================
@@ -1785,6 +1768,13 @@ security.insecureAPI.DeprecatedOrUnsafeBufferHandling (C)
strncpy(buf, "a", 1); // warn
}
+The ``AllowWithoutC11`` option allows reporting warnings for these functions
even when not compiling with C11 standard. These functions are deprecated in
C11, but may still be problematic in earlier C standards.
+
+To enable this option, use:
+``-analyzer-config
security.insecureAPI.DeprecatedOrUnsafeBufferHandling:AllowWithoutC11=true``.
+
+By default, this option is set to *false*.
+
----------------
steakhal wrote:
The current phrasing is problematic because it's not clear from reading
`AllowWithoutC11` what it enables. By judging the description of the flag, I
think something like `ReportInC99AndEarlier` would be more appropriate.
But I wonder if we should just switch this behaviour and report these all the
time, and have a flag for opting in to the current behaviour. WDYT?
https://github.com/llvm/llvm-project/pull/168704
_______________________________________________
cfe-commits mailing list
[email protected]
https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits
