BADFUNC.REALLOC : Use of realloc

JavaScript is not currently enabled, but is required for full CodeSonar manual search and browse functionality.

If you are viewing this file in your hub's Web GUI, enable JavaScript in your browser: you will also need it for GUI functionality.

If you opened this file directly from disk, your browser may be directly suppressing JavaScript functionality: certain browsers perform this suppression on local files (but not files delivered by web servers) for security reasons.

If you access the manual through the hub's Web GUI, the functionality will not be suppressed because the hub is a web server.
Alternatively, your browser may allow you to explicitly disable the security setting that suppresses functionality. See the CodeSonar FAQ for more information.

A use of realloc(), which is not guaranteed to preserve alignment in all cases.

Class Name

Use of realloc

Significance

security

Mnemonic

BADFUNC.REALLOC

Categories

MisraC2023	MisraC2023:21.3	The memory allocation and deallocation functions of <stdlib.h> shall not be used
	MisraC2023:D.4.12	Dynamic memory allocation shall not be used
Misra2012	Misra2012:21.3	The memory allocation and deallocation functions of <stdlib.h> shall not be used
	Misra2012:D.4.12	Dynamic memory allocation shall not be used
Misra2004	Misra2004:20.4	Dynamic heap memory allocation shall not be used
AUTOSARC++14	AUTOSARC++14:A18-5-1	Functions malloc, calloc, realloc and free shall not be used.
MisraC++2008	MisraC++2008:18-4-1	Dynamic heap memory allocation shall not be used.
CWE	CWE:676	Use of Potentially Dangerous Function
CERT-C	CERT-C:MEM36-C	Do not modify the alignment of objects by calling realloc()

Availability

Available for C and C++.

Enabling

Checks for this warning class are disabled by default. To enable them, add the following WARNING_FILTER rule to the project configuration file.

WARNING_FILTER += allow class="Use of realloc"

#include <stdlib.h>

typedef struct my_128b_aligned_type {
    int i;
    char c;
    /*  ... */
} my_aligned_t;                                                           /* user-defined type that must be aligned to a 128-byte boundary */

my_aligned_t * reallocate_realloc(my_aligned_t *obj){
    return realloc(obj, sizeof(my_aligned_t));        /* 'Use of realloc' warning issued here:
                                                       * realloc() does not preserve the alignment properties required for my_aligned_type
                                                       */ 
}

my_aligned_t * reallocate_posix_memalign(my_aligned_t *obj){
  void *rv = obj;
  if (posix_memalign(&rv, 128, sizeof(my_aligned_t))){                    /* ok: posix_memalign() lets us specify the required alignment */
    return NULL;
  }
  if (obj){
    free(obj);                                                            /* must explicitly free previous object to avoid memory leaks< */
  }
  return rv;
}

To include an additional function or set of functions in the checks for this class, create a new set of BAD_FUNCTION_* rules in which the BAD_FUNCTION_REGEX setting matches the function or set of functions you want to check and the remaining rules match those in the other sets for this class.

To remove a function or set of functions from the checks for this class, edit the configuration file to comment out the corresponding set of BAD_FUNCTION_* rules.

The following configuration file parameters affect checks for this warning class.

BADFUNC.REALLOC : Use of realloc

Summary

Properties

Example

Relevant Configuration File Parameters