FUNCRET.IMPLICIT

Non-void function implicitly returning int doesn't return value

The FUNCRET.IMPLICIT checker finds paths in implicitly 'int' functions that don't have a return statement.

Vulnerability and risk

Functions without an explicit return type should return an integer value. If there is an attempt to read a return code in the cases with no return statement, it will be uninitialized.

Vulnerable code example

Copy

1
2
3
4
5
  foo(char ** param){
    char * x = malloc(1);
    free(x);
    bar(&x);
  }

Klocwork flags line 5, indicating that the implicitly 'int' function 'foo' has no return statement.

External guidance

CERT MSC37-C: Ensure that control never reaches the end of a non-void function