[cfe-commits] r149032 - in /cfe/trunk/www/analyzer: latest_checker.html.incl release_notes.html

Ted Kremenek kremenek at apple.com
Wed Jan 25 19:02:34 PST 2012


Author: kremenek
Date: Wed Jan 25 21:02:34 2012
New Revision: 149032

URL: http://llvm.org/viewvc/llvm-project?rev=149032&view=rev
Log:
Post link to checker-260, which is checker-259 with some experimental checks enabled.

Modified:
    cfe/trunk/www/analyzer/latest_checker.html.incl
    cfe/trunk/www/analyzer/release_notes.html

Modified: cfe/trunk/www/analyzer/latest_checker.html.incl
URL: http://llvm.org/viewvc/llvm-project/cfe/trunk/www/analyzer/latest_checker.html.incl?rev=149032&r1=149031&r2=149032&view=diff
==============================================================================
--- cfe/trunk/www/analyzer/latest_checker.html.incl (original)
+++ cfe/trunk/www/analyzer/latest_checker.html.incl Wed Jan 25 21:02:34 2012
@@ -1 +1 @@
-<b><a href="http://bit.ly/zOWf1P">checker-259.tar.bz2</a></b> (built January 25, 2012)
+<b><a href="http://bit.ly/wpAqVP">checker-260.tar.bz2</a></b> (built January 25, 2012)

Modified: cfe/trunk/www/analyzer/release_notes.html
URL: http://llvm.org/viewvc/llvm-project/cfe/trunk/www/analyzer/release_notes.html?rev=149032&r1=149031&r2=149032&view=diff
==============================================================================
--- cfe/trunk/www/analyzer/release_notes.html (original)
+++ cfe/trunk/www/analyzer/release_notes.html Wed Jan 25 21:02:34 2012
@@ -15,6 +15,22 @@
 
 <h1>Release notes for <tt>checker-XXX</tt> builds</h1>
 
+<h4 id="checker_260">checker-260</h4>
+
+<p><b>built: </b>January 25, 2012<br>
+<b>download:</b> <a href="http://bit.ly/wpAqVP">checker-260.tar.bz2</a></p>
+<p><b>highlights:</b></p>
+
+<p>This is essentially the same as checker-259, but enables the following <i>experimental</i> checkers (please provide feedback):</p>
+
+<ul>
+  <li>Warns about unsafe uses of CFArrayCreate, CFSetCreate, and CFDictionaryCreate</li>
+  <li>Warns about unsafe uses of getpw, gets, which are sources of buffer overflows</li>
+  <li>Warns about unsafe uses of mktemp and mktemps, which can lead to insecure temporary files</li>
+  <li>Warns about unsafe uses of vfork, which is <a href="https://www.securecoding.cert.org/confluence/display/seccode/POS33-C.+Do+not+use+vfork()">insecure</a> to use</li>
+  <li>Warns about not checking the return values of setuid, setgid, seteuid, setegid, setreuid, setregid (another security issue)</li>
+</ul>
+
 <h4 id="checker_259">checker-259</h4>
 
 <p><b>built: </b>January 25, 2012<br>





More information about the cfe-commits mailing list