std.cfg: strxfrm(): Added minize values to arg1 and arg2 and a TODO test case

orbitcowboy · orbitcowboy · commit 040e58f94320 · 2021-04-13T14:07:45.000+02:00
diff --git a/cfg/std.cfg b/cfg/std.cfg
@@ -5088,10 +5088,15 @@ The obsolete function 'gets' is called. With 'gets' you'll get a buffer overrun
     <noreturn>false</noreturn>
     <leak-ignore/>
     <!-- In case the 3rd argument is 0, the 1st argument is permitted to be a null pointer. (#6306) -->
-    <arg nr="1" direction="out"/>
+    <arg nr="1" direction="out">
+      <strz/>
+      <minsize type="argvalue" arg="3"/>
+    </arg>
     <arg nr="2" direction="in">
       <not-null/>
       <not-uninit/>
+      <strz/>
+      <minsize type="argvalue" arg="3"/>
     </arg>
     <arg nr="3" direction="in">
       <not-uninit/>
diff --git a/test/cfg/std.c b/test/cfg/std.c
@@ -3550,6 +3550,17 @@ void uninitvar_strxfrm(void)
     (void)strxfrm(ds,ss,n);
 }
 
+void bufferAccessOutOfBounds_strxfrm(void)
+{
+    const char src[3] = "abc";
+    char dest[1] = "a";
+    (void)strxfrm(dest,src,1);
+    // TODO cppcheck-suppress bufferAccessOutOfBounds
+    (void)strxfrm(dest,src,2);
+    // TODO cppcheck-suppress bufferAccessOutOfBounds
+    (void)strxfrm(dest,src,3);
+}
+
 void uninitvar_wcsxfrm(void)
 {
     wchar_t *ds;
