[PATCH] D155445: [analyzer][docs] Add CSA release notes
Balázs Benics via Phabricator via cfe-commits
cfe-commits at lists.llvm.org
Sun Jul 23 23:27:24 PDT 2023
This revision was automatically updated to reflect the committed changes.
Closed by commit rG862b93a8095c: [analyzer][docs] Add CSA release notes (authored by steakhal).
Changed prior to commit:
https://reviews.llvm.org/D155445?vs=541356&id=543390#toc
Repository:
rG LLVM Github Monorepo
CHANGES SINCE LAST ACTION
https://reviews.llvm.org/D155445/new/
https://reviews.llvm.org/D155445
Files:
clang/docs/ReleaseNotes.rst
Index: clang/docs/ReleaseNotes.rst
===================================================================
--- clang/docs/ReleaseNotes.rst
+++ clang/docs/ReleaseNotes.rst
@@ -1002,10 +1002,73 @@
Static Analyzer
---------------
+
- Fix incorrect alignment attribute on the this parameter of certain
non-complete destructors when using the Microsoft ABI.
(`#60465 <https://github.com/llvm/llvm-project/issues/60465>`_)
+- Removed the deprecated
+ ``consider-single-element-arrays-as-flexible-array-members`` analyzer option.
+ Any use of this flag will result in an error.
+ Use `-fstrict-flex-arrays=<n>
+ <https://clang.llvm.org/docs/ClangCommandLineReference.html#cmdoption-clang-fstrict-flex-arrays>`_
+
+- Better modeling of lifetime-extended memory regions. As a result, the
+ ``MoveChecker`` raises more true-positive reports.
+
+- Fixed some bugs (including crashes) around the handling of constant global
+ arrays and their initializer expressions.
+
+- The ``CStringChecker`` will invalidate less if the copy operation is
+ inferable to be bounded. For example, if the arguments of ``strcpy`` are
+ known to be of certain lengths and that are in-bounds.
+
+ .. code-block:: c++
+
+ struct {
+ void *ptr;
+ char arr[4];
+ } x;
+ x.ptr = malloc(1);
+ // extent of 'arr' is 4, and writing "hi\n" (4 characters),
+ // thus no buffer overflow can happen
+ strcpy(x.arr, "hi\n");
+ free(x.ptr); // no longer reports memory leak here
+
+ Similarly, functions like ``strsep`` now won't invalidate the object
+ containing the destination buffer, because it can never overflow.
+ Note that, ``std::copy`` is still not modeled, and as such, it will still
+ invalidate the enclosing object on call.
+ (`#55019 <https://github.com/llvm/llvm-project/issues/55019>`_)
+
+- Implement ``BufferOverlap`` check for ``sprint``/``snprintf``
+ The ``CStringChecker`` checks for buffer overlaps for ``sprintf`` and
+ ``snprintf``.
+
+- Objective-C support was improved around checking ``_Nonnull`` and
+ ``_Nullable`` including block pointers and literal objects.
+
+- Let the ``StreamChecker`` detect ``NULL`` streams instead of by
+ ``StdCLibraryFunctions``.
+ ``StreamChecker`` improved on the ``fseek`` modeling for the ``SEEK_SET``,
+ ``SEEK_END``, ``SEEK_CUR`` arguments.
+
+- ``StdCLibraryFunctionArgs`` was merged into the ``StdCLibraryFunctions``.
+ The diagnostics of the ``StdCLibraryFunctions`` was improved.
+
+- ``QTimer::singleShot`` now doesn't raise false-positives for memory leaks by
+ the ``MallocChecker``.
+ (`#39713 <https://github.com/llvm/llvm-project/issues/39713>`_)
+
+- Fixed the infamous unsigned index false-positives in the
+ ``ArrayBoundCheckerV2`` checker.
+ (`#44493 <https://github.com/llvm/llvm-project/issues/44493>`_)
+
+- Now, taint propagations are tracked further back until the real taint source.
+ This improves all taint-related diagnostics.
+
+- Fixed a null-pointer dereference crash inside the ``MoveChecker``.
+
.. _release-notes-sanitizers:
Sanitizers
-------------- next part --------------
A non-text attachment was scrubbed...
Name: D155445.543390.patch
Type: text/x-patch
Size: 3058 bytes
Desc: not available
URL: <http://lists.llvm.org/pipermail/cfe-commits/attachments/20230724/1915bcb8/attachment.bin>
More information about the cfe-commits
mailing list