Charusso added a comment. In https://reviews.llvm.org/D45050#1071897, @xbolva00 wrote:
> Shouldn't it catch in curl also this code? > > urllen = strlen(url_clone); > > .... > > memcpy(newest, url_clone, urllen); > > Edit: if possible, report these bugs to project developers :) Thanks for your idea @xbolva00, I will implement this feature, but currently I have problems with parens which cause ugly fix-its. After the review I will share the results with the devs. In https://reviews.llvm.org/D45050#1071926, @xbolva00 wrote: > Another idea if you want to implement it - check fopen. > > FILE *f = fopen("file", "r"); // read only > fputs("str", f); // we are writing -> boom, sigsegv or something like that. Thanks for your sharing but I think I will move forward to Static Analyzer with my own projects. https://reviews.llvm.org/D45050 _______________________________________________ cfe-commits mailing list cfe-commits@lists.llvm.org http://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits
