderer.cpp	Replaced non-atomic counter with atomic, improved mutex scoping, added curl error checking, fixed log messages
src/JSRuntimeServer.cpp	Initialized res variable to 0 in error case to prevent undefined behavior
src/JSRuntimeClientContainer.cpp	Added exception handling to main function, fixed log format string
src/JSRuntimeClient.cpp	Added predicates to condition_variable wait_for calls, added exception handling to main
include/JSRuntimeClient.h	Added mResponseReceived flag to prevent spurious wakeups in condition_variable
include/IJavaScriptContext.h	Added virtual destructor to polymorphic base class

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 3 comments.

Comments suppressed due to low confidence (1)

src/jsc/JavaScriptUtils.cpp:789

• After pushing metricsMap to netMetricsArray at line 788, the metricsMap pointer is not deleted, unlike the pattern seen with headersArray (line 774) and timeMetricsArray (line 786) which are deleted after being pushed. If rtValue does not handle reference counting or take ownership, this could lead to a memory leak. Verify the ownership semantics of rtValue and add appropriate cleanup if needed.

      rtMapObject* metricsMap = new rtMapObject();
      metricsMap->set("url", metrics->url);
      metricsMap->set("method", metrics->method);

      rtArrayObject* headersArray = new rtArrayObject();
      for (const auto& header : metrics->headers) {
        headersArray->pushBack(rtValue(header));
      }
      metricsMap->set("headers", rtValue(headersArray));
      delete headersArray;

      rtArrayObject* timeMetricsArray = new rtArrayObject();
      for (const auto& metric : metrics->timeMetricsData) {
        rtObjectRef timeMetricObj = new rtMapObject();
        timeMetricObj->Set(metric.first.cString(), &metric.second);
        timeMetricsArray->pushBack(rtValue(timeMetricObj));
	delete timeMetricObj;
	timeMetricObj = nullptr;
      }

      metricsMap->set("timeMetricsData", rtValue(timeMetricsArray));
      delete timeMetricsArray;

      netMetricsArray->pushBack(rtValue(metricsMap));
    }

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 2 comments.

Comments suppressed due to low confidence (1)

src/jsc/JavaScriptUtils.cpp:786

• Memory leak: metricsMap is allocated at line 763 but never deleted. After calling pushBack at line 786, the metricsMap object is still owned by the caller and should be deleted to prevent a memory leak. The same pattern used for headersArray and timeMetricsArray should be applied here.

      rtMapObject* metricsMap = new rtMapObject();
      metricsMap->set("url", metrics->url);
      metricsMap->set("method", metrics->method);

      rtArrayObject* headersArray = new rtArrayObject();
      for (const auto& header : metrics->headers) {
        headersArray->pushBack(rtValue(header));
      }
      metricsMap->set("headers", rtValue(headersArray));
      delete headersArray;

      rtArrayObject* timeMetricsArray = new rtArrayObject();
      for (const auto& metric : metrics->timeMetricsData) {
        rtObjectRef timeMetricObj = new rtMapObject();
        timeMetricObj->Set(metric.first.cString(), &metric.second);
        timeMetricsArray->pushBack(rtValue(timeMetricObj));
	delete timeMetricObj;
	timeMetricObj = nullptr;
      }

      metricsMap->set("timeMetricsData", rtValue(timeMetricsArray));
      delete timeMetricsArray;

      netMetricsArray->pushBack(rtValue(metricsMap));

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 1 comment.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 2 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 5 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The buffer contains binary data from a WASM file, but setString expects a null-terminated C string. Binary data may contain null bytes in the middle or lack a null terminator, which will cause undefined behavior. Consider using a method that accepts a buffer with explicit size, or ensure proper null termination.

[Copilot]

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated no new comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 1 comment.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated no new comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.

---

I have read the CLA Document and I hereby sign the CLA

---

2 out of 3 committers have signed the CLA.
✅ (Sid2001-maker)[https://github.com/Sid2001-maker]
✅ (vjain008)[https://github.com/vjain008]
❌ @sid-TEL
_{You can retrigger this bot by commenting recheck in this Pull Request. Posted by the CLA Assistant Lite bot.}

[rdkcmf-jenkins]

b'## Blackduck scan failure details

Summary: 0 violations, 0 files pending approval, 1 file pending identification.

• Protex Server Path: /home/blackduck/github/rdkNativeScript/110/rdkcentral/rdkNativeScript

• Commit: 72339bc

Report detail: gist'

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 10 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Missing null check after malloc. The malloc call may return NULL if memory allocation fails, but the code proceeds to use the buffer pointer without checking. This could lead to a null pointer dereference on line 342 if allocation fails. Add a null check after malloc and return RT_ERROR if allocation fails, ensuring proper cleanup of the file pointer.

[Copilot]

The fread call expects to read 'size' bytes as a single item, but this is backwards. The correct call should be fread(buffer, 1, size, ptr) to read 'size' items of 1 byte each. The current code reads 1 item of 'size' bytes, which will only succeed if the file size is exactly divisible by 'size' and may not read the entire file content correctly.

Suggested change

	size_t bytesRead = fread(buffer, size, 1, ptr);
	fclose(ptr);
	if (bytesRead != 1)
	{
	rtLogError("Failed to read file: expected 1 item, read %zu items", bytesRead);
	size_t bytesRead = fread(buffer, 1, size, ptr);
	fclose(ptr);
	if (bytesRead != static_cast<size_t>(size))
	{
	rtLogError("Failed to read file: expected %d bytes, read %zu bytes", size, bytesRead);

[Copilot]

The validation check is incorrect following the fread parameter correction. If fread(buffer, 1, size, ptr) is used as it should be, the success condition should check if bytesRead equals 'size', not 1. The current check for bytesRead != 1 would be incorrect after fixing the fread parameters.

[Copilot]

The try block starting on line 40 is not properly indented. All code inside the try block should be indented consistently. Currently, the code starting from line 41 onwards has inconsistent indentation, making the code structure unclear.

[Copilot]

Potential undefined behavior: accessing mContextMap[id].url when id is not in the map. The else branch at line 445 is executed when the id is not found in mContextMap (line 433), but line 447 tries to access mContextMap[id].url, which will create a new entry with default values if the id doesn't exist. This could lead to accessing uninitialized data or creating phantom entries. The error message should either not include the URL or store it before checking if the id exists.

[Copilot]

The inline comment "newly added" is unnecessary and should be removed. Such comments don't add value to the code and become outdated over time. The version control system already tracks what was added and when.

[Copilot]

The inline comment "newly added" is unnecessary and should be removed. Such comments don't add value to the code and become outdated over time. The version control system already tracks what was added and when.

[Copilot]

The inline comment "changed added" is unclear and should be removed. Such comments don't add value to the code and become outdated over time. The version control system already tracks what was added and when.

Suggested change

//changed added

[Copilot]

Attempting to close a potentially null file pointer. The fopen call on line 327 may return NULL if the file cannot be opened, but the code proceeds to call fclose(ptr) without checking if ptr is null. This will cause undefined behavior if the file doesn't exist or can't be opened. Add a null check after fopen and return an error if the file couldn't be opened.

[Copilot]

The inline comment "newly added" is unnecessary and should be removed. Such comments don't add value to the code and become outdated over time. The version control system already tracks what was added and when.

Suggested change

	delete netMetricsArray; //newly added
	delete netMetricsArray;

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 2 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The file pointer 'ptr' could be NULL if fopen fails. The code checks stat() result but calls fclose(ptr) without checking if ptr is NULL. This will cause undefined behavior if the file cannot be opened. Add a NULL check for ptr before attempting to close it, or better yet, check if ptr is NULL immediately after fopen and handle the error appropriately.

[Copilot]

There is a resource leak if malloc fails. When buffer allocation fails, the function continues to call fread without checking if buffer is NULL, and ptr remains open without being closed. Add a NULL check after malloc and properly handle the error by closing ptr and returning an error.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated no new comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated 3 comments.

Comments suppressed due to low confidence (1)

src/NativeJSRenderer.cpp:480

• NativeJSRenderer::run() holds mUserMutex while dispatching each pending request. The called handlers (e.g., runApplicationInternal() -> network downloadFile() + runScript() / runFile()) can be long-running, which blocks producers that need mUserMutex (create/run/terminate requests) and increases deadlock risk if any callback path tries to acquire the same mutex. Consider swapping gPendingRequests into a local vector under the lock, unlocking, and then processing requests without holding mUserMutex, only re-locking around minimal shared-state updates (e.g., mContextMap).

	mUserMutex.lock();
        for (int i=0; i<gPendingRequests.size(); i++)
        {

            ApplicationRequest& request = gPendingRequests[i];

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

In CommandInterface::sendCommand(), derived.send(command) happens before mResponseReceived is reset under mResponseMutex. If a response arrives quickly, onMessage() can set mResponseReceived=true and notify before sendCommand() takes the lock, and then sendCommand() overwrites the flag back to false and waits the full timeout (missed wakeup). Reset the flag (or increment a sequence counter) while holding mResponseMutex before sending, and consider clearing/consuming mLastResponse in the same critical section.

[Copilot]

processDevConsoleRequests() assigns the return value of runScript() to ret, but ret is never used. This will trigger an unused-variable warning (and may fail builds if warnings are treated as errors). Either remove ret or use it (e.g., log/report execution failures).

Suggested change

	bool ret = mConsoleState->consoleContext->runScript(code.c_str(), false);
	mConsoleState->consoleContext->runScript(code.c_str(), false);

[Copilot]

The --display value is logged verbatim before validation/sanitization. Since this comes from argv, it can contain control characters/newlines and lead to log injection or confusing logs. Prefer logging only the sanitized value, or escape/quote non-printable characters when logging rejected input.

[Copilot]

Pull request overview

Copilot reviewed 11 out of 11 changed files in this pull request and generated no new comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.