# This preset enables all of the insider warning classes and makes # other changes that may increase the total number of warnings # reported, both of insider warnings and other warning classes. # To increase the number of warnings, it enables additional # warning classes that are disabled by default, and changes the # values of certain configuration parameters DISABLED_TAINT_KINDS = REPORT_IMPLIED_INEQUALITY = Yes LOOP_COUNTER_DISTRUST = 4 WARN_MORE_LOOP_UVARS = Yes # Nothing is whitelisted: flag everything UNTRUSTED_PROC_BLACKLIST = .* NETWORK_PORT_BLACKLIST = .* WARNING_FILTER += allow class="Addition Overflow of Allocation Size" WARNING_FILTER += allow class="Addition Overflow of Size" WARNING_FILTER += allow class="Assignment in Conditional" WARNING_FILTER += allow class="2$Buffer Overrun" WARNING_FILTER += allow class="Excessive Stack Depth" WARNING_FILTER += allow class="Hardcoded DNS Name" WARNING_FILTER += allow class="Memory Protection Removal" WARNING_FILTER += allow class="Multiplication Overflow of Allocation Size" WARNING_FILTER += allow class="Multiplication Overflow of Size" WARNING_FILTER += allow class="Potential Unbounded Loop" WARNING_FILTER += allow class="Subtraction Underflow of Allocation Size" WARNING_FILTER += allow class="Subtraction Underflow of Size" WARNING_FILTER += allow class="Tainted Allocation Size" WARNING_FILTER += allow class="Tainted Filename" WARNING_FILTER += allow class="Tainted Network Address" WARNING_FILTER += allow class="Tainted Write" WARNING_FILTER += allow class="Truncation of Allocation Size" WARNING_FILTER += allow class="Truncation of Size" WARNING_FILTER += allow class="Use of atof" WARNING_FILTER += allow class="Use of atoi" WARNING_FILTER += allow class="Use of atol" WARNING_FILTER += allow class="Use of atoll" WARNING_FILTER += allow class="Use of bsearch" WARNING_FILTER += allow class="Use of longjmp" WARNING_FILTER += allow class="Use of setjmp" # Insider warning classes WARNING_FILTER += allow class="Assignment in Conditional" WARNING_FILTER += allow class="Conversion to Function Pointer" WARNING_FILTER += allow class="Inline Assembly Code" WARNING_FILTER += allow class="Library Function Override" WARNING_FILTER += allow class="Memory Protection Removal" WARNING_FILTER += allow class="Possible Anti-Debugging" WARNING_FILTER += allow class="Potential Timebomb" WARNING_FILTER += allow class="Tainted Filename" WARNING_FILTER += allow class="Untrusted Library Load" WARNING_FILTER += allow class="Untrusted Network Host" WARNING_FILTER += allow class="Untrusted Network Port" WARNING_FILTER += allow class="Untrusted Process Creation" WARNING_FILTER += allow class="Weak Cryptography" WARNING_FILTER += allow class="chroot without chdir"