"a possibly null pointer.",
0, 0
},
+ {
+ FK_NULL, FK_MEMORY, plainFlag,
+ "nullinit",
+ FLG_NULLINIT,
+ "inconsistent initialization involving null pointer",
+ "A reference with no null annotation is initialized "
+ "to NULL. Use /*@null@*/ to declare the reference as "
+ "a possibly null pointer.",
+ 0, 0
+ },
/*
** Undefined Values (Section 3)
FK_OPS, FK_NONE, modeFlag,
"realcompare",
FLG_REALCOMPARE,
- "dangerous comparison between reals (dangerous because of inexact "
+ "dangerous equality comparison between reals (dangerous because of inexact "
+ "floating point representations)",
+ "Two real (float, double, or long double) values are compared "
+ "directly using == or != primitive. "
+ "This may produce unexpected results since floating point "
+ "representations are inexact. Instead, compare the difference to "
+ "FLT_EPSILON or DBL_EPSILON.",
+ 0, 0,
+ },
+ {
+ FK_OPS, FK_NONE, modeFlag,
+ "realrelatecompare",
+ FLG_REALRELATECOMPARE,
+ "possibly dangerous relational comparison between reals (dangerous because of inexact "
"floating point representations)",
"Two real (float, double, or long double) values are compared "
- "directly using a C primitive. "
+ "directly using < or >. "
"This may produce unexpected results since floating point "
"representations are inexact. Instead, compare the difference to "
"FLT_EPSILON or DBL_EPSILON.",
FK_BOOL, FK_NONE, regStringFlag, ARG_STRING,
"boolfalse",
FLG_BOOLFALSE,
- "set name of boolean false (default FALSE)",
+ "set name of boolean false (default false)",
NULL, 0, 0
},
{
FK_BOOL, FK_NONE, regStringFlag, ARG_STRING,
"booltrue",
FLG_BOOLTRUE,
- "set name of boolean true (default TRUE)",
+ "set name of boolean true (default true)",
NULL, 0, 0
},
{
FK_BOOL, FK_OPS, modeFlag,
"boolcompare",
FLG_BOOLCOMPARE,
- "comparison between bools (dangerous because of multiple TRUE values)",
+ "comparison between bools (dangerous because of multiple true values)",
"Two bool values are compared directly using a C primitive. This "
"may produce unexpected results since all non-zero values are "
- "considered TRUE, so different TRUE values may not be equal. "
+ "considered true, so different true values may not be equal. "
"The file bool.h (included in splint/lib) provides bool_equal "
"for safe bool comparisons.", 0, 0
},
"numabstractlit",
FLG_NUMABSTRACTLIT,
"numeric literal can used as numabstract type",
- "A numeric literal can be used as a numabstract type.",
+ "To allow a numeric literal to be used as a numabstract type, use +numabstractlit.",
+ 0, 0
+ },
+ {
+ FK_ABSTRACT, FK_TYPEEQ, modeFlag,
+ "numabstractindex",
+ FLG_NUMABSTRACTINDEX,
+ "a numabstract type can be used to index an array",
+ "To allow numabstract types to index arrays, use +numabstractindex.",
+ 0, 0
+ },
+ {
+ FK_ABSTRACT, FK_NONE, modeFlag,
+ "numabstractprint",
+ FLG_NUMABSTRACTPRINT,
+ "a numabstract value is printed using %d format code",
+ "A numabstract value is printed usind %d format code in a printf.",
0, 0
},
{
"casebreak",
FLG_CASEBREAK,
"non-empty case in a switch without preceding break",
- "Execution falls through from the previous case.", 0, 0
+ "Execution falls through from the previous case (use /*@fallthrough@*/ to mark fallthrough cases).", 0, 0
},
{
FK_CONTROL, FK_NONE, modeFlag,
"Memory read or write may be out of bounds of allocated storage.", 0, 0
},
{
- FK_BOUNDS, FK_MEMORY, plainFlag,
+ FK_BOUNDS, FK_MEMORY, specialFlag,
+ "likelybounds",
+ FLG_LIKELYBOUNDS,
+ "memory bounds checking (sets likelyboundsread and likelyboundswrite)",
+ "Memory read or write may be out of bounds of allocated storage.", 0, 0
+ },
+ {
+ FK_BOUNDS, FK_MEMORY, modeFlag,
+ "likelyboundsread",
+ FLG_LIKELYBOUNDSREAD,
+ "likely out of bounds read",
+ "A memory read references memory beyond the allocated storage.",
+ 0, 0
+ },
+ {
+ FK_BOUNDS, FK_MEMORY, modeFlag,
+ "likelyboundswrite",
+ FLG_LIKELYBOUNDSWRITE,
+ "likely buffer overflow from an out of bounds write",
+ "A memory write may write to an address beyond the allocated buffer.",
+ 0, 0
+ },
+
+ {
+ FK_BOUNDS, FK_MEMORY, modeFlag,
"boundsread",
FLG_BOUNDSREAD,
"possible out of bounds read",
0, 0
},
{
- FK_BOUNDS, FK_MEMORY, plainFlag,
+ FK_BOUNDS, FK_MEMORY, modeFlag,
"boundswrite",
FLG_BOUNDSWRITE,
"possible buffer overflow from an out of bounds write",
{
FK_BOUNDS, FK_MEMORY, plainFlag,
- "implictconstraint",
- FLG_IMPLICTCONSTRAINT,
+ "impboundsconstraints",
+ FLG_IMPBOUNDSCONSTRAINTS,
"generate implicit constraints for functions",
NULL,
0, 0
NULL,
0, 0
},
-
- {
- FK_BOUNDS, FK_MEMORY, plainFlag,
- "nullterminated",
- FLG_NULLTERMINATEDWARNING,
- "misuse of nullterminated allocation",
- "A user annotated non-nullterminated buffer is used/referenced as a nullterminated one.",
- 0, 0
- },
-
{
FK_BOUNDS, FK_DISPLAY, plainFlag,
"showconstraintparens",
0, 0
}, /*drl added flag 4/26/01*/
+ { /* evans added 2003-06-08 */
+ FK_BOUNDS, FK_MEMORY, modeFlag,
+ "allocmismatch",
+ FLG_ALLOCMISMATCH,
+ "type conversion involves storage of non-divisble size",
+ NULL, 0, 0
+ },
+
/*
** 10. Extensible Checking
*/
0, 0
},
+ {
+ FK_MACROS, FK_PROTOS, plainFlag,
+ "macroconstdistance",
+ FLG_MACROCONSTDIST,
+ "macro constant name does not match nearby name",
+ "Macro constant name does matches name of a previous declaration, but they are not near each other.",
+ 0, 0
+ },
+
/* 11.2 Function-like Macros */
{
},
{
FK_MACROS, FK_CONTROL, modeFlag,
- "macroreturn",
+ "macroret",
FLG_MACRORETURN,
"return statement in macro body",
"The body of a macro declared as a function uses a return statement. "