cppcheck / Discussion / General Discussion: False positive null pointer deref

False positive null pointer deref

Created: 2022-09-07

Updated: 2022-09-13

Test-case (tested with cppcheck v2.8.2 as well as main branch commit 5477130):

int
f(void)
{
    if (0)
        *(int *)0 = 1;
    return 0 ? *(int *)0 : 1;
}

This raises the following warnings:

$ ./cppcheck /tmp/test.c
Checking /tmp/test.c ...
/tmp/test.c:5:4: error: Null pointer dereference: (int*)0 [nullPointer]
  *(int *)0 = 1;
   ^
/tmp/test.c:6:14: error: Null pointer dereference: (int*)0 [nullPointer]
 return 0 ? *(int *)0 : 1;
             ^

Use-case: this false positive was detected when used on a macro which takes an optional pointer. Something along the lines of:

#define optional_ret(X) do { \
    /* do stuff */ \
    (X) ? (*(int *)(X) = 5) : 0; \
} while (0)

void f2(void) { optional_ret(NULL); }

CHR - 2022-09-13

Thanks for reporting, ticket is here: https://trac.cppcheck.net/ticket/11311

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

False positive null pointer deref

Static source code analysis tool for C and C++ code

Forums

Help

False positive null pointer deref

False positive null pointer deref

Static source code analysis tool for C and C++ code

Forums

Help

False positive null pointer deref document.SUBSCRIPTION_OPTIONS = { "thing": "topic", "subscribed": false, "url": "subscribe", "icon": { "css": "fa fa-envelope-o" } };

False positive null pointer deref