wangtao
/
llvm-project
forked from OSchip/llvm-project
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
105,868 Commits 29 Branches 0 Tags 2.2 GiB
Commit Graph

14 Commits

Author SHA1 Message Date
Lenny Maiorani de909e4946 Add security syntax checker for strcat() which causes the Static Analyzer to generate a warning any time the strcat() function is used with a note suggesting to use a function which provides bounded buffers. CWE-119. 
Also, brings the security syntax checker more inline with coding standards.

llvm-svn: 128916
 2011-04-05 20:18:46 +00:00
Lenny Maiorani 6ffe738f24 Add security syntax checker for strcpy() which causes the Static Analyzer to generate a warning any time the strcpy() function is used with a note suggesting to use a function which provides bounded buffers. 
llvm-svn: 128679
 2011-03-31 22:09:14 +00:00
Ted Kremenek 49c79790de Rework checker "packages" and groups to be more hierarchical. 
llvm-svn: 128187
 2011-03-24 00:28:47 +00:00
Argyrios Kyrtzidis af45aca670 [analyzer] Use the new registration mechanism on the non-path-sensitive-checkers: 
DeadStoresChecker
  ObjCMethSigsChecker
  ObjCUnusedIvarsChecker
  SizeofPointerChecker
  ObjCDeallocChecker
  SecuritySyntaxChecker

llvm-svn: 125779
 2011-02-17 21:39:33 +00:00
Ted Kremenek ec5b3d45c1 Rename -cc1 option '-warn-security-syntactic' to '-analyzer-check-security-syntactic'. 
llvm-svn: 95342
 2010-02-05 01:50:36 +00:00
Eli Friedman 53b3cde60f Add abort() as a builtin. This has two effects: one, we warn for incorrect 
declarations of abort(), and two, we mark it noreturn.  Missing the latter
shows up in one of the "embarassing" tests (from the thread on llvmdev
"detailed comparison of generated code size for LLVM and other compilers").

llvm-svn: 91515
 2009-12-16 06:28:21 +00:00
Daniel Dunbar 8fbe78f6fc Update tests to use %clang_cc1 instead of 'clang-cc' or 'clang -cc1'. 
- This is designed to make it obvious that %clang_cc1 is a "test variable"
   which is substituted. It is '%clang_cc1' instead of '%clang -cc1' because it
   can be useful to redefine what gets run as 'clang -cc1' (for example, to set
   a default target).

llvm-svn: 91446
 2009-12-15 20:14:24 +00:00
Zhongxing Xu 27f686f8ec Replace clang-cc with clang -cc1. 
llvm-svn: 91272
 2009-12-14 06:34:20 +00:00
Zhongxing Xu efd9ae8a85 Add test case for mktemp. Patch by Lei Zhang. 
llvm-svn: 90706
 2009-12-06 12:45:46 +00:00
Zhongxing Xu d6e7f9d4b2 Add check for obsolete function call of getpw(). 
llvm-svn: 86537
 2009-11-09 12:19:26 +00:00
Ted Kremenek ad5a600a24 Implement: <rdar://problem/6337100> CWE-338: Use of cryptographically weak prng 
Patch by Geoff Keating!

llvm-svn: 80752
 2009-09-02 02:47:41 +00:00
Ted Kremenek d032fcce5c Implement: <rdar://problem/6337132> CWE-273: Failure to Check Whether Privileges 
Were Dropped Successfully

Patch by Geoff Keating!

llvm-svn: 80313
 2009-08-28 00:08:09 +00:00
Ted Kremenek 6610c0326b Implement: <rdar://problem/6335715> rule request: gets() buffer overflow 
llvm-svn: 76905
 2009-07-23 22:29:41 +00:00
Ted Kremenek 9c49762776 Refine checking and diagnostics for use of floating point variable as a counter. 
This implements <rdar://problem/6336718> and checks for CERT secure coding
advisory FLP30-C.

llvm-svn: 76900
 2009-07-23 21:34:35 +00:00