[clang] [analyzer] Refine LCV handling in Store for better taint propagation (PR #114835)
DonĂ¡t Nagy via cfe-commits
cfe-commits at lists.llvm.org
Wed Nov 6 04:45:27 PST 2024
NagyDonat wrote:
Thanks for handling this issue!
My quick first impression is that I'm satisfied with your changes. However, I'm a bit confused because as far as I see, the empty struct is _unable to_ transfer any attacker-controlled data, and therefore I don't know what does it mean that it's tainted. Do you have a practical use case where this would be useful?
https://github.com/llvm/llvm-project/pull/114835
More information about the cfe-commits
mailing list