[cfe-commits] r128679 - in /cfe/trunk: lib/StaticAnalyzer/Checkers/CheckSecuritySyntaxOnly.cpp test/Analysis/security-synta

Joerg Sonnenberger joerg at britannica.bec.de
Fri Apr 8 16:30:48 PDT 2011

On Fri, Apr 08, 2011 at 04:27:25PM -0700, Ted Kremenek wrote:
> Should we perhaps forgo trying to put all this naive checks in
> CheckSecuritySyntaxOnly, and instead focus on trying to do the real
> validation?  It seems to me for folks who want to outright ban the use
> of a certain function (which is at the level of what
> CheckSecuritySyntax only is doing) then perhaps we should add compiler
> support for banning family of functions from the command line.

GCC has the poison pragma for that purpose, it could be used easily e.g.
with -include.


More information about the cfe-commits mailing list