CXX.SUSPICIOUS_INDEX_CHECK

The CXX.SUSPICIOUS_INDEX_CHECK checker finds defects when a suspicious index check is present before accessing an array at a specific index.

Vulnerability and risk

If an array is accessed by an index that is beyond the array’s size, it can lead to data corruption, misbehavior, or crashing.

Mitigation and prevention

Perform proper bound checking before accessing an array at a specific index.

Vulnerable code example

1
2
3
4
5
6
7
8
9
10
11
12
13
int get_index(); // some function returning an index

void foo() {
    const int SIZE = 10;
    int arr[SIZE];
    int index = get_index();

    if (index >= 12) {
        return;
    }

    arr[index] = 0;
}

Klocwork reports CXX.SUSPICIOUS_INDEX_CHECK on line 12 to warn users about the suspicious index check on line 8.

It is possible to reach the array dereference if the “index” on line 12 is 10 or 11, which can cause buffer overflow.

Fixed code example

1
2
3
4
5
6
7
8
9
10
11
12
13
int get_index(); // some function returning an index

void foo() {
    const int SIZE = 10;
    int arr[SIZE];
    int index = get_index();

    if (index >= 9) {
        return;
    }

    arr[index] = 0;
}

Buffer overflow is not possible because the constraint "index >= 9" on line 8 rules out all bad behavior.

Related checkers

• ABV.GENERAL
• CXX.SUSPICIOUS_INDEX_CHECK.CALL
• CXX.SUSPICIOUS_INDEX_CHECK.ZERO
• RABV.CHECK
• RN.INDEX

External guidance

• CWE-124: Buffer Underwrite ('Buffer Underflow')
• CWE-125: Out-of-bounds Read
• CWE-787: Out-of-bounds Write
• CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

Security training

Application security training materials provided by Secure Code Warrior.

• Buffer Overflow Training Video - Test your skills with a training example