walkero
/
cppcheck
1
0
Fork 0
Code Issues Pull Requests Projects Releases 1 Wiki Activity

Added check: suspicious usage of strtok

This commit is contained in:
Daniel Marjamäki 2007-06-05 20:29:03 +00:00
parent 10a7868fc6
commit 921dd3cf21
5 changed files with 133 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

113
CheckOther.cpp
View File

@ -2,6 +2,7 @@
#include "CheckOther.h" #include "CheckOther.h"
#include "Tokenize.h" #include "Tokenize.h"
#include "CommonCheck.h" #include "CommonCheck.h"
#include <list>
#include <sstream> #include <sstream>
#include <stdlib.h> // <- atoi #include <stdlib.h> // <- atoi
//--------------------------------------------------------------------------- //---------------------------------------------------------------------------
@ -288,3 +289,115 @@ void InvalidFunctionUsage()
} }
} }
} }
//---------------------------------------------------------------------------
//---------------------------------------------------------------------------
// Dangerous usage of 'strtok'
//---------------------------------------------------------------------------
static TOKEN *GetFunction( TOKEN *content )
{
TOKEN *func = NULL;
int indentlevel = 0;
for (TOKEN *tok = tokens; tok; tok = tok->next)
{
if ( tok->str[0] == '{' )
indentlevel++;
else if ( tok->str[0] == '}' )
{
indentlevel--;
if (indentlevel == 0)
func = NULL;
}
else if (indentlevel == 0)
{
if (tok->str[0] == ';')
func = NULL;
else if ( match(tok, "var :: var (") )
func = tok->next->next;
else if ( match(tok, "type var (") )
func = tok->next;
}
else if (indentlevel>0 && func)
{
if ( tok == content )
return func;
}
}
return NULL;
}
void WarningStrTok()
{
std::list<TOKEN *> funclist;
// Which functions contain the 'strtok'?
for (TOKEN *tok = tokens; tok; tok = tok->next)
{
if (strcmp(tok->str,"strtok")!=0)
continue;
TOKEN *func = GetFunction(tok);
if (!func)
continue;
funclist.push_back( func );
}
// No functions in list => No errors
if ( funclist.empty() )
return;
// Take closer look at the strtok usage.
std::list<TOKEN *>::const_iterator it1;
for (it1 = funclist.begin(); it1 != funclist.end(); it1++)
{
// Search this function to check that it doesn't call any other of
// the functions in the funclist.
int indentlevel = 0;
for ( TOKEN *tok = *it1; tok; tok = tok->next )
{
if ( tok->str[0] == '{' )
indentlevel++;
else if ( tok->str[0] == '}' )
{
if ( indentlevel <= 1 )
break;
indentlevel--;
}
else if ( indentlevel >= 1 )
{
// Only interested in function calls..
if (!(IsName(tok->str) && strcmp(getstr(tok,1), "(") == 0))
continue;
// Check if function name is in funclist..
std::list<TOKEN *>::const_iterator it2;
for (it2 = funclist.begin(); it2 != funclist.end(); it2++)
{
if ( strcmp( tok->str, (*it2)->str ) )
continue;
std::ostringstream ostr;
ostr << FileLine(tok) << ": Possible bug. Both '" << (*it1)->str << "' and '" << (*it2)->str << "' uses strtok.";
ReportErr(ostr.str());
}
}
}
}
}
//---------------------------------------------------------------------------

3
CheckOther.h
View File

@ -25,6 +25,9 @@ void WarningDangerousFunctions();
// Invalid function usage.. // Invalid function usage..
void InvalidFunctionUsage(); void InvalidFunctionUsage();
// Dangerous usage of 'strtok'
void WarningStrTok();
//--------------------------------------------------------------------------- //---------------------------------------------------------------------------
#endif #endif

3
main.cpp
View File

@ -135,6 +135,9 @@ static void CppCheck(const char FileName[])
// Invalid function usage.. // Invalid function usage..
InvalidFunctionUsage(); InvalidFunctionUsage();
// Dangerous usage of strtok
WarningStrTok();
// Clean up tokens.. // Clean up tokens..
DeallocateTokens(); DeallocateTokens();
} }

1
testfunc5/err.msg Normal file
View File

@ -0,0 +1 @@
[testfunc5\testfunc5.cpp:12]: Possible bug. Both 'f2' and 'f1' uses strtok.

13
testfunc5/testfunc5.cpp Normal file
View File

@ -0,0 +1,13 @@
void f1()
{
strtok(str,"abc");
}
void f2()
{
strtok(str,"abc");
f1();
}