[cfe-dev] -fcatch-undefined-behavior testing
Mike Stump
mrs at apple.com
Wed Dec 16 14:51:47 PST 2009
On Dec 16, 2009, at 1:23 PM, Török Edwin wrote:
> 15. incorrect buffer limit checks:
> if (tainted_signed_value <= (long) some_limit)
> a[tainted_signed_value]; //<--- code should check for negative values as
> well
Ah, this one we already have check for, in the case where the memory that backs a is known to the optimizer (after llvm implements more of the object_size builtin).
More information about the cfe-dev
mailing list