Examples of errors detected by the V598 diagnostic

V598. Memory manipulation function is used to work with a class object containing a virtual table pointer. The result of such an operation may be unexpected.

IPP Samples

V598 The 'memset' function is used to nullify the fields of '_MediaDataEx' class. Virtual table pointer will be damaged by this. vc1_spl umc_vc1_spl.cpp 131


class _MediaDataEx {
  ....
  virtual bool TryStrongCasting(
    pDynamicCastFunction pCandidateFunction) const;
  virtual bool TryWeakCasting(
    pDynamicCastFunction pCandidateFunction) const;
};

Status VC1Splitter::Init(SplitterParams& rInit)
{
  MediaDataEx::_MediaDataEx *m_stCodes;
  ....
  m_stCodes = (MediaDataEx::_MediaDataEx *)
    ippsMalloc_8u(START_CODE_NUMBER*2*sizeof(Ipp32s)+
                  sizeof(MediaDataEx::_MediaDataEx));
  ....
  memset(m_stCodes, 0,
    (START_CODE_NUMBER*2*sizeof(Ipp32s)+
    sizeof(MediaDataEx::_MediaDataEx)));
  ....
}

Similar errors can be found in some other places:

V598 The 'memset' function is used to nullify the fields of '_MediaDataEx' class. Virtual table pointer will be damaged by this. vc1_dec umc_vc1_video_decoder.cpp 641
V598 The 'memset' function is used to nullify the fields of 'AVS_DISASSEMBLING_CONTEXT' class. Virtual table pointer will be damaged by this. avs_enc umc_avs_enc_slice.cpp 45
V598 The 'memset' function is used to nullify the fields of 'AVS_DISASSEMBLING_CONTEXT' class. Virtual table pointer will be damaged by this. avs_enc umc_avs_enc_slice.cpp 29
And 11 additional diagnostic messages.

Coin3D

V598 The 'memcpy' function is used to copy the fields of 'SoPointDetail' class. Virtual table pointer will be damaged by this. soshape_primdata.cpp 202


class COIN_DLL_API SoDetail {
  ....
  virtual ~SoDetail();
  virtual SoDetail * copy(void) const = 0;
  ....
}

class SoPointDetail : public SoDetail {
};

void
soshape_primdata::shapeVertex(const SoPrimitiveVertex * const v)
{
  ....
  SoPointDetail* newparray = new SoPointDetail[this->arraySize];
  memcpy(newparray, this->pointDetails,
    sizeof(SoPointDetail)* this->counter);
  ....
}

SlimDX

V598 The 'memset' function is used to nullify the fields of 'SMember' class. Virtual table pointer will be damaged by this. effectnonruntime.cpp 1739


template<typename IBaseInterface>
struct TVariable : public IBaseInterface
{
  virtual BOOL IsValid() { .... }
  ....
};

struct SMember :
  public TVariable<TMember<ID3DX11EffectVariable> >
{
};

CEffectVectorOwner<SMember> m_pMemberInterfaces;

HRESULT CEffect::CopyMemberInterfaces( CEffect* pEffectSource )
{
  ....
  ZeroMemory( &m_pMemberInterfaces[i],
              sizeof(SMember) * ( Members - i ) );
  ....
}

Similar errors can be found in some other places:

V598 The 'memcpy' function is used to copy the fields of 'SType' class. Virtual table pointer will be damaged by this. effectload.cpp 1106
V598 The 'memset' function is used to nullify the fields of 'SType' class. Virtual table pointer will be damaged by this. effectload.cpp 1107

Miranda NG

V598 The 'memset' function is used to nullify the fields of 'CBaseCtrl' class. Virtual table pointer will be damaged by this. UInfoEx ctrl_base.cpp 77


class CBaseCtrl
{
  ....
  virtual void Release() { }
  virtual BOOL OnInfoChanged(MCONTACT hContact, LPCSTR pszProto);
  ....
};

CBaseCtrl::CBaseCtrl()
{
  ZeroMemory(this, sizeof(*this));
  _cbSize = sizeof(CBaseCtrl);
}

Similar errors can be found in some other places:

V598 The 'memset' function is used to nullify the fields of 'CBaseCtrl' class. Virtual table pointer will be damaged by this. UInfoEx ctrl_base.cpp 87
V598 The 'memset' function is used to nullify the fields of 'CBaseCtrl' class. Virtual table pointer will be damaged by this. UInfoEx ctrl_base.cpp 103

.NET CoreCLR

V598 The 'memcpy' function is used to copy the fields of 'GenTree' class. Virtual table pointer will be damaged by this. ClrJit compiler.hpp 1344


struct GenTree
{
  ....
  #if DEBUGGABLE_GENTREE
    virtual void DummyVirt() {}
  #endif // DEBUGGABLE_GENTREE
  ....
};

void GenTree::CopyFrom(const GenTree* src, Compiler* comp)
{
  ....
  memcpy(this, src, src->GetNodeSize());
  ....
}

When the preprocessor variable 'DEBUGGABLE_GENTREE' is declared, a virtual function is defined. Then the class contains a pointer to the virtual method table and cannot be copied that freely.

.NET CoreCLR

V598 The 'memcpy' function is used to copy the fields of 'GCStatistics' class. Virtual table pointer will be damaged by this. cee_wks gc.cpp 287


struct GCStatistics
    : public StatisticsBase
{
  ....
  virtual void Initialize();
  virtual void DisplayAndUpdate();
  ....
};

GCStatistics g_LastGCStatistics;

void GCStatistics::DisplayAndUpdate()
{
  ....
  memcpy(&g_LastGCStatistics, this, sizeof(g_LastGCStatistics));
  ....
}

GZDoom

V598 The 'memset' function is used to nullify the fields of 'FDecalTemplate' class. Virtual table pointer will be damaged by this. decallib.cpp 367


class FDecalTemplate : public FDecalBase { .... }

class FDecalBase
{
  ....
  virtual const FDecalTemplate *GetDecal () const;
  virtual void ReplaceDecalRef (FDecalBase *from, FDecalBase *to) = 0;
  ....
};

Fill out the form in 2 simple steps below:

Your contact information:

Desired license type:

Examples of errors detected by the V598 diagnostic

IPP Samples

Coin3D

SlimDX

Miranda NG

.NET CoreCLR

.NET CoreCLR

GZDoom

Want to try PVS‑Studio for free?

Achievements

PVS-Studio

Licensing

Company