Are there any tools that can find potential errors in C source code? [closed]












-1















For example, I have some code like this:



#include<stdio.h>

#include<stdlib.h>

#include<string.h>



char *func(char *p) {

    p = malloc(32);

    memcpy(p, "hello", 6);

    return p;

}



int main() {

  char *s = NULL;

  char *s2 = NULL;

  s2 = func(s);

  printf("%sn", s2);

  free(s2);

  return 1;

}


The code will work, but has a potential error that s will not point to *p(Suppose the programmer's intention is to allocate memory to s,). One can quickly find the error because it is very simple. But in a large project with many many codes, sometimes it is very hard to find an error like this. gcc -Wall -Wextra does not give warnings.



Are there any tools that can find out this kind of error?






c gcc gcc-warning







share|improve this question















closed as off-topic by Weather Vane, EvilTeach, John3136, RobC, gnat Nov 21 '18 at 9:23


This question appears to be off-topic. The users who voted to close gave this specific reason:


  • "Questions asking us to recommend or find a book, tool, software library, tutorial or other off-site resource are off-topic for Stack Overflow as they tend to attract opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it." – Weather Vane, EvilTeach, John3136, RobC, gnat

If this question can be reworded to fit the rules in the help center, please edit the question.














  • Valgrind, GDB, etc

    – stackptr
    Nov 21 '18 at 1:14






  • 1





    s is not used at all after calling func, so this is a weird example

    – paddy
    Nov 21 '18 at 1:23






  • 2





    It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

    – Weather Vane
    Nov 21 '18 at 1:25













  • @WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

    – TypeIA
    Nov 21 '18 at 1:40











  • @TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

    – Weather Vane
    Nov 21 '18 at 1:43
















-1















For example, I have some code like this:



#include<stdio.h>

#include<stdlib.h>

#include<string.h>



char *func(char *p) {

    p = malloc(32);

    memcpy(p, "hello", 6);

    return p;

}



int main() {

  char *s = NULL;

  char *s2 = NULL;

  s2 = func(s);

  printf("%sn", s2);

  free(s2);

  return 1;

}


The code will work, but has a potential error that s will not point to *p(Suppose the programmer's intention is to allocate memory to s,). One can quickly find the error because it is very simple. But in a large project with many many codes, sometimes it is very hard to find an error like this. gcc -Wall -Wextra does not give warnings.



Are there any tools that can find out this kind of error?






c gcc gcc-warning







share|improve this question















closed as off-topic by Weather Vane, EvilTeach, John3136, RobC, gnat Nov 21 '18 at 9:23


This question appears to be off-topic. The users who voted to close gave this specific reason:


  • "Questions asking us to recommend or find a book, tool, software library, tutorial or other off-site resource are off-topic for Stack Overflow as they tend to attract opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it." – Weather Vane, EvilTeach, John3136, RobC, gnat

If this question can be reworded to fit the rules in the help center, please edit the question.














  • Valgrind, GDB, etc

    – stackptr
    Nov 21 '18 at 1:14






  • 1





    s is not used at all after calling func, so this is a weird example

    – paddy
    Nov 21 '18 at 1:23






  • 2





    It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

    – Weather Vane
    Nov 21 '18 at 1:25













  • @WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

    – TypeIA
    Nov 21 '18 at 1:40











  • @TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

    – Weather Vane
    Nov 21 '18 at 1:43














-1












-1








-1








For example, I have some code like this:



#include<stdio.h>

#include<stdlib.h>

#include<string.h>



char *func(char *p) {

    p = malloc(32);

    memcpy(p, "hello", 6);

    return p;

}



int main() {

  char *s = NULL;

  char *s2 = NULL;

  s2 = func(s);

  printf("%sn", s2);

  free(s2);

  return 1;

}


The code will work, but has a potential error that s will not point to *p(Suppose the programmer's intention is to allocate memory to s,). One can quickly find the error because it is very simple. But in a large project with many many codes, sometimes it is very hard to find an error like this. gcc -Wall -Wextra does not give warnings.



Are there any tools that can find out this kind of error?






c gcc gcc-warning







share|improve this question
















For example, I have some code like this:



#include<stdio.h>

#include<stdlib.h>

#include<string.h>



char *func(char *p) {

    p = malloc(32);

    memcpy(p, "hello", 6);

    return p;

}



int main() {

  char *s = NULL;

  char *s2 = NULL;

  s2 = func(s);

  printf("%sn", s2);

  free(s2);

  return 1;

}


The code will work, but has a potential error that s will not point to *p(Suppose the programmer's intention is to allocate memory to s,). One can quickly find the error because it is very simple. But in a large project with many many codes, sometimes it is very hard to find an error like this. gcc -Wall -Wextra does not give warnings.



Are there any tools that can find out this kind of error?






c gcc gcc-warning




c gcc gcc-warning






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Nov 21 '18 at 1:33







gacopu

















asked Nov 21 '18 at 1:06









gacopugacopu

1319




1319




closed as off-topic by Weather Vane, EvilTeach, John3136, RobC, gnat Nov 21 '18 at 9:23


This question appears to be off-topic. The users who voted to close gave this specific reason:


  • "Questions asking us to recommend or find a book, tool, software library, tutorial or other off-site resource are off-topic for Stack Overflow as they tend to attract opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it." – Weather Vane, EvilTeach, John3136, RobC, gnat

If this question can be reworded to fit the rules in the help center, please edit the question.




closed as off-topic by Weather Vane, EvilTeach, John3136, RobC, gnat Nov 21 '18 at 9:23


This question appears to be off-topic. The users who voted to close gave this specific reason:


  • "Questions asking us to recommend or find a book, tool, software library, tutorial or other off-site resource are off-topic for Stack Overflow as they tend to attract opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it." – Weather Vane, EvilTeach, John3136, RobC, gnat

If this question can be reworded to fit the rules in the help center, please edit the question.













  • Valgrind, GDB, etc

    – stackptr
    Nov 21 '18 at 1:14






  • 1





    s is not used at all after calling func, so this is a weird example

    – paddy
    Nov 21 '18 at 1:23






  • 2





    It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

    – Weather Vane
    Nov 21 '18 at 1:25













  • @WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

    – TypeIA
    Nov 21 '18 at 1:40











  • @TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

    – Weather Vane
    Nov 21 '18 at 1:43



















  • Valgrind, GDB, etc

    – stackptr
    Nov 21 '18 at 1:14






  • 1





    s is not used at all after calling func, so this is a weird example

    – paddy
    Nov 21 '18 at 1:23






  • 2





    It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

    – Weather Vane
    Nov 21 '18 at 1:25













  • @WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

    – TypeIA
    Nov 21 '18 at 1:40











  • @TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

    – Weather Vane
    Nov 21 '18 at 1:43

















Valgrind, GDB, etc

– stackptr
Nov 21 '18 at 1:14





Valgrind, GDB, etc

– stackptr
Nov 21 '18 at 1:14




1




1





s is not used at all after calling func, so this is a weird example

– paddy
Nov 21 '18 at 1:23





s is not used at all after calling func, so this is a weird example

– paddy
Nov 21 '18 at 1:23




2




2





It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

– Weather Vane
Nov 21 '18 at 1:25







It is not a "potential error that s will not point to *p". It is clear that s is always NULL.

– Weather Vane
Nov 21 '18 at 1:25















@WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

– TypeIA
Nov 21 '18 at 1:40





@WeatherVane I think OP realizes this. It is an example of an "error" by not taking a pointer to pointer as an output parameter and having the function populate the pointer.

– TypeIA
Nov 21 '18 at 1:40













@TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

– Weather Vane
Nov 21 '18 at 1:43





@TypeIA since s is never used, its role is unclear but s2 seems to be doing fine.

– Weather Vane
Nov 21 '18 at 1:43












1 Answer
1






active

oldest

votes


















1














There is actually little wrong with that code other than abyssmal variable names :-)



A copy of s is passed into the function as p, you change p then return it, finally assigning it to s2. At no point is s (or p or s2) used in a way that would cause undefined behaviour, unless the malloc fails, which is something you should account for:



p = malloc(32);

if (p != NULL) memcpy(p, "hello", 6); // why not str[n]cpy ?


However, in terms of tools you can use to find problems, there are many. For example, linters, compilers with good diagnostic methods, memory trackers like valgrind, and debuggers like gdb.




By far the most important tool is the wetware inside that skull of yours, especially with your addition of:




Suppose the programmer's intention is to allocate memory to s.




I can think of no other tool that will catch the programmer's intention in that case. It's no different to figuring out the intent was to add two to a variable when the code states:



i++;





share|improve this answer
































    1 Answer
    1






    active

    oldest

    votes








    1 Answer
    1






    active

    oldest

    votes









    active

    oldest

    votes






    active

    oldest

    votes









    1














    There is actually little wrong with that code other than abyssmal variable names :-)



    A copy of s is passed into the function as p, you change p then return it, finally assigning it to s2. At no point is s (or p or s2) used in a way that would cause undefined behaviour, unless the malloc fails, which is something you should account for:



    p = malloc(32);
    
if (p != NULL) memcpy(p, "hello", 6); // why not str[n]cpy ?


    However, in terms of tools you can use to find problems, there are many. For example, linters, compilers with good diagnostic methods, memory trackers like valgrind, and debuggers like gdb.




    By far the most important tool is the wetware inside that skull of yours, especially with your addition of:




    Suppose the programmer's intention is to allocate memory to s.




    I can think of no other tool that will catch the programmer's intention in that case. It's no different to figuring out the intent was to add two to a variable when the code states:



    i++;





    share|improve this answer






























      1














      There is actually little wrong with that code other than abyssmal variable names :-)



      A copy of s is passed into the function as p, you change p then return it, finally assigning it to s2. At no point is s (or p or s2) used in a way that would cause undefined behaviour, unless the malloc fails, which is something you should account for:



      p = malloc(32);
      
if (p != NULL) memcpy(p, "hello", 6); // why not str[n]cpy ?


      However, in terms of tools you can use to find problems, there are many. For example, linters, compilers with good diagnostic methods, memory trackers like valgrind, and debuggers like gdb.




      By far the most important tool is the wetware inside that skull of yours, especially with your addition of:




      Suppose the programmer's intention is to allocate memory to s.




      I can think of no other tool that will catch the programmer's intention in that case. It's no different to figuring out the intent was to add two to a variable when the code states:



      i++;





      share|improve this answer




























        1












        1








        1







        There is actually little wrong with that code other than abyssmal variable names :-)



        A copy of s is passed into the function as p, you change p then return it, finally assigning it to s2. At no point is s (or p or s2) used in a way that would cause undefined behaviour, unless the malloc fails, which is something you should account for:



        p = malloc(32);
        
if (p != NULL) memcpy(p, "hello", 6); // why not str[n]cpy ?


        However, in terms of tools you can use to find problems, there are many. For example, linters, compilers with good diagnostic methods, memory trackers like valgrind, and debuggers like gdb.




        By far the most important tool is the wetware inside that skull of yours, especially with your addition of:




        Suppose the programmer's intention is to allocate memory to s.




        I can think of no other tool that will catch the programmer's intention in that case. It's no different to figuring out the intent was to add two to a variable when the code states:



        i++;





        share|improve this answer















        There is actually little wrong with that code other than abyssmal variable names :-)



        A copy of s is passed into the function as p, you change p then return it, finally assigning it to s2. At no point is s (or p or s2) used in a way that would cause undefined behaviour, unless the malloc fails, which is something you should account for:



        p = malloc(32);
        
if (p != NULL) memcpy(p, "hello", 6); // why not str[n]cpy ?


        However, in terms of tools you can use to find problems, there are many. For example, linters, compilers with good diagnostic methods, memory trackers like valgrind, and debuggers like gdb.




        By far the most important tool is the wetware inside that skull of yours, especially with your addition of:




        Suppose the programmer's intention is to allocate memory to s.




        I can think of no other tool that will catch the programmer's intention in that case. It's no different to figuring out the intent was to add two to a variable when the code states:



        i++;






        share|improve this answer














        share|improve this answer



        share|improve this answer








        edited Nov 21 '18 at 1:37

























        answered Nov 21 '18 at 1:26









        paxdiablopaxdiablo

        631k16912431666




        631k16912431666















            -

            Popular posts from this blog

            "Incorrect syntax near the keyword 'ON'. (on update cascade, on delete cascade,)

            Image
            .everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ height:90px;width:728px;box-sizing:border-box; } 2 total noob sorry any help greatly appreciated. I keep getting this "Incorrect syntax near the keyword 'ON'." heres my codes code one CREATE TABLE supplier ( supplierID INT PRIMARY KEY, ISBN INT FOREIGN KEY REFERENCES book(ISBN), price DECIMAL (5,2), ON UPDATE CASCADE, ON DELETE CASCADE, ); code two CREATE TABLE orders ( orderID INT PRIMARY KEY, customerID INT FOREIGN KEY REFERENCES customer(customerID), ISBN INT FOREIGN KEY REFERENCES book(ISBN), orderDate date, ON UPDATE CASCADE, ON DELETE CASCADE, ); Ive run out of stuff to try other than dumbing it down to uselessness.
            Read more

            Alcedinidae

            Image
            Alcedinidae Martin-pêcheur à dos bleu ( Alcedo azurea ) Classification (COI) Règne Animalia Embranchement Chordata Sous-embr. Vertebrata Classe Aves Ordre Coraciiformes Famille Alcedinidae Rafinesque, 1815 Les Alcédinidés ou Alcedinidae forment une famille d'oiseaux plus connus sous les noms de martins-pêcheurs et martins-chasseurs. Sommaire 1 Description 2 Répartition et habitat 3 Systématique 3.1 Liste alphabétique des genres 3.2 Liste des espèces 4 Chez les Anciens : l'alcyon 4.1 Étymologie (Littré) 4.2 Oiseau « fabuleux » ? 5 Notes 6 Articles connexes 7 Liens externes 7.1 Bibliographie Description | Ce sont des oiseaux compacts de taille petite à moyenne (10 à 46 cm), au bec droit et long, en forme de poignard. Leurs pattes sont courtes, et ils portent un plumage aux couleurs vives. Répartition et habitat | Cosmopolites, ils fréquentent surtout
            Read more

            RAC Tourist Trophy

            Image
            Pour les articles homonymes, voir Tourist Trophy. Le RAC Tourist Trophy est une course automobile organisée par le Royal Automobile Club d'Angleterre. Créée en 1905, cette course a fait partie des épreuves comptant pour le championnat du monde des voitures de sport entre 1953 et 1955, en 1958 et 1959, et entre 1962 et 1965. Après une interruption de 17 ans (l'épreuve s'arrête après 1988), le RAC Tourist Trophy reprend en 2005 sous l'égide de la FIA GT. Palmarès | John Napier sur Arrol-Johnston, vainqueur du premier RAC Tourist Trophy, en 1905. L'honorable C.S. Rolls, vainqueur du RAC Tourist Trophy 1906. Ernest Curtis, sur Rover 20 hp, vainqueur du RAC Tourist Trophy 1907. William Watson, vainqueur du RAC Tourist Trophy 1908. Kenelm Lee Guinness, vainqueur du RAC Tourist Trophy 1914 sur Sunbeam. Départ du RAC Tourist Trophy 1928. Louis Gérard, vainqueur du RAC Tourist Trophy 1938 sur Delage. Année Circuit Vainqueur
            Read more