[clang] [analyzer] Fix core.VLASize checker false positive taint reports (PR #68140)

via cfe-commits Fri, 23 Feb 2024 01:26:58 -0800

================
@@ -205,6 +199,12 @@ ProgramStateRef 
VLASizeChecker::checkVLAIndexSize(CheckerContext &C,
     State = StatePos;
   }
 
+  // Check if the size is tainted.
+  if ((StateNeg || StateZero) && isTainted(State, SizeV)) {
----------------
NagyDonat wrote:


At this point `StateNeg` may be default-initialized; but I assume that it 
doesn't cause any problems.

https://github.com/llvm/llvm-project/pull/68140
_______________________________________________
cfe-commits mailing list
cfe-commits@lists.llvm.org
https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits

[clang] [analyzer] Fix core.VLASize checker false positive taint reports (PR #68140)

Reply via email to