How do you create a unit test case in c for a buffer overflow that does not cause a memory error such as a segfault?
I.e. Given a simple buffer overflow, such as
int function () {
int exampleArray[10];
exampleArray[10] = 5;
return 0;
}
How do you create a unit test for this code? There is clearly an error, we are writing past the end of an array. However, you can run a function like this without any evidence of the error.
Note: I need to be able to create test cases for when the index to the array is supplied at run time by the user as well as the above simplified case.
In a managed language like Java the code will throw an exception (ArrayIndexOutOfBoundsException) which can be caught. So creating a test case is straightforward (a try-catch block for the exception).
How would such a test be created in c? Can any of the unit testing frameworks for C handle such a situation?
Background Information: I’m trying to do automatic test case generation. I know where the errors are and would like to be able to create a unit test to fail on these bugs.
However I wouldn’t have the faintest idea how to create a test case that fails for a buffer overflow bug that doesn’t crash the application.
One way to check is to allocate extra bytes before and after the buffer if you are using heap. But it will be difficult to keep track of every variable. After the function ends you can check if the data in those buffers was modified. You have to create a seperate library to hold these values for you.
Alternatively check this link. Hope it will give you more information on testing for buffer overflow.
EDIT : Some more information :
Its difficult or rather not your job to test for APIs which dont take any input. However if the API takes input which will be manipulated during the course of the execution then you can pass values which can cause overrun.
void foo(){