]> granicus.if.org Git - clang/commit
projects / clang / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 777d706) | patch
[analyzer] Add support for taint flowing through a function (atoi).
authorAnna Zaks <ganna@apple.com>
Sat, 17 Dec 2011 00:26:34 +0000 (00:26 +0000)
committerAnna Zaks <ganna@apple.com>
Sat, 17 Dec 2011 00:26:34 +0000 (00:26 +0000)
commit9ffbe243cca46082b4a59b5c3be454ab0c455378
treee10c657c8b79dfeb94f2b879f12e444e6e6c8771tree | snapshot
parent777d706547ebc751d998134774d9d5388fff8e02commit | diff
[analyzer] Add support for taint flowing through a function (atoi).

Check if the input parameters are tainted (or point to tainted data) on
a checkPreStmt<CallExpr>. If the output should be tainted, record it in
the state. On post visit (checkPostStmt<CallExpr>), use the state to
make decisions (in addition to the existing logic). Use this logic for
atoi and fscanf.

git-svn-id: https://llvm.org/svn/llvm-project/cfe/trunk@146793 91177308-0d34-0410-b5e6-96231b3b80d8
lib/StaticAnalyzer/Checkers/GenericTaintChecker.cpp diff | blob | history
test/Analysis/taint-tester.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.