Test branch - Githubissues

<!DOCTYPE html>

Bug Summary

File:	test.c
Location:	line 37, column 12
Description:	Dereference of null pointer (loaded from variable 'p3')

Annotated Source Code

#include <stdio.h>

#include <string.h>

#include "helper.h"

int otherHelper(int* p) {

return *p - 5;

}

// Dereference pointer without checking if NULL

int helper2(int* p) {

printf("wow\n");

return *p + 4;

}

int main(int argc, char* argv[]) {

int num1 = 15;

int num2 = 20;

int* p1 = &num1;

int* p2 = &num2;

if (argc >= 2 && strcmp(argv[1], "wow") == 0) {

Assuming 'argc' is < 2

→

p1 = NULL((void*)0);

}

if (argc >= 2 && strcmp(argv[1], "test") == 0) {

p2 = NULL((void*)0);

}

printf("amazing\n");

printf("num1 + 4 is %d\n", helper2(p1));

printf("num2 - 5 is %d\n", *p2);

int* p3 = NULL((void*)0);

←

'p3' initialized to a null pointer value

→

return *p3;

←

Dereference of null pointer (loaded from variable 'p3')

}

<!DOCTYPE html>

Bug Summary

File:	test.c
Location:	line 33, column 32
Description:	Dereference of null pointer (loaded from variable 'p2')

Annotated Source Code

#include <stdio.h>

#include <string.h>

#include "helper.h"

int otherHelper(int* p) {

return *p - 5;

}

// Dereference pointer without checking if NULL

int helper2(int* p) {

printf("wow\n");

return *p + 4;

}

int main(int argc, char* argv[]) {

int num1 = 15;

int num2 = 20;

int* p1 = &num1;

int* p2 = &num2;

if (argc >= 2 && strcmp(argv[1], "wow") == 0) {

Assuming 'argc' is >= 2

→

←

Taking false branch

→

p1 = NULL((void*)0);

}

if (argc >= 2 && strcmp(argv[1], "test") == 0) {

←

Taking true branch

→

p2 = NULL((void*)0);

←

Null pointer value stored to 'p2'

→

}

printf("amazing\n");

printf("num1 + 4 is %d\n", helper2(p1));

printf("num2 - 5 is %d\n", *p2);

←

Dereference of null pointer (loaded from variable 'p2')

int* p3 = NULL((void*)0);

return *p3;

}

WILDWEEGEE / test_repo

Test branch #42

Bug Summary

Annotated Source Code

Bug Summary

Annotated Source Code