View Help Online

Start here

Home
About Klocwork
What's new
Fixed issues
Release notes
Installation

Reference

C/C++ checkers
Java checkers
C# checkers
MISRA C 2004 checkers
MISRA C++ 2008 checkers
MISRA C 2012 checkers
MISRA C 2012 checkers with Amendment 1
Commands
Metrics
Troubleshooting
Reference

Product components

C/C++ Integration build analysis
Java Integration build analysis
Desktop analysis
Refactoring
Klocwork Static Code Analysis
Klocwork Code Review
Structure101
Tuning
Custom checkers

Coding environments

Visual Studio
Eclipse for C/C++
Eclipse for Java
IntelliJ IDEA
Other

Administration

Project configuration
Build configuration
Administration
Analysis performance
Server performance
Security/permissions
Licensing
Klocwork Static Code Analysis Web API
Klocwork Code Review Web API

Community

View help online
Visit RogueWave.com
Klocwork Support
Rogue Wave Videos

Legal

Legal information

CWARN.SIGNEDBIT

Signed bit field has only one bit

The CWARN.SIGNEDBIT checker finds instances of a signed bit field that has only one bit.

Vulnerability and risk

Signed bitfields require at least two bits, and the two possible values of the field are -1 and 0. Although it is safe to check a 1-bit signed bitfield for 0, using it as a Boolean flag, other arithmetic operations may yield unexpected results.

Vulnerable code example

1  struct BITS {
2    int n:1;
3  };
4  
5  void foo() {
6    struct BITS b;
7    b.n = 1;
8    if (b.n > 0)    
9    {
10     ...
11   }
12 }

Klocwork flags line 2, in which the 1-bit signed bitfield is defined.

Parent topic: Parse warning defects
Previous topic: CWARN.RET.MAIN

© Rogue Wave Software, Inc. All rights reserved. | Contact