work

jsinglet · jsinglet · commit 409ff609d062 · 2022-09-21T17:45:15.000-04:00
diff --git a/c/cert/test/rules/CON34-C/main.c b/c/cert/test/rules/CON34-C/main.c
@@ -0,0 +1,78 @@
+#include <stdio.h>
+#include <stdlib.h>
+#include <threads.h>
+
+static tss_t k;
+
+void t1(void *v) {
+  int *value = (int *)v;
+  int a = *value + 1;
+}
+
+void t2(void *v) {
+  int *value =
+      tss_get(k); // NON_COMPLIANT (AUDIT) - A threaded function without a
+                  // `tss_set` should be considered suspicious.
+  int a = *value + 1;
+}
+
+void m1() {
+  thrd_t id;
+  int value;
+
+  thrd_create(&id, t1, &value); // NON_COMPLIANT
+}
+
+void m2() {
+  thrd_t id;
+  int *value = (int *)malloc(sizeof(int));
+
+  thrd_create(&id, t1, value); // COMPLIANT - free is never called
+}
+
+void m3() {
+  thrd_t id;
+  int *value = (int *)malloc(sizeof(int));
+
+  thrd_create(&id, t1,
+              value); // COMPLIANT - free is called without synchronization,
+                      // however this is beyond the scope of this query.
+  free(value);
+}
+
+void m4() {
+  thrd_t id;
+  int *value = (int *)malloc(sizeof(int));
+
+  thrd_create(&id, t1, value); // COMPLIANT
+
+  thrd_join(id, NULL);
+
+  free(value);
+}
+
+void m5() {
+  thrd_t id;
+  int *value = (int *)malloc(sizeof(int));
+
+  tss_set(k, value);
+
+  void *p = tss_get(k);
+
+  thrd_create(&id, t1, p); // COMPLIANT
+}
+
+void m6(void *v) {
+  int *value =
+      tss_get(k); // COMPLIANT (AUDIT) - A non-threaded function without a
+                  // `tss_set` should not be considered suspicious.
+  int a = *value + 1;
+}
+
+void m7() {
+  thrd_t id;
+  int *value = (int *)malloc(sizeof(int));
+  thrd_create(&id, t2,
+              value); // COMPLIANT - note that t2 (which is now a threaded
+                      // function) is NON_COMPLIANT in an audit query.
+}
