File: FopenUsageChecker.cpp

package info (click to toggle)
firefox 147.0.4-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 4,683,532 kB
  • sloc: cpp: 7,607,356; javascript: 6,533,348; ansic: 3,775,236; python: 1,415,508; xml: 634,561; asm: 438,949; java: 186,241; sh: 62,760; makefile: 18,079; objc: 13,092; perl: 12,808; yacc: 4,583; cs: 3,846; pascal: 3,448; lex: 1,720; ruby: 1,003; php: 436; lisp: 258; awk: 247; sql: 66; sed: 54; csh: 10; exp: 6
file content (73 lines) | stat: -rw-r--r-- 3,313 bytes parent folder | download | duplicates (33) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
 
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#include "FopenUsageChecker.h"
#include "CustomMatchers.h"

void FopenUsageChecker::registerMatchers(MatchFinder *AstMatcher) {

  auto hasConstCharPtrParam = [](const unsigned int Position) {
    return hasParameter(
        Position, hasType(hasCanonicalType(pointsTo(asString("const char")))));
  };

  auto hasParamOfType = [](const unsigned int Position, const char *Name) {
    return hasParameter(Position, hasType(asString(Name)));
  };

  auto hasIntegerParam = [](const unsigned int Position) {
    return hasParameter(Position, hasType(isInteger()));
  };

  AstMatcher->addMatcher(
      callExpr(
          allOf(
              isFirstParty(),
              callee(functionDecl(allOf(
                  isInSystemHeader(),
                  anyOf(
                      allOf(anyOf(allOf(hasName("fopen"),
                                        hasConstCharPtrParam(0)),
                                  allOf(hasName("fopen_s"),
                                        hasParameter(
                                            0, hasType(pointsTo(pointsTo(
                                                   asString("FILE"))))),
                                        hasConstCharPtrParam(2))),
                            hasConstCharPtrParam(1)),
                      allOf(anyOf(hasName("open"),
                                  allOf(hasName("_open"), hasIntegerParam(2)),
                                  allOf(hasName("_sopen"), hasIntegerParam(3))),
                            hasConstCharPtrParam(0), hasIntegerParam(1)),
                      allOf(hasName("_sopen_s"),
                            hasParameter(0, hasType(pointsTo(isInteger()))),
                            hasConstCharPtrParam(1), hasIntegerParam(2),
                            hasIntegerParam(3), hasIntegerParam(4)),
                      allOf(hasName("OpenFile"), hasConstCharPtrParam(0),
                            hasParamOfType(1, "LPOFSTRUCT"),
                            hasIntegerParam(2)),
                      allOf(hasName("CreateFileA"), hasConstCharPtrParam(0),
                            hasIntegerParam(1), hasIntegerParam(2),
                            hasParamOfType(3, "LPSECURITY_ATTRIBUTES"),
                            hasIntegerParam(4), hasIntegerParam(5),
                            hasParamOfType(6, "HANDLE")))))),
              unless(isInWhitelistForFopenUsage())))
          .bind("funcCall"),
      this);
}

void FopenUsageChecker::check(const MatchFinder::MatchResult &Result) {
  const CallExpr *FuncCall = Result.Nodes.getNodeAs<CallExpr>("funcCall");
  static const char *ExtraInfo =
      "On Windows executed functions: fopen, fopen_s, open, _open, _sopen, "
      "_sopen_s, OpenFile, CreateFileA should never be used due to lossy "
      "conversion from UTF8 to ANSI.";

  if (FuncCall) {
    diag(FuncCall->getBeginLoc(),
         "Usage of ASCII file functions (here %0) is forbidden on Windows.",
         DiagnosticIDs::Warning)
        << FuncCall->getDirectCallee()->getName();
    diag(FuncCall->getBeginLoc(), ExtraInfo, DiagnosticIDs::Note);
  }
}