false positive in checking memset/memcpy

Static source code analysis tool for C and C++ code

Brought to you by: danielmarjamaki

false positive in checking memset/memcpy

Forum: Development

Creator: Grissiom

Created: 2021-08-04

Updated: 2021-11-11

Small test code:

void func(void)
{
        some_type_t buf;
        memset(&buf, 0, sizeof(buf));
}

checker yield:

$ cppcheck --bug-hunting t.c 
Checking t.c ...
t.c:5:8: error: Buffer read/write, when calling 'memset' it cannot be determined that 1st argument is not overflowed [bughuntingBufferOverflow]
 memset(&buf, 0, sizeof(buf));

IMHO, the code is right, the checker is wrong. Am I wrong with this?

Daniel Marjamäki - 2021-08-05

Yes I agree the code looks safe.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Daniel Marjamäki - 2021-08-05

I have created ticket https://trac.cppcheck.net/ticket/10402

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Grissiom - 2021-11-08

Is there any progress? This problem bothered me very much.... Maybe you could point out where and how to fix it, I could fire a PR if I could fix it by myself.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Daniel Marjamäki - 2021-11-11

sorry for late reply. no there was no progress yet. I need to dig in a little to even see where the problem is.. but spontanously it should be something in exprengine.cpp .. maybe in the function executeFunctionCall.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.