Add test case for mktemp. Patch by Lei Zhang.

author Zhongxing Xu <xuzhongxing@gmail.com>

Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)

committer Zhongxing Xu <xuzhongxing@gmail.com>

Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)
author Zhongxing Xu <xuzhongxing@gmail.com>
Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)
committer Zhongxing Xu <xuzhongxing@gmail.com>
Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)
diff --git a/test/Analysis/security-syntax-checks.m b/test/Analysis/security-syntax-checks.m

index bcdc65ebd4591e063fe5179e8cdaa5f469cd67cb..2ce0684312c464764c39da1d91cdfd9ceb5978e1 100644 (file)
--- a/test/Analysis/security-syntax-checks.m
+++ b/test/Analysis/security-syntax-checks.m
@@ -96,3 +96,9 @@ void test_rand()
    rand_r(&b);  // expected-warning{{Function 'rand_r' is obsolete because it implements a poor random number generator.  Use 'arc4random' instead}}
    random();    // expected-warning{{The 'random' function produces a sequence of values that an adversary may be able to predict.  Use 'arc4random' instead}}
  }
+
+char *mktemp(char *buf);
+
+void test_mktemp() {
+  char *x = mktemp("/tmp/zxcv"); // expected-warning{{Call to function 'mktemp' is insecure as it always creates or uses insecure temporary file}}
+}
author	Zhongxing Xu <xuzhongxing@gmail.com>
	Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)
committer	Zhongxing Xu <xuzhongxing@gmail.com>
	Sun, 6 Dec 2009 12:45:46 +0000 (12:45 +0000)