[LLVMbugs] [Bug 12741] New: Need a fixit for malloc(sizeof(T)*len+1)

bugzilla-daemon Sat, 05 May 2012 02:04:17 -0700

http://llvm.org/bugs/show_bug.cgi?id=12741


             Bug #: 12741
           Summary: Need a fixit for malloc(sizeof(T)*len+1)
           Product: clang
           Version: trunk
          Platform: PC
        OS/Version: Linux
            Status: NEW
          Severity: enhancement
          Priority: P
         Component: Static Analyzer
        AssignedTo: [email protected]
        ReportedBy: [email protected]
                CC: [email protected]
    Classification: Unclassified


The following bug was recently detected by AddressSanitizer in Parrot:

https://github.com/parrot/parrot/commit/df12f34e946553
-        wstrout = (wchar_t *) malloc(sizeof (wchar_t) * len + 1);
+        wstrout = (wchar_t *) malloc(sizeof (wchar_t) * (len + 1));

I think Clang should detect such bugs at compile time.
If the result of malloc() is being cast to T*, where sizeof(T) is greater than
1, it's obvious that the code author intended to allocate a multiple of
sizeof(T).

-- 
Configure bugmail: http://llvm.org/bugs/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
_______________________________________________
LLVMbugs mailing list
[email protected]
http://lists.cs.uiuc.edu/mailman/listinfo/llvmbugs

[LLVMbugs] [Bug 12741] New: Need a fixit for malloc(sizeof(T)*len+1)

Reply via email to