[cfe-dev] Adding taint sources to GenericTaintChecker
Ashwin Ganesh via cfe-dev
cfe-dev at lists.llvm.org
Tue Apr 12 11:41:18 PDT 2016
Oh, is someone currently working on this? What would be the basic workflow
if anyone has to start working on adding support for float , atleast taint
analysis to start with?
On Tue, Apr 12, 2016 at 9:35 PM, Artem Dergachev <dergachev.a at samsung.com>
wrote:
> On 12.04.2016 08:35, Ashwin Ganesh wrote:
> > when I use float instead of int, the taint doesn't propagate at all
>
> Umm yeah, and then we run into a bit of an issue - the analyzer does not
> use symbols for floats yet. The problem was that constraints on floats are
> not yet supported, otherwise there shouldn't be a problem to replace
> UnknownVal's with float-type symbols. This is item #2 in
> http://clang-analyzer.llvm.org/open_projects.html . Maybe we should go
> ahead and produce symbols anyway, and ignore them in the constraint
> manager, solely for the purposes of taint analysis, before we have anything
> better? Not sure right now what kinds of false positives we may unleash
> this way.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.llvm.org/pipermail/cfe-dev/attachments/20160413/eaf6b76a/attachment.html>
More information about the cfe-dev
mailing list