1cdc3a89d5de90b2299c56f4a46c3de590c5184d1Ted Kremenek// RUN: %clang_cc1 -analyze -analyzer-checker=core,unix.cstring,alpha.unix.cstring,debug.ExprInspection -analyzer-store=region -Wno-null-dereference -verify %s 2cdc3a89d5de90b2299c56f4a46c3de590c5184d1Ted Kremenek// RUN: %clang_cc1 -analyze -DUSE_BUILTINS -analyzer-checker=core,unix.cstring,alpha.unix.cstring,debug.ExprInspection -analyzer-store=region -Wno-null-dereference -verify %s 3cdc3a89d5de90b2299c56f4a46c3de590c5184d1Ted Kremenek// RUN: %clang_cc1 -analyze -DVARIANT -analyzer-checker=core,unix.cstring,alpha.unix.cstring,debug.ExprInspection -analyzer-store=region -Wno-null-dereference -verify %s 4cdc3a89d5de90b2299c56f4a46c3de590c5184d1Ted Kremenek// RUN: %clang_cc1 -analyze -DUSE_BUILTINS -DVARIANT -analyzer-checker=alpha.security.taint,core,unix.cstring,alpha.unix.cstring,debug.ExprInspection -analyzer-store=region -Wno-null-dereference -verify %s 519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose//===----------------------------------------------------------------------=== 719c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// Declarations 819c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose//===----------------------------------------------------------------------=== 919c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 1019c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// Some functions are so similar to each other that they follow the same code 1119c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// path, such as memcpy and __memcpy_chk, or memcmp and bcmp. If VARIANT is 1219c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// defined, make sure to use the variants instead to make sure they are still 1319c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// checked by the analyzer. 1419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 1519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// Some functions are implemented as builtins. These should be #defined as 1619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// BUILTIN(f), which will prepend "__builtin_" if USE_BUILTINS is defined. 1719c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 18fc8f0e14ad142ed811e90fbd9a30e419e301c717Chris Lattner// Functions that have variants and are also available as builtins should be 1919c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// declared carefully! See memcpy() for an example. 2019c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 2119c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose#ifdef USE_BUILTINS 2219c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose# define BUILTIN(f) __builtin_ ## f 2319c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose#else /* USE_BUILTINS */ 2419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose# define BUILTIN(f) f 2519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose#endif /* USE_BUILTINS */ 2619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 27e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define NULL 0 2819c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosetypedef typeof(sizeof(int)) size_t; 2943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose 3043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rosevoid clang_analyzer_eval(int); 3143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose 32e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaksint scanf(const char *restrict format, ...); 3319c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 3419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose//===----------------------------------------------------------------------=== 3519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose// strlen() 3619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose//===----------------------------------------------------------------------=== 3719c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 3819c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose#define strlen BUILTIN(strlen) 3919c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosesize_t strlen(const char *s); 4019c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 4119c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosevoid strlen_constant0() { 4243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen("123") == 3); // expected-warning{{TRUE}} 4319c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 4419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 4519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosevoid strlen_constant1() { 4619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose const char *a = "123"; 4743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(a) == 3); // expected-warning{{TRUE}} 4819c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 4919c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 5019c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosevoid strlen_constant2(char x) { 5119c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose char a[] = "123"; 5243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(a) == 3); // expected-warning{{TRUE}} 5343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose 5419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose a[0] = x; 5543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(a) == 3); // expected-warning{{UNKNOWN}} 5619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 5719c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 5819c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosesize_t strlen_null() { 599e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strlen(0); // expected-warning{{Null pointer argument in call to string length function}} 6019c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 6119c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 6219c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosesize_t strlen_fn() { 639e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strlen((char*)&strlen_fn); // expected-warning{{Argument to string length function is the address of the function 'strlen_fn', which is not a null-terminated string}} 6419c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 6519c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose 6619c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rosesize_t strlen_nonloc() { 6719c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Roselabel: 689e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strlen((char*)&&label); // expected-warning{{Argument to string length function is the address of the label 'label', which is not a null-terminated string}} 6919c5dd120e42b1ba0642309a185c70f4a41aadbdJordy Rose} 70a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 71a5261549754fab80e30e893d8fa706bfb31e430aJordy Rosevoid strlen_subregion() { 72e224ba7e3e604113aa160c379293bcb6425e8f36Carl Norum struct two_strings { char a[2], b[2]; }; 73a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose extern void use_two_strings(struct two_strings *); 74a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 75a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose struct two_strings z; 76a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose use_two_strings(&z); 77a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 78a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t a = strlen(z.a); 79a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose z.b[0] = 5; 80a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t b = strlen(z.a); 8143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 8243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(b == 0); // expected-warning{{TRUE}} 83a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 84a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose use_two_strings(&z); 85a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 86a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t c = strlen(z.a); 8743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 8843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(c == 0); // expected-warning{{UNKNOWN}} 89a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose} 90a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 91a5261549754fab80e30e893d8fa706bfb31e430aJordy Roseextern void use_string(char *); 92a5261549754fab80e30e893d8fa706bfb31e430aJordy Rosevoid strlen_argument(char *x) { 93a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t a = strlen(x); 94a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t b = strlen(x); 9543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 9643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(b == 0); // expected-warning{{TRUE}} 97a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 98a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose use_string(x); 99a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 100a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t c = strlen(x); 10143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 10243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(c == 0); // expected-warning{{UNKNOWN}} 103a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose} 104a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 105a5261549754fab80e30e893d8fa706bfb31e430aJordy Roseextern char global_str[]; 106a5261549754fab80e30e893d8fa706bfb31e430aJordy Rosevoid strlen_global() { 107a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t a = strlen(global_str); 108a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t b = strlen(global_str); 10943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) { 11043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(b == 0); // expected-warning{{TRUE}} 11143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose // Make sure clang_analyzer_eval does not invalidate globals. 11243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(global_str) == 0); // expected-warning{{TRUE}} 11343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose } 114a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 115a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose // Call a function with unknown effects, which should invalidate globals. 116a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose use_string(0); 117a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 118a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t c = strlen(global_str); 11943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 12043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(c == 0); // expected-warning{{UNKNOWN}} 121a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose} 122a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 123a5261549754fab80e30e893d8fa706bfb31e430aJordy Rosevoid strlen_indirect(char *x) { 124a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t a = strlen(x); 125a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose char *p = x; 126a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose char **p2 = &p; 127a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t b = strlen(x); 12843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 12943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(b == 0); // expected-warning{{TRUE}} 130a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 131a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose extern void use_string_ptr(char*const*); 132a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose use_string_ptr(p2); 133a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 134a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose size_t c = strlen(x); 13543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 13643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(c == 0); // expected-warning{{UNKNOWN}} 137a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose} 138a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose 1392cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaksvoid strlen_indirect2(char *x) { 1402cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks size_t a = strlen(x); 1412cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks char *p = x; 1422cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks char **p2 = &p; 1432cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks extern void use_string_ptr2(char**); 1442cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks use_string_ptr2(p2); 1452cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks 1462cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks size_t c = strlen(x); 14743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (a == 0) 14843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(c == 0); // expected-warning{{UNKNOWN}} 1492cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks} 1502cbe791d3e9b26f30196c4852da75d9ad67b4ad9Anna Zaks 151a5261549754fab80e30e893d8fa706bfb31e430aJordy Rosevoid strlen_liveness(const char *x) { 152a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose if (strlen(x) < 5) 153a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose return; 15443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) < 5); // expected-warning{{FALSE}} 155a5261549754fab80e30e893d8fa706bfb31e430aJordy Rose} 156e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 157e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose//===----------------------------------------------------------------------=== 158be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek// strnlen() 159be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek//===----------------------------------------------------------------------=== 160be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 161be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremeneksize_t strnlen(const char *s, size_t maxlen); 162be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 163be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant0() { 16443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen("123", 10) == 3); // expected-warning{{TRUE}} 165be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 166be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 167be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant1() { 168be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek const char *a = "123"; 16943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 10) == 3); // expected-warning{{TRUE}} 170be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 171be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 172be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant2(char x) { 173be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek char a[] = "123"; 17443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 10) == 3); // expected-warning{{TRUE}} 175be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek a[0] = x; 17643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 10) == 3); // expected-warning{{UNKNOWN}} 177be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 178be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 179be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant4() { 18043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen("123456", 3) == 3); // expected-warning{{TRUE}} 181be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 182be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 183be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant5() { 184be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek const char *a = "123456"; 18543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 3) == 3); // expected-warning{{TRUE}} 186be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 187be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 188be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenekvoid strnlen_constant6(char x) { 189be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek char a[] = "123456"; 19043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 3) == 3); // expected-warning{{TRUE}} 191be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek a[0] = x; 19243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(a, 3) == 3); // expected-warning{{UNKNOWN}} 193be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 194be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 195be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremeneksize_t strnlen_null() { 1969e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strnlen(0, 3); // expected-warning{{Null pointer argument in call to string length function}} 197be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 198be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 199be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremeneksize_t strnlen_fn() { 2009e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strnlen((char*)&strlen_fn, 3); // expected-warning{{Argument to string length function is the address of the function 'strlen_fn', which is not a null-terminated string}} 201be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 202be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 203be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremeneksize_t strnlen_nonloc() { 204be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremeneklabel: 2059e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose return strnlen((char*)&&label, 3); // expected-warning{{Argument to string length function is the address of the label 'label', which is not a null-terminated string}} 206be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 207be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 208793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosevoid strnlen_zero() { 20943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen("abc", 0) == 0); // expected-warning{{TRUE}} 21043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(NULL, 0) == 0); // expected-warning{{TRUE}} 211793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose} 212be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 213793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosesize_t strnlen_compound_literal() { 214793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose // This used to crash because we don't model the string lengths of 215793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose // compound literals. 216793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose return strnlen((char[]) { 'a', 'b', 0 }, 1); 217793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose} 218be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 219793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosesize_t strnlen_unknown_limit(float f) { 220793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose // This used to crash because we don't model the integer values of floats. 221793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose return strnlen("abc", (int)f); 222793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose} 223be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 224793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosevoid strnlen_is_not_strlen(char *x) { 22543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strnlen(x, 10) == strlen(x)); // expected-warning{{UNKNOWN}} 226be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 227be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 228793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosevoid strnlen_at_limit(char *x) { 229793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose size_t len = strnlen(x, 10); 23043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len <= 10); // expected-warning{{TRUE}} 23143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len == 10); // expected-warning{{UNKNOWN}} 23243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len < 10); // expected-warning{{UNKNOWN}} 233be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 234be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 235793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rosevoid strnlen_at_actual(size_t limit) { 236793bff3fb7ca2a31e81aa7f4f3f21f921459010bJordy Rose size_t len = strnlen("abc", limit); 23743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len <= 3); // expected-warning{{TRUE}} 23843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose // This is due to eager assertion in strnlen. 23943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose if (limit == 0) { 24043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len == 0); // expected-warning{{TRUE}} 24143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose } else { 24243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len == 3); // expected-warning{{UNKNOWN}} 24343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(len < 3); // expected-warning{{UNKNOWN}} 24443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose } 245be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek} 246be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek 247be4242ce039f0542ea0dd5f234aa0ee698f90c53Ted Kremenek//===----------------------------------------------------------------------=== 248e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose// strcpy() 249e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose//===----------------------------------------------------------------------=== 250e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 251e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#ifdef VARIANT 252e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 253e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define __strcpy_chk BUILTIN(__strcpy_chk) 254e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosechar *__strcpy_chk(char *restrict s1, const char *restrict s2, size_t destlen); 255e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 256e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define strcpy(a,b) __strcpy_chk(a,b,(size_t)-1) 257e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 258e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#else /* VARIANT */ 259e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 260e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define strcpy BUILTIN(strcpy) 261e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosechar *strcpy(char *restrict s1, const char *restrict s2); 262e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 263e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#endif /* VARIANT */ 264e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 265e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 266e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_null_dst(char *x) { 2679e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcpy(NULL, x); // expected-warning{{Null pointer argument in call to string copy function}} 268e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 269e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 270e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_null_src(char *x) { 2719e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcpy(x, NULL); // expected-warning{{Null pointer argument in call to string copy function}} 272e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 273e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 274e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_fn(char *x) { 2759e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcpy(x, (char*)&strcpy_fn); // expected-warning{{Argument to string copy function is the address of the function 'strcpy_fn', which is not a null-terminated string}} 276e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 277e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 278ce8ef16b1c58a304b7b59fad9836ad32d6ed020cAnna Zaksvoid strcpy_fn_const(char *x) { 279ce8ef16b1c58a304b7b59fad9836ad32d6ed020cAnna Zaks strcpy(x, (const char*)&strcpy_fn); // expected-warning{{Argument to string copy function is the address of the function 'strcpy_fn', which is not a null-terminated string}} 280ce8ef16b1c58a304b7b59fad9836ad32d6ed020cAnna Zaks} 281ce8ef16b1c58a304b7b59fad9836ad32d6ed020cAnna Zaks 282f8e2c06cea1548c437761cb65cfbf97d50a057a7Jordan Roseextern int globalInt; 283e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_effects(char *x, char *y) { 284e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char a = x[0]; 285f8e2c06cea1548c437761cb65cfbf97d50a057a7Jordan Rose if (globalInt != 42) 286f8e2c06cea1548c437761cb65cfbf97d50a057a7Jordan Rose return; 287e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 28843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcpy(x, y) == x); // expected-warning{{TRUE}} 28943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) == strlen(y)); // expected-warning{{TRUE}} 29043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(a == x[0]); // expected-warning{{UNKNOWN}} 291f8e2c06cea1548c437761cb65cfbf97d50a057a7Jordan Rose clang_analyzer_eval(globalInt == 42); // expected-warning{{TRUE}} 292e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 293e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 294e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_overflow(char *y) { 295e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char x[4]; 296e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose if (strlen(y) == 4) 2979e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcpy(x, y); // expected-warning{{String copy function overflows destination buffer}} 298e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 299e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 300e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid strcpy_no_overflow(char *y) { 301e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char x[4]; 302e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose if (strlen(y) == 3) 303e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose strcpy(x, y); // no-warning 304e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 305e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 306e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose//===----------------------------------------------------------------------=== 307e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose// stpcpy() 308e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose//===----------------------------------------------------------------------=== 309e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 310e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#ifdef VARIANT 311e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 312e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define __stpcpy_chk BUILTIN(__stpcpy_chk) 313e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosechar *__stpcpy_chk(char *restrict s1, const char *restrict s2, size_t destlen); 314e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 315e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define stpcpy(a,b) __stpcpy_chk(a,b,(size_t)-1) 316e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 317e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#else /* VARIANT */ 318e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 319e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#define stpcpy BUILTIN(stpcpy) 320e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosechar *stpcpy(char *restrict s1, const char *restrict s2); 321e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 322e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose#endif /* VARIANT */ 323e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 324e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 325e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid stpcpy_effect(char *x, char *y) { 326e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char a = x[0]; 327e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 32843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(stpcpy(x, y) == &x[strlen(y)]); // expected-warning{{TRUE}} 32943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) == strlen(y)); // expected-warning{{TRUE}} 33043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(a == x[0]); // expected-warning{{UNKNOWN}} 331e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 332e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 333e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid stpcpy_overflow(char *y) { 334e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char x[4]; 335e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose if (strlen(y) == 4) 3369e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose stpcpy(x, y); // expected-warning{{String copy function overflows destination buffer}} 337e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 338e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose 339e64f311c11a8751867c2538807054f4817c1f5cbJordy Rosevoid stpcpy_no_overflow(char *y) { 340e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose char x[4]; 341e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose if (strlen(y) == 3) 342e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose stpcpy(x, y); // no-warning 343e64f311c11a8751867c2538807054f4817c1f5cbJordy Rose} 344067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 345067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani//===----------------------------------------------------------------------=== 346067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani// strcat() 347067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani//===----------------------------------------------------------------------=== 348067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 349067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#ifdef VARIANT 350067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 351067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define __strcat_chk BUILTIN(__strcat_chk) 352067bbd0e11c71a33b51832532e836971be697699Lenny Maioranichar *__strcat_chk(char *restrict s1, const char *restrict s2, size_t destlen); 353067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 354067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define strcat(a,b) __strcat_chk(a,b,(size_t)-1) 355067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 356067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#else /* VARIANT */ 357067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 358067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define strcat BUILTIN(strcat) 359067bbd0e11c71a33b51832532e836971be697699Lenny Maioranichar *strcat(char *restrict s1, const char *restrict s2); 360067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 361067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#endif /* VARIANT */ 362067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 363067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 364067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_null_dst(char *x) { 3659e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(NULL, x); // expected-warning{{Null pointer argument in call to string copy function}} 366067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 367067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 368067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_null_src(char *x) { 3699e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(x, NULL); // expected-warning{{Null pointer argument in call to string copy function}} 370067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 371067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 372067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_fn(char *x) { 3739e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(x, (char*)&strcat_fn); // expected-warning{{Argument to string copy function is the address of the function 'strcat_fn', which is not a null-terminated string}} 374067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 375067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 376067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_effects(char *y) { 377067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[8] = "123"; 378067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani size_t orig_len = strlen(x); 379067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char a = x[0]; 380067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 381067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) != 4) 382067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani return; 383067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 38443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcat(x, y) == x); // expected-warning{{TRUE}} 38543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval((int)strlen(x) == (orig_len + strlen(y))); // expected-warning{{TRUE}} 386067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 387067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 388067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_overflow_0(char *y) { 389067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 390067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 4) 3919e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(x, y); // expected-warning{{String copy function overflows destination buffer}} 392067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 393067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 394067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_overflow_1(char *y) { 395067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 396067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 3) 3979e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(x, y); // expected-warning{{String copy function overflows destination buffer}} 398067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 399067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 400067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_overflow_2(char *y) { 401067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 402067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 2) 4039e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcat(x, y); // expected-warning{{String copy function overflows destination buffer}} 404067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 405067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 406067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strcat_no_overflow(char *y) { 407067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[5] = "12"; 408067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 2) 409067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani strcat(x, y); // no-warning 410067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 411067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 412d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rosevoid strcat_symbolic_dst_length(char *dst) { 413d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose strcat(dst, "1234"); 41443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 415d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose} 416d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose 417e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaksvoid strcat_symbolic_dst_length_taint(char *dst) { 418e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaks scanf("%s", dst); // Taint data. 419e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaks strcat(dst, "1234"); 42043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 421e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaks} 422e3d250e488241cbfe71a592df4d07d03ad89434aAnna Zaks 423d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rosevoid strcat_unknown_src_length(char *src, int offset) { 424d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose char dst[8] = "1234"; 425d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose strcat(dst, &src[offset]); 42643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 427d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose} 428d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose 429d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose// There is no strcat_unknown_dst_length because if we can't get a symbolic 430d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose// length for the "before" strlen, we won't be able to set one for "after". 431d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose 432d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rosevoid strcat_too_big(char *dst, char *src) { 433d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose if (strlen(dst) != (((size_t)0) - 2)) 434d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose return; 435d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose if (strlen(src) != 2) 436d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose return; 437d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose strcat(dst, src); // expected-warning{{This expression will create a string whose length is too big to be represented as a size_t}} 438d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose} 439d5af0e17b00ab2ee6a8c1f352bb9eeb1cc5b2d07Jordy Rose 440067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 441067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani//===----------------------------------------------------------------------=== 4425e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose// strncpy() 4435e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose//===----------------------------------------------------------------------=== 4445e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4455e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#ifdef VARIANT 4465e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4475e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#define __strncpy_chk BUILTIN(__strncpy_chk) 4485e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosechar *__strncpy_chk(char *restrict s1, const char *restrict s2, size_t n, size_t destlen); 4495e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4505e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#define strncpy(a,b,n) __strncpy_chk(a,b,n,(size_t)-1) 4515e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4525e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#else /* VARIANT */ 4535e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4545e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#define strncpy BUILTIN(strncpy) 4555e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosechar *strncpy(char *restrict s1, const char *restrict s2, size_t n); 4565e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4575e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose#endif /* VARIANT */ 4585e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4595e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4605e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_null_dst(char *x) { 4615e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(NULL, x, 5); // expected-warning{{Null pointer argument in call to string copy function}} 4625e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4635e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4645e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_null_src(char *x) { 4655e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, NULL, 5); // expected-warning{{Null pointer argument in call to string copy function}} 4665e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4675e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4685e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_fn(char *x) { 4695e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, (char*)&strcpy_fn, 5); // expected-warning{{Argument to string copy function is the address of the function 'strcpy_fn', which is not a null-terminated string}} 4705e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4715e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4725e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_effects(char *x, char *y) { 4735e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char a = x[0]; 4745e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 47543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncpy(x, y, 5) == x); // expected-warning{{TRUE}} 47643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) == strlen(y)); // expected-warning{{UNKNOWN}} 47743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(a == x[0]); // expected-warning{{UNKNOWN}} 4785e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4795e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4805e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_overflow(char *y) { 4815e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 4825e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (strlen(y) == 4) 4835e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, 5); // expected-warning{{Size argument is greater than the length of the destination buffer}} 4845e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4855e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4865e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_no_overflow(char *y) { 4875e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 4885e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (strlen(y) == 3) 4895e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, 5); // expected-warning{{Size argument is greater than the length of the destination buffer}} 4905e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 4915e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4925e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_no_overflow2(char *y, int n) { 4935e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (n <= 4) 4945e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose return; 4955e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 4965e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 4975e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (strlen(y) == 3) 4985e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, n); // expected-warning{{Size argument is greater than the length of the destination buffer}} 4995e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 5005e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 5015e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_truncate(char *y) { 5025e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 5035e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (strlen(y) == 4) 5045e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, 3); // no-warning 5055e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 5065e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 5075e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_no_truncate(char *y) { 5085e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 5095e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose if (strlen(y) == 3) 5105e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, 3); // no-warning 5115e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 5125e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 5135e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rosevoid strncpy_exactly_matching_buffer(char *y) { 5145e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose char x[4]; 5155e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose strncpy(x, y, 4); // no-warning 5165e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 5175e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose // strncpy does not null-terminate, so we have no idea what the strlen is 5185e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose // after this. 51943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) > 4); // expected-warning{{UNKNOWN}} 5205e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose} 5215e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose 5226e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rosevoid strncpy_zero(char *src) { 5236e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char dst[] = "123"; 5246e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose strncpy(dst, src, 0); // no-warning 5256e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose} 5266e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose 5276e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rosevoid strncpy_empty() { 5286e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char dst[] = "123"; 5296e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char src[] = ""; 5306e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose strncpy(dst, src, 4); // no-warning 5316e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose} 5326e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose 5335e5f15062bcf4b62fda9062b453178f8b9bd0c2dJordy Rose//===----------------------------------------------------------------------=== 534067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani// strncat() 535067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani//===----------------------------------------------------------------------=== 536067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 537067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#ifdef VARIANT 538067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 539067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define __strncat_chk BUILTIN(__strncat_chk) 540067bbd0e11c71a33b51832532e836971be697699Lenny Maioranichar *__strncat_chk(char *restrict s1, const char *restrict s2, size_t n, size_t destlen); 541067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 542067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define strncat(a,b,c) __strncat_chk(a,b,c, (size_t)-1) 543067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 544067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#else /* VARIANT */ 545067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 546067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#define strncat BUILTIN(strncat) 547067bbd0e11c71a33b51832532e836971be697699Lenny Maioranichar *strncat(char *restrict s1, const char *restrict s2, size_t n); 548067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 549067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani#endif /* VARIANT */ 550067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 551067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 552067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_null_dst(char *x) { 5539e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncat(NULL, x, 4); // expected-warning{{Null pointer argument in call to string copy function}} 554067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 555067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 556067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_null_src(char *x) { 5579e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncat(x, NULL, 4); // expected-warning{{Null pointer argument in call to string copy function}} 558067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 559067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 560067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_fn(char *x) { 5619e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncat(x, (char*)&strncat_fn, 4); // expected-warning{{Argument to string copy function is the address of the function 'strncat_fn', which is not a null-terminated string}} 562067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 563067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 564067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_effects(char *y) { 565067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[8] = "123"; 566067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani size_t orig_len = strlen(x); 567067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char a = x[0]; 568067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 569067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) != 4) 570067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani return; 571067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 57243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncat(x, y, strlen(y)) == x); // expected-warning{{TRUE}} 57343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(x) == (orig_len + strlen(y))); // expected-warning{{TRUE}} 574067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 575067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 576067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_overflow_0(char *y) { 577067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 578067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 4) 5798912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(x, y, strlen(y)); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 580067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 581067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 582067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_overflow_1(char *y) { 583067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 584067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 3) 5858912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(x, y, strlen(y)); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 586067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 587067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 588067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_overflow_2(char *y) { 589067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 590067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 2) 5918912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(x, y, strlen(y)); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 592067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 593067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 594067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_overflow_3(char *y) { 595067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 596067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 4) 5978912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(x, y, 2); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 598067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 599067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_no_overflow_1(char *y) { 600067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[5] = "12"; 601067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 2) 602067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani strncat(x, y, strlen(y)); // no-warning 603067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 604067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani 605067bbd0e11c71a33b51832532e836971be697699Lenny Maioranivoid strncat_no_overflow_2(char *y) { 606067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani char x[4] = "12"; 607067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani if (strlen(y) == 4) 608067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani strncat(x, y, 1); // no-warning 609067bbd0e11c71a33b51832532e836971be697699Lenny Maiorani} 610318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 6118912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_symbolic_dst_length(char *dst) { 6128912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, "1234", 5); 61343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 6148912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6158912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6168912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_symbolic_src_length(char *src) { 6178912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst[8] = "1234"; 6188912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, src, 3); 61943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 6208912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6218912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst2[8] = "1234"; 6228912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst2, src, 4); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 6238912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6248912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6258912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_unknown_src_length(char *src, int offset) { 6268912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst[8] = "1234"; 6278912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, &src[offset], 3); 62843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 6298912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6308912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst2[8] = "1234"; 6318912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst2, &src[offset], 4); // expected-warning{{Size argument is greater than the free space in the destination buffer}} 6328912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6338912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6348912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose// There is no strncat_unknown_dst_length because if we can't get a symbolic 6358912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose// length for the "before" strlen, we won't be able to set one for "after". 6368912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6378912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_symbolic_limit(unsigned limit) { 6388912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst[6] = "1234"; 6398912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char src[] = "567"; 6408912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, src, limit); // no-warning 64143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose 64243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 64343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) == 4); // expected-warning{{UNKNOWN}} 6448912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6458912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6468912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_unknown_limit(float limit) { 6478912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char dst[6] = "1234"; 6488912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose char src[] = "567"; 6498912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, src, (size_t)limit); // no-warning 65043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose 65143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{TRUE}} 65243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strlen(dst) == 4); // expected-warning{{UNKNOWN}} 6538912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6548912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6558912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rosevoid strncat_too_big(char *dst, char *src) { 6568912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose if (strlen(dst) != (((size_t)0) - 2)) 6578912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose return; 6588912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose if (strlen(src) != 2) 6598912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose return; 6608912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose strncat(dst, src, 2); // expected-warning{{This expression will create a string whose length is too big to be represented as a size_t}} 6618912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose} 6628912aaedb413b15f6dd1d8997d80e1d505f7d52fJordy Rose 6636e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rosevoid strncat_zero(char *src) { 6646e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char dst[] = "123"; 6656e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose strncat(dst, src, 0); // no-warning 6666e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose} 6676e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose 6686e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rosevoid strncat_empty() { 6696e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char dst[8] = "123"; 6706e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose char src[] = ""; 6716e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose strncat(dst, src, 4); // no-warning 6726e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose} 6736e4244ee86a2d71af4eac791808f2dc50c7484e6Jordy Rose 674318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani//===----------------------------------------------------------------------=== 675318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani// strcmp() 676318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani//===----------------------------------------------------------------------=== 677318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 678318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani#define strcmp BUILTIN(strcmp) 679adc42d412d747391dbcee234610f00b0f087cf7bJordy Roseint strcmp(const char * s1, const char * s2); 680318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 681318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_constant0() { 68243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp("123", "123") == 0); // expected-warning{{TRUE}} 683318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 684318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 685318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_constant_and_var_0() { 686318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 68743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, "123") == 0); // expected-warning{{TRUE}} 688318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 689318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 690318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_constant_and_var_1() { 691318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 69243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp("123", x) == 0); // expected-warning{{TRUE}} 693318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 694318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 695318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_0() { 696318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 697318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "123"; 69843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == 0); // expected-warning{{TRUE}} 699318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 700318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 701318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_1() { 702318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "234"; 703318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "123"; 70443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == 1); // expected-warning{{TRUE}} 705318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 706318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 707318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_2() { 708318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 709318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "234"; 71043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == -1); // expected-warning{{TRUE}} 711318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 712318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 713318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_null_0() { 714318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = NULL; 715318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "123"; 7169e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcmp(x, y); // expected-warning{{Null pointer argument in call to string comparison function}} 717318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 718318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 719318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_null_1() { 720318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 721318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = NULL; 7229e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcmp(x, y); // expected-warning{{Null pointer argument in call to string comparison function}} 723318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 724318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 725318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_diff_length_0() { 726318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "12345"; 727318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "234"; 72843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == -1); // expected-warning{{TRUE}} 729318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 730318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 731318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_diff_length_1() { 732318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 733318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "23456"; 73443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == -1); // expected-warning{{TRUE}} 735318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 736318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 737318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_diff_length_2() { 738318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "12345"; 739318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "123"; 74043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == 1); // expected-warning{{TRUE}} 741318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 742318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 743318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maioranivoid strcmp_diff_length_3() { 744318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *x = "123"; 745318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani char *y = "12345"; 74643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(x, y) == -1); // expected-warning{{TRUE}} 747318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani} 748318dd92ad834857ea5bb91de288c1eb56cdbec1aLenny Maiorani 749adc42d412d747391dbcee234610f00b0f087cf7bJordy Rosevoid strcmp_embedded_null () { 75043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp("\0z", "\0y") == 0); // expected-warning{{TRUE}} 751adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose} 752adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose 753adc42d412d747391dbcee234610f00b0f087cf7bJordy Rosevoid strcmp_unknown_arg (char *unknown) { 75443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcmp(unknown, unknown) == 0); // expected-warning{{TRUE}} 755adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose} 756adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose 757357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani//===----------------------------------------------------------------------=== 758357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani// strncmp() 759357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani//===----------------------------------------------------------------------=== 760357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 761357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani#define strncmp BUILTIN(strncmp) 762adc42d412d747391dbcee234610f00b0f087cf7bJordy Roseint strncmp(const char *s1, const char *s2, size_t n); 763357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 764357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_constant0() { 76543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp("123", "123", 3) == 0); // expected-warning{{TRUE}} 766357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 767357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 768357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_constant_and_var_0() { 769357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 77043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, "123", 3) == 0); // expected-warning{{TRUE}} 771357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 772357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 773357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_constant_and_var_1() { 774357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 77543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp("123", x, 3) == 0); // expected-warning{{TRUE}} 776357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 777357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 778357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_0() { 779357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 780357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "123"; 78143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == 0); // expected-warning{{TRUE}} 782357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 783357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 784357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_1() { 785357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "234"; 786357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "123"; 78743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == 1); // expected-warning{{TRUE}} 788357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 789357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 790357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_2() { 791357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 792357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "234"; 79343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == -1); // expected-warning{{TRUE}} 794357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 795357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 796357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_null_0() { 797357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = NULL; 798357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "123"; 7999e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncmp(x, y, 3); // expected-warning{{Null pointer argument in call to string comparison function}} 800357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 801357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 802357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_null_1() { 803357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 804357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = NULL; 8059e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncmp(x, y, 3); // expected-warning{{Null pointer argument in call to string comparison function}} 806357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 807357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 808357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_0() { 809357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "12345"; 810357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "234"; 81143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 5) == -1); // expected-warning{{TRUE}} 812357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 813357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 814357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_1() { 815357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 816357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "23456"; 81743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 5) == -1); // expected-warning{{TRUE}} 818357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 819357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 820357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_2() { 821357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "12345"; 822357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "123"; 82343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 5) == 1); // expected-warning{{TRUE}} 824357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 825357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 826357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_3() { 827357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 828357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "12345"; 82943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 5) == -1); // expected-warning{{TRUE}} 830357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 831357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 832357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_4() { 833357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "123"; 834357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "12345"; 83543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == 0); // expected-warning{{TRUE}} 836357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 837357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 838357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_5() { 839357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "012"; 840357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "12345"; 84143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == -1); // expected-warning{{TRUE}} 842357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 843357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 844357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maioranivoid strncmp_diff_length_6() { 845357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *x = "234"; 846357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani char *y = "12345"; 84743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp(x, y, 3) == 1); // expected-warning{{TRUE}} 848357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani} 849357f6ee9f1f6f8e5027377cb3e5907c62c4fe3dfLenny Maiorani 850adc42d412d747391dbcee234610f00b0f087cf7bJordy Rosevoid strncmp_embedded_null () { 85143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncmp("ab\0zz", "ab\0yy", 4) == 0); // expected-warning{{TRUE}} 852adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose} 853adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose 854bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani//===----------------------------------------------------------------------=== 855bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani// strcasecmp() 856bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani//===----------------------------------------------------------------------=== 857bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 858bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani#define strcasecmp BUILTIN(strcasecmp) 859adc42d412d747391dbcee234610f00b0f087cf7bJordy Roseint strcasecmp(const char *s1, const char *s2); 860bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 861bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_constant0() { 86243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp("abc", "Abc") == 0); // expected-warning{{TRUE}} 863bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 864bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 865bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_constant_and_var_0() { 866bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abc"; 86743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, "Abc") == 0); // expected-warning{{TRUE}} 868bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 869bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 870bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_constant_and_var_1() { 871bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abc"; 87243d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp("Abc", x) == 0); // expected-warning{{TRUE}} 873bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 874bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 875bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_0() { 876bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abc"; 877bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "Abc"; 87843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == 0); // expected-warning{{TRUE}} 879bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 880bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 881bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_1() { 882bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "Bcd"; 883bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "abc"; 88443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == 1); // expected-warning{{TRUE}} 885bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 886bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 887bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_2() { 888bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abc"; 889bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "Bcd"; 89043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == -1); // expected-warning{{TRUE}} 891bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 892bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 893bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_null_0() { 894bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = NULL; 895bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "123"; 8969e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcasecmp(x, y); // expected-warning{{Null pointer argument in call to string comparison function}} 897bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 898bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 899bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_null_1() { 900bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "123"; 901bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = NULL; 9029e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strcasecmp(x, y); // expected-warning{{Null pointer argument in call to string comparison function}} 903bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 904bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 905bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_diff_length_0() { 906bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abcde"; 907bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "aBd"; 90843d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == -1); // expected-warning{{TRUE}} 909bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 910bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 911bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_diff_length_1() { 912bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "abc"; 913bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "aBdef"; 91443d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == -1); // expected-warning{{TRUE}} 915bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 916bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 917bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_diff_length_2() { 918bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "aBcDe"; 919bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "abc"; 92043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == 1); // expected-warning{{TRUE}} 921bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 922bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani 923bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maioranivoid strcasecmp_diff_length_3() { 924bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *x = "aBc"; 925bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani char *y = "abcde"; 92643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp(x, y) == -1); // expected-warning{{TRUE}} 927bd1d16a1792cd6ea5ede9869e18d781e3fc1a8c3Lenny Maiorani} 928454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 929adc42d412d747391dbcee234610f00b0f087cf7bJordy Rosevoid strcasecmp_embedded_null () { 93043d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strcasecmp("ab\0zz", "ab\0yy") == 0); // expected-warning{{TRUE}} 931adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose} 932adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose 933454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani//===----------------------------------------------------------------------=== 934454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani// strncasecmp() 935454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani//===----------------------------------------------------------------------=== 936454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 937454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani#define strncasecmp BUILTIN(strncasecmp) 938adc42d412d747391dbcee234610f00b0f087cf7bJordy Roseint strncasecmp(const char *s1, const char *s2, size_t n); 939454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 940454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_constant0() { 94143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp("abc", "Abc", 3) == 0); // expected-warning{{TRUE}} 942454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 943454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 944454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_constant_and_var_0() { 945454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abc"; 94643d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, "Abc", 3) == 0); // expected-warning{{TRUE}} 947454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 948454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 949454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_constant_and_var_1() { 950454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abc"; 95143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp("Abc", x, 3) == 0); // expected-warning{{TRUE}} 952454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 953454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 954454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_0() { 955454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abc"; 956454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "Abc"; 95743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == 0); // expected-warning{{TRUE}} 958454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 959454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 960454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_1() { 961454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "Bcd"; 962454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "abc"; 96343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == 1); // expected-warning{{TRUE}} 964454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 965454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 966454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_2() { 967454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abc"; 968454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "Bcd"; 96943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == -1); // expected-warning{{TRUE}} 970454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 971454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 972454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_null_0() { 973454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = NULL; 974454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "123"; 9759e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncasecmp(x, y, 3); // expected-warning{{Null pointer argument in call to string comparison function}} 976454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 977454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 978454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_null_1() { 979454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "123"; 980454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = NULL; 9819e49d9fbdc861c25c2480233147dee07f5fa9660Jordy Rose strncasecmp(x, y, 3); // expected-warning{{Null pointer argument in call to string comparison function}} 982454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 983454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 984454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_0() { 985454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abcde"; 986454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "aBd"; 98743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 5) == -1); // expected-warning{{TRUE}} 988454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 989454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 990454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_1() { 991454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abc"; 992454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "aBdef"; 99343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 5) == -1); // expected-warning{{TRUE}} 994454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 995454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 996454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_2() { 997454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "aBcDe"; 998454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "abc"; 99943d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 5) == 1); // expected-warning{{TRUE}} 1000454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 1001454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 1002454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_3() { 1003454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "aBc"; 1004454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "abcde"; 100543d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 5) == -1); // expected-warning{{TRUE}} 1006454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 1007454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 1008454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_4() { 1009454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abcde"; 1010454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "aBc"; 101143d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == 0); // expected-warning{{TRUE}} 1012454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 1013454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 1014454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_5() { 1015454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "abcde"; 1016454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "aBd"; 101743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == -1); // expected-warning{{TRUE}} 1018454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 1019454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani 1020454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maioranivoid strncasecmp_diff_length_6() { 1021454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *x = "aBDe"; 1022454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani char *y = "abc"; 102343d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp(x, y, 3) == 1); // expected-warning{{TRUE}} 1024454fd2d3a1b6d0ef225c5d3927c1ad3b97510d1aLenny Maiorani} 1025adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose 1026adc42d412d747391dbcee234610f00b0f087cf7bJordy Rosevoid strncasecmp_embedded_null () { 102743d9f0d4e9b88dcab473a359a7b5579c2a619b22Jordy Rose clang_analyzer_eval(strncasecmp("ab\0zz", "ab\0yy", 4) == 0); // expected-warning{{TRUE}} 1028adc42d412d747391dbcee234610f00b0f087cf7bJordy Rose} 102974c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks 103074c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks//===----------------------------------------------------------------------=== 1031af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose// strsep() 1032af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose//===----------------------------------------------------------------------=== 1033af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1034af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosechar *strsep(char **stringp, const char *delim); 1035af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1036af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_null_delim(char *s) { 1037af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose strsep(&s, NULL); // expected-warning{{Null pointer argument in call to strsep()}} 1038af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1039af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1040af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_null_search() { 1041af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose strsep(NULL, ""); // expected-warning{{Null pointer argument in call to strsep()}} 1042af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1043af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1044af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_return_original_pointer(char *s) { 1045af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *original = s; 1046af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *result = strsep(&s, ""); // no-warning 1047af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(original == result); // expected-warning{{TRUE}} 1048af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1049af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1050af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_null_string() { 1051af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *s = NULL; 1052af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *result = strsep(&s, ""); // no-warning 1053af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(result == NULL); // expected-warning{{TRUE}} 1054af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1055af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1056af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_changes_input_pointer(char *s) { 1057af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *original = s; 1058af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose strsep(&s, ""); // no-warning 1059af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(s == original); // expected-warning{{UNKNOWN}} 1060af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(s == NULL); // expected-warning{{UNKNOWN}} 1061af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1062af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose // Check that the value is symbolic. 1063af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose if (s == NULL) { 1064af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(s == NULL); // expected-warning{{TRUE}} 1065af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose } 1066af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1067af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1068af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rosevoid strsep_changes_input_string() { 1069af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char str[] = "abc"; 1070af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1071af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(str[1] == 'b'); // expected-warning{{TRUE}} 1072af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1073af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose char *s = str; 1074af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose strsep(&s, "b"); // no-warning 1075af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1076af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose // The real strsep will change the first delimiter it finds into a NUL 1077af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose // character. For now, we just model the invalidation. 1078af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose clang_analyzer_eval(str[1] == 'b'); // expected-warning{{UNKNOWN}} 1079af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose} 1080af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose 1081af22621352481e91488a54ea0e0b5e73f6551ab7Jordan Rose//===----------------------------------------------------------------------=== 108274c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// FIXMEs 108374c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks//===----------------------------------------------------------------------=== 108474c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks 108574c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// The analyzer_eval call below should evaluate to true. We are being too 108674c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// aggressive in marking the (length of) src symbol dead. The length of dst 108774c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// depends on src. This could be explicitely specified in the checker or the 108874c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// logic for handling MetadataSymbol in SymbolManager needs to change. 108974c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaksvoid strcat_symbolic_src_length(char *src) { 109074c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks char dst[8] = "1234"; 109174c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks strcat(dst, src); 109274c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks clang_analyzer_eval(strlen(dst) >= 4); // expected-warning{{UNKNOWN}} 109374c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks} 109474c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks 109574c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// The analyzer_eval call below should evaluate to true. Most likely the same 109674c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks// issue as the test above. 109774c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaksvoid strncpy_exactly_matching_buffer2(char *y) { 109874c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks if (strlen(y) >= 4) 109974c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks return; 110074c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks 110174c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks char x[4]; 110274c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks strncpy(x, y, 4); // no-warning 110374c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks 110474c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks // This time, we know that y fits in x anyway. 110574c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks clang_analyzer_eval(strlen(x) <= 3); // expected-warning{{UNKNOWN}} 110674c0d6988462c2cb882e7a8b8050fe119a5af56fAnna Zaks} 1107