walkero
/
cppcheck
1
0
Fork 0
Code Issues Pull Requests Projects Releases 1 Wiki Activity

cert.py: Add ENV33-C-EX1 exception (#2396) 

* cert.py: Add ENV33-C-EX1 exception

ENV33-C-EX1: It is permissible to call system() with a null pointer
argument to determine the presence of a command processor for the
system. [1]

[1]: https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?pageId=87152177

* Handle different null-pointer constants
This commit is contained in:
Georgy Komarov 2019-11-24 12:31:08 +03:00 committed by Daniel Marjamäki
parent c3c3d6770c
commit 2c28440f15
2 changed files with 17 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
addons/cert.py
View File

@ -242,6 +242,18 @@ def int31(data, platform):
def env33(data): def env33(data):
for token in data.tokenlist: for token in data.tokenlist:
if isFunctionCall(token, ('system',), 1): if isFunctionCall(token, ('system',), 1):
# Invalid syntax
if not token.next.astOperand2:
continue
# ENV33-C-EX1: It is permissible to call system() with a null
# pointer argument to determine the presence of a command processor
# for the system.
argValue = token.next.astOperand2.getValue(0)
if argValue and argValue.intvalue == 0 and argValue.isKnown():
continue
reportError(token, 'style', 'Do not call system()', 'ENV33-C') reportError(token, 'style', 'Do not call system()', 'ENV33-C')

5
addons/test/cert-test.c
View File

@ -77,6 +77,11 @@ unsigned char int31(int x)
void env33() void env33()
{ {
system("chmod -x $(which chmod)"); // cert-ENV33-C system("chmod -x $(which chmod)"); // cert-ENV33-C
system(""); // cert-ENV33-C
system(NULL); // no-warning
system(0); // no-warning
const int *np = NULL;
system(np); // no-warning
int system; int system;
} }