[C-safe-secure-studygroup] checker

Robert Seacord rcseacord at gmail.com
Wed Jan 23 18:06:16 GMT 2019

Has anyone implemented a static analysis checker that would detect when a
programmer incorrectly specifies the size of the source array instead of
the destination array, for example:

void func (void) {

  char source[] = "...";

  char dest[N];


  strcpy_s(dest, sizeof source, source);


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.trustable.io/pipermail/c-safe-secure-studygroup/attachments/20190123/95c58478/attachment.html>

More information about the C-safe-secure-studygroup mailing list