[clang] [clang][analyzer] Add taintedness to argv (PR #178054)
DonĂ¡t Nagy via cfe-commits
cfe-commits at lists.llvm.org
Wed Feb 11 05:48:43 PST 2026
================
@@ -0,0 +1,24 @@
+// RUN: %clang_analyze_cc1 -analyzer-checker=optin.taint,core,security.ArrayBound -analyzer-config assume-controlled-environment=false -analyzer-output=text -verify %s
+// This file is for testing enhanced diagnostics produced by the GenericTaintChecker
+
+
+typedef __typeof(sizeof(int)) size_t;
+int system(const char *command);
+size_t strlen( const char* str );
+char * strncat ( char * destination, const char * source, size_t num );
+char * strncpy ( char * destination, const char * source, size_t num );
----------------
NagyDonat wrote:
I also felt that the test code is ugly, but I didn't remark this because ugly test code is very common on this project.
By the way @steakhal WDYT about setting up a reduced clang-format config that applies even in the test directory? (E.g. I don't think that we should bother with variable name capitalization rules, but it would be nice if inconsistent whitespace like this would be reported.)
https://github.com/llvm/llvm-project/pull/178054
More information about the cfe-commits
mailing list