hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 03:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Addressing false positive with strncpy.

Browse Source
This commit is contained in:
REDMOND\brodes
2024-08-08 15:08:53 -04:00
parent 9105375097
commit abd0a076a8
3 changed files with 25 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
cpp/ql/lib/semmle/code/cpp/security/BufferAccess.qll
View File

@@ -125,10 +125,11 @@ class StrncpyBA extends BufferAccess {
result = this.(FunctionCall).getArgument(0) and
bufferDesc = "destination buffer" and
accessType = 2
or
result = this.(FunctionCall).getArgument(1) and
bufferDesc = "source buffer" and
accessType = 2
// Ignore this case as reading past the source null terminator is not the behavior of strncpy
// or
// result = this.(FunctionCall).getArgument(1) and
// bufferDesc = "source buffer" and
// accessType = 2
}
override Expr getSizeExpr() { result = this.(FunctionCall).getArgument(2) }