Add RULE-21-18 test-case

Nikita Kraiouchkine · Nikita Kraiouchkine · commit 406dab5d916b · 2023-04-05T22:54:11.000+02:00
diff --git a/c/misra/test/rules/RULE-21-18/StringLibrarySizeArgumentOutOfBounds.expected b/c/misra/test/rules/RULE-21-18/StringLibrarySizeArgumentOutOfBounds.expected
@@ -1 +1,35 @@
-No expected results have yet been specified
+| test.c:16:5:16:10 | call to memcpy | The size of the $@ passed to memcpy is 64 bytes, but the $@ is 65 bytes. | test.c:16:12:16:15 | buf1 | write buffer | test.c:16:24:16:39 | ... + ... | size argument |
+| test.c:16:5:16:10 | call to memcpy | The size of the $@ passed to memcpy is 64 bytes, but the $@ is 65 bytes. | test.c:16:18:16:21 | buf2 | read buffer | test.c:16:24:16:39 | ... + ... | size argument |
+| test.c:18:5:18:10 | call to memcpy | The size of the $@ passed to memcpy is 63 bytes, but the $@ is 64 bytes. | test.c:18:12:18:19 | ... + ... | write buffer | test.c:18:28:18:39 | sizeof(<expr>) | size argument |
+| test.c:18:5:18:10 | call to memcpy | The size of the $@ passed to memcpy is 64 bytes, but the size of the $@ is only 63 bytes. | test.c:18:22:18:25 | buf2 | read buffer | test.c:18:12:18:19 | ... + ... | write buffer |
+| test.c:19:5:19:10 | call to memcpy | The size of the $@ passed to memcpy is 63 bytes, but the $@ is 128 bytes. | test.c:19:18:19:25 | ... + ... | read buffer | test.c:19:28:19:43 | ... * ... | size argument |
+| test.c:19:5:19:10 | call to memcpy | The size of the $@ passed to memcpy is 64 bytes, but the $@ is 128 bytes. | test.c:19:12:19:15 | buf1 | write buffer | test.c:19:28:19:43 | ... * ... | size argument |
+| test.c:25:5:25:10 | call to memcmp | The size of the $@ passed to memcmp is 64 bytes, but the $@ is 65 bytes. | test.c:25:12:25:15 | buf1 | write buffer | test.c:25:24:25:39 | ... + ... | size argument |
+| test.c:25:5:25:10 | call to memcmp | The size of the $@ passed to memcmp is 64 bytes, but the $@ is 65 bytes. | test.c:25:18:25:21 | buf2 | read buffer | test.c:25:24:25:39 | ... + ... | size argument |
+| test.c:27:5:27:10 | call to memcmp | The size of the $@ passed to memcmp is 63 bytes, but the $@ is 64 bytes. | test.c:27:12:27:19 | ... + ... | write buffer | test.c:27:28:27:39 | sizeof(<expr>) | size argument |
+| test.c:27:5:27:10 | call to memcmp | The size of the $@ passed to memcmp is 64 bytes, but the size of the $@ is only 63 bytes. | test.c:27:22:27:25 | buf2 | read buffer | test.c:27:12:27:19 | ... + ... | write buffer |
+| test.c:28:5:28:10 | call to memcmp | The size of the $@ passed to memcmp is 63 bytes, but the $@ is 128 bytes. | test.c:28:18:28:25 | ... + ... | read buffer | test.c:28:28:28:43 | ... * ... | size argument |
+| test.c:28:5:28:10 | call to memcmp | The size of the $@ passed to memcmp is 64 bytes, but the $@ is 128 bytes. | test.c:28:12:28:15 | buf1 | write buffer | test.c:28:28:28:43 | ... * ... | size argument |
+| test.c:33:5:33:10 | call to memchr | The size of the $@ passed to memchr is 128 bytes, but the $@ is 129 bytes. | test.c:33:12:33:14 | buf | read buffer | test.c:33:20:33:34 | ... + ... | size argument |
+| test.c:34:5:34:10 | call to memchr | The size of the $@ passed to memchr is 128 bytes, but the $@ is 129 bytes. | test.c:34:12:34:14 | buf | read buffer | test.c:34:20:34:34 | ... + ... | size argument |
+| test.c:36:5:36:10 | call to memchr | The $@ passed to memchr is null. | test.c:36:12:36:15 | 0 | argument | test.c:36:12:36:15 | 0 |  |
+| test.c:41:5:41:10 | call to memset | The size of the $@ passed to memset is 128 bytes, but the $@ is 129 bytes. | test.c:41:12:41:14 | buf | write buffer | test.c:41:20:41:34 | ... + ... | size argument |
+| test.c:42:5:42:10 | call to memset | The size of the $@ passed to memset is 128 bytes, but the $@ is 129 bytes. | test.c:42:12:42:14 | buf | write buffer | test.c:42:20:42:34 | ... + ... | size argument |
+| test.c:44:5:44:10 | call to memset | The $@ passed to memset is null. | test.c:44:12:44:15 | 0 | argument | test.c:44:12:44:15 | 0 |  |
+| test.c:50:5:50:11 | call to memmove | The size of the $@ passed to memmove is 128 bytes, but the $@ is 129 bytes. | test.c:50:13:50:16 | buf1 | write buffer | test.c:50:25:50:40 | ... + ... | size argument |
+| test.c:50:5:50:11 | call to memmove | The size of the $@ passed to memmove is 256 bytes, but the size of the $@ is only 128 bytes. | test.c:50:19:50:22 | buf2 | read buffer | test.c:50:13:50:16 | buf1 | write buffer |
+| test.c:52:5:52:11 | call to memmove | The size of the $@ passed to memmove is 127 bytes, but the $@ is 128 bytes. | test.c:52:13:52:20 | ... + ... | write buffer | test.c:52:29:52:40 | sizeof(<expr>) | size argument |
+| test.c:52:5:52:11 | call to memmove | The size of the $@ passed to memmove is 256 bytes, but the size of the $@ is only 127 bytes. | test.c:52:23:52:26 | buf2 | read buffer | test.c:52:13:52:20 | ... + ... | write buffer |
+| test.c:54:5:54:11 | call to memmove | The size of the $@ passed to memmove is 128 bytes, but the $@ is 256 bytes. | test.c:54:19:54:22 | buf1 | read buffer | test.c:54:25:54:36 | sizeof(<expr>) | size argument |
+| test.c:62:5:62:11 | call to strncpy | The size of the $@ passed to strncpy is 128 bytes, but the $@ is 129 bytes. | test.c:62:13:62:16 | buf1 | write buffer | test.c:62:25:62:40 | ... + ... | size argument |
+| test.c:62:5:62:11 | call to strncpy | The size of the $@ passed to strncpy is 256 bytes, but the size of the $@ is only 128 bytes. | test.c:62:19:62:22 | buf2 | read buffer | test.c:62:13:62:16 | buf1 | write buffer |
+| test.c:64:5:64:11 | call to strncpy | The size of the $@ passed to strncpy is 127 bytes, but the $@ is 128 bytes. | test.c:64:13:64:20 | ... + ... | write buffer | test.c:64:29:64:40 | sizeof(<expr>) | size argument |
+| test.c:64:5:64:11 | call to strncpy | The size of the $@ passed to strncpy is 256 bytes, but the size of the $@ is only 127 bytes. | test.c:64:23:64:26 | buf2 | read buffer | test.c:64:13:64:20 | ... + ... | write buffer |
+| test.c:77:5:77:11 | call to strncat | The $@ passed to strncat might not be null-terminated. | test.c:77:13:77:16 | buf1 | argument | test.c:77:13:77:16 | buf1 |  |
+| test.c:81:5:81:11 | call to strncat | The size of the $@ passed to strncat is 6 bytes, but the size of the $@ is only 5 bytes. | test.c:81:25:81:31 | 12345 | read buffer | test.c:81:13:81:20 | call to get_ca_5 | write buffer |
+| test.c:83:5:83:11 | call to strncat | The size of the $@ passed to strncat is 5 bytes, but the size of the $@ is only 4 bytes. | test.c:83:29:83:34 | 1234 | read buffer | test.c:83:13:83:26 | ... + ... | write buffer |
+| test.c:94:5:94:11 | call to strncmp | The size of the $@ passed to strncmp is 5 bytes, but the $@ is 6 bytes. | test.c:94:23:94:30 | ca5_good | read buffer | test.c:94:33:94:33 | 6 | size argument |
+| test.c:95:5:95:11 | call to strncmp | The size of the $@ passed to strncmp is 5 bytes, but the $@ is 6 bytes. | test.c:95:13:95:20 | ca5_good | write buffer | test.c:95:32:95:32 | 6 | size argument |
+| test.c:95:5:95:11 | call to strncmp | The size of the $@ passed to strncmp is 5 bytes, but the $@ is 6 bytes. | test.c:95:23:95:29 | ca5_bad | read buffer | test.c:95:32:95:32 | 6 | size argument |
+| test.c:102:5:102:11 | call to strxfrm | The size of the $@ passed to strxfrm is 64 bytes, but the $@ is 65 bytes. | test.c:102:13:102:15 | buf | write buffer | test.c:102:25:102:39 | ... + ... | size argument |
+| test.c:104:5:104:11 | call to strxfrm | The $@ passed to strxfrm might not be null-terminated. | test.c:104:22:104:25 | buf2 | argument | test.c:104:22:104:25 | buf2 |  |
diff --git a/c/misra/test/rules/RULE-21-18/test.c b/c/misra/test/rules/RULE-21-18/test.c
@@ -0,0 +1,107 @@
+// test partially copied from CERT-C ARR38-C test
+#include <stdlib.h>
+#include <string.h>
+
+char *get_ca_5(void) {
+  void *ptr = malloc(5 * sizeof(char));
+  memset(ptr, 0, 5 * sizeof(char));
+  return (char *)ptr;
+}
+
+void test(void) {
+  {
+    char buf1[64];
+    char buf2[64];
+    memcpy(buf1, buf2, sizeof(buf1));         // COMPLIANT
+    memcpy(buf1, buf2, sizeof(buf1) + 1);     // NON_COMPLIANT
+    memcpy(buf1, buf2, sizeof(buf1) - 1);     // COMPLIANT
+    memcpy(buf1 + 1, buf2, sizeof(buf1));     // NON_COMPLIANT
+    memcpy(buf1, buf2 + 1, sizeof(buf1) * 2); // NON_COMPLIANT
+  }
+  {
+    char buf1[64];
+    char buf2[64];
+    memcmp(buf1, buf2, sizeof(buf1));         // COMPLIANT
+    memcmp(buf1, buf2, sizeof(buf1) + 1);     // NON_COMPLIANT
+    memcmp(buf1, buf2, sizeof(buf1) - 1);     // COMPLIANT
+    memcmp(buf1 + 1, buf2, sizeof(buf1));     // NON_COMPLIANT
+    memcmp(buf1, buf2 + 1, sizeof(buf1) * 2); // NON_COMPLIANT
+  }
+  {
+    char buf[128];
+    memchr(buf, 0, sizeof(buf));     // COMPLIANT
+    memchr(buf, 0, sizeof(buf) + 1); // NON_COMPLIANT
+    memchr(buf, 0, sizeof(buf) + 1); // NON_COMPLIANT
+    memchr(buf, 0, sizeof(buf) - 1); // COMPLIANT
+    memchr(NULL, 0, sizeof(buf));    // NON_COMPLIANT
+  }
+  {
+    char buf[128];
+    memset(buf, 0, sizeof(buf));     // COMPLIANT
+    memset(buf, 0, sizeof(buf) + 1); // NON_COMPLIANT
+    memset(buf, 0, sizeof(buf) + 1); // NON_COMPLIANT
+    memset(buf, 0, sizeof(buf) - 1); // COMPLIANT
+    memset(NULL, 0, sizeof(buf));    // NON_COMPLIANT
+  }
+  {
+    char buf1[128];
+    char buf2[256];
+    memmove(buf1, buf2, sizeof(buf1));     // COMPLIANT
+    memmove(buf1, buf2, sizeof(buf1) + 1); // NON_COMPLIANT
+    memmove(buf1, buf2, sizeof(buf1) - 1); // COMPLIANT
+    memmove(buf1 + 1, buf2, sizeof(buf1)); // NON_COMPLIANT
+    memmove(buf1, buf2 + 1, sizeof(buf1)); // COMPLIANT
+    memmove(buf2, buf1, sizeof(buf2));     // NON_COMPLIANT
+    memmove(buf2, buf1, sizeof(buf1));     // COMPLIANT
+  }
+  {
+    char buf1[128];
+    char buf2[256] = {0};
+    strncpy(buf2, buf1, sizeof(buf1));     // COMPLIANT
+    strncpy(buf1, buf2, sizeof(buf1));     // COMPLIANT
+    strncpy(buf1, buf2, sizeof(buf1) + 1); // NON_COMPLIANT
+    strncpy(buf1, buf2, sizeof(buf1) - 1); // COMPLIANT
+    strncpy(buf1 + 1, buf2, sizeof(buf1)); // NON_COMPLIANT
+  }
+  {
+    char buf0[10]; // memset after first use
+    char buf1[10]; // no memset
+    char buf2[10]; // memset before first use
+    char buf3[10] = {'\0'};
+    char buf4[10] = "12345";
+
+    strncat(buf0, " ",
+            1); // NON_COMPLIANT[FALSE_NEGATIVE] - buf0 not null-terminated
+    memset(buf0, 0, sizeof(buf0));   // COMPLIANT
+    memset(buf2, 0, sizeof(buf2));   // COMPLIANT
+    strncat(buf1, " ", 1);           // NON_COMPLIANT - not null-terminated
+    strncat(buf2, " ", 1);           // COMPLIANT
+    strncat(buf3, " ", 1);           // COMPLIANT
+    strncat(buf4, "12345", 5);       // NON_COMPLIANT[FALSE_NEGATIVE]
+    strncat(get_ca_5(), "12345", 5); // NON_COMPLIANT - null-terminator past end
+    strncat(get_ca_5(), "1234", 4);  // COMPLIANT
+    strncat(get_ca_5() + 1, "1234", 4); // NON_COMPLIANT
+    strncat(get_ca_5(), "12", 2);       // COMPLIANT
+  }
+  {
+    char ca5_good[5] = "test";      // ok
+    char ca5_bad[5] = "test1";      // no null terminator
+    char ca6_good[6] = "test1";     // ok
+    char ca6_bad[6] = "test12";     // no null terminator
+    strncmp(ca5_good, ca5_bad, 4);  // COMPLIANT
+    strncmp(ca5_good, ca5_bad, 5);  // COMPLIANT
+    strncmp(ca6_good, ca5_bad, 5);  // COMPLIANT
+    strncmp(ca6_good, ca5_good, 6); // COMPLIANT[FALSE_POSITIVE]
+    strncmp(ca5_good, ca5_bad, 6);  // NON_COMPLIANT
+  }
+  // strxfrm
+  {
+    char buf[64];
+    char buf2[128];
+    strxfrm(buf, "abc", sizeof(buf));     // COMPLIANT
+    strxfrm(buf, "abc", sizeof(buf) + 1); // NON_COMPLIANT
+    strxfrm(buf, "abc", sizeof(buf) - 1); // COMPLIANT
+    strxfrm(buf + 1, buf2,
+            sizeof(buf) - 1); // NON_COMPLIANT - not null-terminated
+  }
+}
