taint-generic.c - OpenGrok cross reference for /llvm-project/clang/test/Analysis/taint-generic.c

Lines Matching +defs:buffer +defs:base +defs:buffer
212   // special case that disables buffer overflow reports coming from the isXXXXX
262   char buffer[156];
268   sprintf(buffer, "/bin/mail %s < /tmp/email", addr);
269   system(buffer); // expected-warning {{Untrusted data is passed to a system call}}
332   char buffer[100];
335   read(sock, buffer, 100);
336   execl(buffer, "filename", 0); // expected-warning {{Untrusted data is passed to a system call}}
339   read(sock, buffer, 100);
340   execl(buffer, "filename", 0); // no-warning
343   // References to both buffer and &buffer as an argument should taint the argument
344   read(sock, &buffer, 100);
345   execl(buffer, "filename", 0); // expected-warning {{Untrusted data is passed to a system call}}
354   char buffer[16];
393   char buffer[4];
398   __builtin_memcpy(buffer, tainted.y, tainted.x);
673 int fread(void *buffer, size_t size, size_t count, FILE *stream);
674 void testFread(const char *fname, int *buffer, size_t size, size_t count) {
676   size_t read = fread(buffer, size, count, f);
678   clang_analyzer_isTainted_int(*buffer); // expected-warning {{YES}}
1079 long strtol(const char *restrict nptr, char **restrict endptr, int base);
1080 long long strtoll(const char *restrict nptr, char **restrict endptr, int base);
1081 unsigned long int strtoul(const char *nptr, char **endptr, int base);
1082 unsigned long long int strtoull(const char *nptr, char **endptr, int base);
1083 void testStrtolVariants(char **restrict endptr, int base) {
1087   long result_l = strtol(s, endptr, base);
1090   long long result_ll = strtoll(s, endptr, base);
1093   unsigned long result_ul = strtoul(s, endptr, base);
1096   unsigned long long result_ull = strtoull(s, endptr, base);
1158 void qsort(void *base, size_t nmemb, size_t size, int (*compar)(const void *, const void *));
1159 void qsort_r(void *base, size_t nmemb, size_t size, int (*compar)(const void *, const void *, void *), void *arg);
1212   char buffer[1000];
1213   myScanf("%s", buffer); // makes buffer tainted
1214   system(buffer); // expected-warning {{Untrusted data is passed to a system call}}
1218   char buffer[1000];
1219   myScanf("%s", buffer); // makes buffer tainted
1220   sanitizeCmd(buffer); // removes taintedness
1221   system(buffer); // no-warning