Merge pull request #6120 from MathiasVP/not-overflow-is-barrier-in-cwe-190

C++: Recognize any non-overflowing arithmetic expression as a barrier for `cpp/uncontrolled-arithmetic`
2026-05-04 13:15:21 +02:00 · 2021-06-23 10:35:33 +01:00
parent c0964617d7 a611e76ed2
commit 298f70f082
2 changed files with 23 additions and 6 deletions
--- a/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/uncontrolled/test.c
+++ b/cpp/ql/test/query-tests/Security/CWE/CWE-190/semmle/uncontrolled/test.c
@@ -3,12 +3,12 @@

 int rand(void);
 void trySlice(int start, int end);
+void add_100(int);

 #define RAND() rand()
 #define RANDN(n) (rand() % n)
 #define RAND2() (rand() ^ rand())
-
-
+#define RAND_MAX 32767



@@ -99,4 +99,14 @@ void randomTester() {
    *ptr_r = RAND();
    r -= 100; // BAD
  }
+
+  {
+    int r = rand();
+    r = ((2.0 / (RAND_MAX + 1)) * r - 1.0);
+    add_100(r);
+  }
 }
+
+void add_100(int r) {
+  r += 100; // GOOD
+}