[cfe-commits] r128679 - in /cfe/trunk: lib/StaticAnalyzer/Checkers/CheckSecuritySyntaxOnly.cpp test/Analysis/security-synta
Joerg Sonnenberger
joerg at britannica.bec.de
Fri Apr 8 16:30:48 PDT 2011
On Fri, Apr 08, 2011 at 04:27:25PM -0700, Ted Kremenek wrote:
> Should we perhaps forgo trying to put all this naive checks in
> CheckSecuritySyntaxOnly, and instead focus on trying to do the real
> validation? It seems to me for folks who want to outright ban the use
> of a certain function (which is at the level of what
> CheckSecuritySyntax only is doing) then perhaps we should add compiler
> support for banning family of functions from the command line.
GCC has the poison pragma for that purpose, it could be used easily e.g.
with -include.
Joerg
More information about the cfe-commits
mailing list