<html>
<head>
<base href="http://llvm.org/bugs/" />
</head>
<body><table border="1" cellspacing="0" cellpadding="8">
<tr>
<th>Bug ID</th>
<td><a class="bz_bug_link
bz_status_NEW "
title="NEW --- - Incorrect security warning when format string is conditional between two constants"
href="http://llvm.org/bugs/show_bug.cgi?id=17886">17886</a>
</td>
</tr>
<tr>
<th>Summary</th>
<td>Incorrect security warning when format string is conditional between two constants
</td>
</tr>
<tr>
<th>Product</th>
<td>clang
</td>
</tr>
<tr>
<th>Version</th>
<td>trunk
</td>
</tr>
<tr>
<th>Hardware</th>
<td>Macintosh
</td>
</tr>
<tr>
<th>OS</th>
<td>MacOS X
</td>
</tr>
<tr>
<th>Status</th>
<td>NEW
</td>
</tr>
<tr>
<th>Severity</th>
<td>normal
</td>
</tr>
<tr>
<th>Priority</th>
<td>P
</td>
</tr>
<tr>
<th>Component</th>
<td>-New Bugs
</td>
</tr>
<tr>
<th>Assignee</th>
<td>unassignedclangbugs@nondot.org
</td>
</tr>
<tr>
<th>Reporter</th>
<td>tjw@me.com
</td>
</tr>
<tr>
<th>CC</th>
<td>llvmbugs@cs.uiuc.edu
</td>
</tr>
<tr>
<th>Classification</th>
<td>Unclassified
</td>
</tr></table>
<p>
<div>
<pre>Created <span class=""><a href="attachment.cgi?id=11522" name="attach_11522" title="sample case">attachment 11522</a> <a href="attachment.cgi?id=11522&action=edit" title="sample case">[details]</a></span>
sample case
Rather than having excessively long calls to functions like
NSRunInformationalAlertPanel(), it is (extremely) common to declare the
parameters individually first.
clang-sa now spuriously warns on this case. It should also avoid warning on
simple conditionals that result in the same 'kind' of format string, with
exactly the same format specifiers in the same order. Note that this should
exclude '%%' specifiers or other specifiers that don't consume arguments.
See the attached sample.</pre>
</div>
</p>
<hr>
<span>You are receiving this mail because:</span>
<ul>
<li>You are on the CC list for the bug.</li>
</ul>
</body>
</html>