[PATCH] D73536: [analyzer][taint] Remove taint from symbolic expressions if used in comparisons
Balázs Benics via Phabricator via cfe-commits
cfe-commits at lists.llvm.org
Wed Feb 5 06:02:43 PST 2020
steakhal added a subscriber: martong.
steakhal added a comment.
I'm convinced that we shouldn't remove taint from expressions used in comparisons.
With the current configuration files, `sink` functions are not too useful.
For now, I would delay developing a mechanism describing constraints here, since @martong is working on function summaries in D73897 <https://reviews.llvm.org/D73897>,D73898 <https://reviews.llvm.org/D73898>.
In function summaries we could describe how should a given function react to a tainted parameter. Which would draw `sink` functions in the taint config file meaningless.
I'm planning to abandon this patch if you don't have any comments.
Repository:
rG LLVM Github Monorepo
CHANGES SINCE LAST ACTION
https://reviews.llvm.org/D73536/new/
https://reviews.llvm.org/D73536
More information about the cfe-commits
mailing list