Bug 1430749 - Update the list of checkers in config.yaml to add some clang-analyzer-security checks. r=janx
authorAndi-Bogdan Postelnicu <bpostelnicu@mozilla.com>
Tue, 16 Jan 2018 14:43:05 +0200
changeset 399441 9be7249e74fd7f6d9163b59d3386ed01038197a0
parent 399440 3b7efb332de3425cae2606ada7f923fb3f3670d2
child 399442 68e67e45eb90b64005a782ee76153f462de28fe8
child 399524 66a4b7021c016c0f44838667a4462e2a0e13e722
child 399527 9f83ec0895ea02d44ca445e76f10e613367d8693
push id58120
push userbpostelnicu@mozilla.com
push dateTue, 16 Jan 2018 13:14:37 +0000
treeherderautoland@9be7249e74fd [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersjanx
bugs1430749
milestone59.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 1430749 - Update the list of checkers in config.yaml to add some clang-analyzer-security checks. r=janx MozReview-Commit-ID: BkccyEOktHS
tools/clang-tidy/config.yaml
--- a/tools/clang-tidy/config.yaml
+++ b/tools/clang-tidy/config.yaml
@@ -5,18 +5,34 @@ target: obj-x86_64-pc-linux-gnu
 # All the clang checks used by the static-analysis tools.
 clang_checkers:
  - name: -*
    publish: !!bool no
  - name: bugprone-forward-declaration-namespace
    publish: !!bool yes
  - name: clang-analyzer-deadcode.DeadStores
    publish: !!bool yes
- - name: clang-analyzer-security.*
+ - name: clang-analyzer-security.FloatLoopCounter
+   publish: !!bool yes
+ - name: clang-analyzer-security.UncheckedReturn
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.getpw
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.gets
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.mkstemp
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.mktemp
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.rand
+   publish: !!bool yes
+ - name: clang-analyzer-security.insecureAPI.strcpy
    publish: !!bool no
+ - name: clang-analyzer-security.insecureAPI.vfork
+   publish: !!bool yes
  - name: misc-argument-comment
    publish: !!bool yes
  - name: misc-assert-side-effect
    publish: !!bool yes
  - name: misc-suspicious-missing-comma
    publish: !!bool yes
  - name: misc-suspicious-semicolon
    publish: !!bool yes