Rule S3949 "Integral operations should not overflow" false positives

Amelie · July 2, 2021, 7:25am

Hello @Wes ,

Thanks for reporting these false positives.
I don’t succeed in reproducing the issues on my side so do you think you could create a small reproducer for each of those two false positives?
To generate a reproducer file:

Add the reproducer option to the scanner configuration:
sonar.cfamily.reproducer= "Full path to the .cpp file that has or include the file that has the false-positive"
Re-running the scanner should generate a file named sonar-cfamily.reproducer in the project folder.
Please share this file (I can send you a PM if you want to share it privately)

Thank you

Topic		Replies	Views
C2000 scanner getting incorrect sizes of native types Report False-positive / False-negative... sonarqube , cfamily	2	1529	March 23, 2022
Rule S3949 FN: Calculations should not overflow (Bug warning) is not caught by sonar scanner and it is not displayed in the report on SonarQube 8.2 version community edition SonarQube Server / Community Build csharp , bug-no-category	3	645	June 8, 2020
Customizing size of datatypes for specific target architectures Writing rules sonarqube , scanner	8	96	February 12, 2026
C/C++ Sonarqube False Positive Report False-positive / False-negative... sonarqube , scanner , cfamily	2	842	August 11, 2022
Need support for Texas Instruments C28x microcontrollers Suggest new features	4	446	August 15, 2023

Rule S3949 "Integral operations should not overflow" false positives

Related topics