final fix for #3063 (false negative: multi dimensional arrays not well supported)

This commit is contained in:
Robert Reif 2011-09-03 21:51:00 -04:00
parent 2e33bb93de
commit e782d98241
2 changed files with 50 additions and 17 deletions

View File

@ -1099,8 +1099,12 @@ void CheckBufferOverrun::checkScope(const Token *tok, const ArrayInfo &arrayInfo
continue; continue;
} }
else if (Token::Match(tok, "%varid% [ %num% ]", arrayInfo.varid())) else if (Token::Match(tok, "%var% [ %num% ]") && tok->varId())
{ {
const Variable *var = _tokenizer->getSymbolDatabase()->getVariableFromVarId(tok->varId());
if (!var || var->varId() != arrayInfo.varid())
continue;
std::vector<MathLib::bigint> indexes; std::vector<MathLib::bigint> indexes;
for (const Token *tok2 = tok->next(); Token::Match(tok2, "[ %num% ]"); tok2 = tok2->tokAt(3)) for (const Token *tok2 = tok->next(); Token::Match(tok2, "[ %num% ]"); tok2 = tok2->tokAt(3))
{ {
@ -1302,6 +1306,12 @@ void CheckBufferOverrun::checkGlobalAndLocalVariable()
{ {
ArrayInfo arrayInfo(var, _tokenizer); ArrayInfo arrayInfo(var, _tokenizer);
const Token *tok = var->nameToken(); const Token *tok = var->nameToken();
if (var->scope() && var->scope()->isClassOrStruct())
{
tok = var->scope()->classEnd->next();
}
else
{
while (tok && tok->str() != ";") while (tok && tok->str() != ";")
{ {
if (tok->str() == "{") if (tok->str() == "{")
@ -1317,6 +1327,7 @@ void CheckBufferOverrun::checkGlobalAndLocalVariable()
break; break;
if (tok->str() == "{") if (tok->str() == "{")
tok = tok->next(); tok = tok->next();
}
checkScope(tok, arrayInfo); checkScope(tok, arrayInfo);
} }
} }

View File

@ -1102,6 +1102,30 @@ private:
"}\n"); "}\n");
ASSERT_EQUALS("[test.cpp:3]: (error) Array 'y[2][2][2]' index y[0][2][0] out of bounds\n" ASSERT_EQUALS("[test.cpp:3]: (error) Array 'y[2][2][2]' index y[0][2][0] out of bounds\n"
"[test.cpp:4]: (error) Array 'y[2][2][2]' index y[0][0][2] out of bounds\n", errout.str()); "[test.cpp:4]: (error) Array 'y[2][2][2]' index y[0][0][2] out of bounds\n", errout.str());
check("struct TEST\n"
"{\n"
" char a[10];\n"
" char b[10][5];\n"
"};\n"
"void foo()\n"
"{\n"
" TEST test;\n"
" test.a[10] = 3;\n"
" test.b[10][2] = 4;\n"
" test.b[0][19] = 4;\n"
" TEST *ptest;\n"
" ptest = &test;\n"
" ptest->a[10] = 3;\n"
" ptest->b[10][2] = 4;\n"
" ptest->b[0][19] = 4;\n"
"}\n");
ASSERT_EQUALS("[test.cpp:10]: (error) Array 'b[10][5]' index b[10][2] out of bounds\n"
"[test.cpp:11]: (error) Array 'b[10][5]' index b[0][19] out of bounds\n"
"[test.cpp:15]: (error) Array 'b[10][5]' index b[10][2] out of bounds\n"
"[test.cpp:16]: (error) Array 'b[10][5]' index b[0][19] out of bounds\n"
"[test.cpp:9]: (error) Array 'a[10]' index 10 out of bounds\n"
"[test.cpp:14]: (error) Array 'a[10]' index 10 out of bounds\n", errout.str());
} }
void array_index_multidim() void array_index_multidim()
@ -1988,9 +2012,7 @@ private:
" b[i] = b[i+1];\n" " b[i] = b[i+1];\n"
" }\n" " }\n"
"}\n"); "}\n");
TODO_ASSERT_EQUALS("error", // wanted result ASSERT_EQUALS("[test.cpp:8]: (error) Array 'b[7]' index 7 out of bounds\n", errout.str());
"", // current result
errout.str());
} }
void buffer_overrun_19() // #2597 - class member with unknown type void buffer_overrun_19() // #2597 - class member with unknown type