[PATCH] D17447: Add check for CERT ENV33-C

Aaron Ballman via cfe-commits cfe-commits at lists.llvm.org
Fri Feb 19 07:33:49 PST 2016


aaron.ballman created this revision.
aaron.ballman added reviewers: alexfh, sbenza.
aaron.ballman added a subscriber: cfe-commits.

This patch adds a check for the CERT secure coding rule: ENV33-C. Do not call system(). It flags any call expression that calls a system command processor (system(), popen(), _popen()).

https://www.securecoding.cert.org/confluence/pages/viewpage.action?pageId=2130132

http://reviews.llvm.org/D17447

Files:
  clang-tidy/cert/CERTTidyModule.cpp
  clang-tidy/cert/CMakeLists.txt
  clang-tidy/cert/CommandProcessorCheck.cpp
  clang-tidy/cert/CommandProcessorCheck.h
  docs/clang-tidy/checks/cert-env33-c.rst
  docs/clang-tidy/checks/list.rst
  test/clang-tidy/cert-env33-c.c

-------------- next part --------------
A non-text attachment was scrubbed...
Name: D17447.48492.patch
Type: text/x-patch
Size: 6747 bytes
Desc: not available
URL: <http://lists.llvm.org/pipermail/cfe-commits/attachments/20160219/a047e0fb/attachment.bin>


More information about the cfe-commits mailing list