hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-05-05 13:45:19 +02:00
Code Issues Packages Projects Releases Wiki Activity

[CPP-434] When analyzing overflow, discard any explicit casts.

Browse Source 
Use the simple range analysis library to detect which
          additions may in fact overflow.
This commit is contained in:
Ziemowit Laski
2019-10-22 15:21:30 -07:00
parent 06f63c5477
commit ad5aa182df
4 changed files with 13 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cpp/ql/test/query-tests/Likely Bugs/Arithmetic/BadAdditionOverflowCheck/test.cpp
View File

@@ -1,11 +1,11 @@
// Test for BadAdditionOverflowCheck.
bool checkOverflow1(unsigned short a, unsigned short b) {
return (a + b < a); // BAD: a + b is automatically promoted to int.
return (a + b < a); // BAD: comparison always false (due to promotion).
}
// Test for BadAdditionOverflowCheck.
bool checkOverflow2(unsigned short a, unsigned short b) {
return ((unsigned short)(a + b) < a); // BAD: a + b overflow undefined
return ((unsigned short)(a + b) < a); // GOOD
}
// Test for PointlessSelfComparison.