bio_vsnprintf

API Overview

BIO_vsnprintf is an API in openssl. This rule belongs to the return value check type. This rule is generated using AURC.

Rule Description

tip

All functions return the number of bytes written, or -1 on error. For BIO_snprintf() and BIO_vsnprintf() this includes when the output buffer is too small.

info

Tags: return value check
Parameter Index: N/A
CWE Type: CWE-253

Rule Code

import cpp

class OpenSSLFunctionCall extends FunctionCall {
  OpenSSLFunctionCall() {
    this.getTarget().hasName("BIO_vsnprintf")
  }
}

from OpenSSLFunctionCall call, UnaryOperation uop
where
  uop.getOperator() = "!" and
  uop.getOperand() = call.getAnAccess()
select uop, "This negation checks the return value of BIO_vsnprintf."

API Overview​

Rule Description​

Rule Code​

API Overview

Rule Description

Rule Code