scanf format checking: include the buffer length in the fix-it for %s. Patch by Zach Davis! llvm-svn: 204300

commit: 177b0a3600d8d3eaf6ccbf573d0bf053c4b24191 [log] [tgz]
author: Jordan Rose <jordan_rose@apple.com> Thu Mar 20 03:32:39 2014 +0000
committer: Jordan Rose <jordan_rose@apple.com> Thu Mar 20 03:32:39 2014 +0000
tree: dcb3ee4883bf4c0e8d855f7664a9314107039b94
parent: da0de8a237de508c99f06e93928301e0d2c0f24b [diff] [blame]
diff --git a/clang/lib/Sema/SemaChecking.cpp b/clang/lib/Sema/SemaChecking.cpp
index 74ca197b..e45f2e5 100644
--- a/clang/lib/Sema/SemaChecking.cpp
+++ b/clang/lib/Sema/SemaChecking.cpp

@@ -3518,8 +3518,9 @@
   const analyze_format_string::ArgType &AT = FS.getArgType(S.Context);
   if (AT.isValid() && !AT.matchesType(S.Context, Ex->getType())) {
     ScanfSpecifier fixedFS = FS;
-    bool success = fixedFS.fixType(Ex->getType(), S.getLangOpts(),
-                                   S.Context);
+    bool success = fixedFS.fixType(Ex->getType(),
+                                   Ex->IgnoreImpCasts()->getType(),
+                                   S.getLangOpts(), S.Context);
 
     if (success) {
       // Get the fix string from the fixed format specifier.
commit	177b0a3600d8d3eaf6ccbf573d0bf053c4b24191	[log] [tgz]
author	Jordan Rose <jordan_rose@apple.com>	Thu Mar 20 03:32:39 2014 +0000
committer	Jordan Rose <jordan_rose@apple.com>	Thu Mar 20 03:32:39 2014 +0000
tree	dcb3ee4883bf4c0e8d855f7664a9314107039b94
parent	da0de8a237de508c99f06e93928301e0d2c0f24b [diff] [blame]