[clang] [analyzer] Fix core.VLASize checker false positive taint reports (PR #68140)
via cfe-commits
cfe-commits at lists.llvm.org
Fri Feb 23 01:26:50 PST 2024
================
@@ -205,6 +199,12 @@ ProgramStateRef VLASizeChecker::checkVLAIndexSize(CheckerContext &C,
State = StatePos;
}
+ // Check if the size is tainted.
+ if ((StateNeg || StateZero) && isTainted(State, SizeV)) {
----------------
NagyDonat wrote:
At this point `StateNeg` may be default-initialized; but I assume that it doesn't cause any problems.
https://github.com/llvm/llvm-project/pull/68140
More information about the cfe-commits
mailing list