95aa444265
Checked C restricts taking the addresses of: 1. Members with member bounds declarations. 2. Members used in member bounds declarations. 3. Variables with bounds declarations. 4. Variables/variable members used in bounds declarations. This add tests of restrictions 1-3, as part of implementing https://github.com/Microsoft/checkedc-clang/issues/213 and https://github.com/Microsoft/checkedc-clang/issues/212: - Taking the address of non-array members with or used in bounds declarations is now an error. - Taking the address of non-array members with or used in bounds-safe interfaces is allowed in unchecked scopes. It is an error in checked scopes. - Taking the address of non-array variables with bounds declaration is now an error. It is OK to take the address of an array variable or member because you can't use the resulting pointer to modify the pointer that the array converts to. The trickier cases to test involve nested members. Given ``` struct NestedLen { int len; }; struct S { struct NestedLen n; _Array_ptr<int> p : count(n.len); } ``` we don't allow the addresses of `n` or `n.len` to be taken. However, if `NestedLen` is not embedded in `S`, we allow the address of a struct of type NestedLen to be taken. |
||
|---|---|---|
| include | ||
| papers/dynamic_checks | ||
| samples | ||
| spec | ||
| tests | ||
| CONTRIBUTING.md | ||
| LICENSE.TXT | ||
| MAILING-LISTS.md | ||
| README.md | ||
| WishList.md | ||
README.md
Checked C
Checked C adds static and dynamic checking to C to detect or prevent common programming errors such as buffer overruns and out-of-bounds memory accesses. The goal of the project is to improve systems programming by making fundamental improvements to C. This repo contains sample code, the extension specification, and test code.
- For a quick overview of Checked C and more information, see our Wiki.
- The PDF of the specifcation is available here.
- Compilers are available here.
Build Status
| Configuration | Testing | Status |
|---|---|---|
| Debug X86 Windows | Checked C and clang regression tests | |
| Debug X64 Windows | Checked C and clang regression tests | |
| Debug X64 Linux | Checked C and clang regression tests | |
| Release X64 Linux | Checked C, clang, and LLVM nightly tests |
Participating
We're happy to have the help! You can contribute by trying out Checked C, reporting bugs, and giving us feedback. There are other ways to contribute too. You can join the mailing lists for announcements about the project.
Licensing
The software in this repository is covered by the MIT license. See the file LICENSE.TXT for the license. The Checked C specification is made available by Microsoft under the OpenWeb Foundation Final Specification Agreement, version 1.0. Contributions of code to the Checked LLVM/clang repos are subject to the CLANG/LLVM licensing terms.
Code of conduct
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.