[cfe-dev] RFC: default to -Werror=format-security
Renato Golin via cfe-dev
cfe-dev at lists.llvm.org
Fri Feb 19 07:38:41 PST 2016
On 19 February 2016 at 15:27, Joerg Sonnenberger via cfe-dev
<cfe-dev at lists.llvm.org> wrote:
> While the case of argument-less format strings is quite likely to be an
> error, the slightly more generic case of non-literal format string with
> arguments (or va_list) does introduce a non-trivial number of false
> positives. As there is no workaround not involving compiler-specific
> features, that is completely unacceptable as default error.
I agree. This is not an error, just bad/dangerous programming.
We could even put it on by default but not make it into an error.
cheers,
--renato
More information about the cfe-dev
mailing list