[llvm-bugs] [Bug 39792] New: False positive on strcpy targeting struct member

via llvm-bugs llvm-bugs at lists.llvm.org
Mon Nov 26 10:22:32 PST 2018


            Bug ID: 39792
           Summary: False positive on strcpy targeting struct member
           Product: clang
           Version: 7.0
          Hardware: All
                OS: Windows 2000
            Status: NEW
          Severity: normal
          Priority: P
         Component: Static Analyzer
          Assignee: dcoughlin at apple.com
          Reporter: pasa at strusoft.hu
                CC: dcoughlin at apple.com, llvm-bugs at lists.llvm.org

The code below is correctly silent on the first strcpy but warns on the second.
It should be silenced whenever the target is large enough to contain the string
literal regardless where the target is located.

void f()
  char s1[100];
  strcpy(s1, "hello");

  struct S {char s1[100];};
  S s;
  strcpy(s.s1, "hello");

 warning: Call to function 'strcpy' is insecure as it does not provide bounding
of the memory buffer. Replace unbounded copy functions with analogous functions
that support length arguments such as 'strlcpy'. CWE-119
  strcpy(s.s1, "hello");

You are receiving this mail because:
You are on the CC list for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/llvm-bugs/attachments/20181126/8833c6f1/attachment.html>

More information about the llvm-bugs mailing list