# This file was generated from template 'codesonar/presets/ts17961.conf.in' # # enables warning classes related to ISO/IEC TS 17961 "C Secure Coding # Rules Technical Specification". # # This part of this file was generated from 'cso_wcmanifest.py' # # At least one of the classes enabled by this preset requires unnormalized C ASTs RETAIN_UNNORMALIZED_C_AST = Yes # At least one of the classes enabled by this preset is incompatible with incremental analysis. INCREMENTAL_BUILD = No # TS17961:5.29-intoflow: Overflowing signed integers # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Addition Overflow of Allocation Size" language=c # TS17961:5.29-intoflow: Overflowing signed integers # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Addition Overflow of Size" language=c # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Array Parameter Mismatch" language=c # TS17961:5.4-boolasgn: No assignment in conditional expressions WARNING_FILTER += allow class="Assignment in Conditional" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Buffer Overrun" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Buffer Underrun" language=c # TS17961:5.16-signconv: Conversion of signed characters to wider integer types before a check for EOF # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Cast Alters Value" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast Removes const Qualifier" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast Removes volatile Qualifier" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Arithmetic Type/Void Pointer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Non-integer Arithmetic Type/Object Pointer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Object Pointers" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Virtual Base to Derived" language=c # TS17961:5.16-signconv: Conversion of signed characters to wider integer types before a check for EOF # TS17961:5.6-argcomp: Calling functions with incorrect arguments # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Coercion Alters Value" language=c # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Coercion: Integer Constant to Pointer" language=c # TS17961:5.35-ptrobj: Subtracting or comparing two pointers that do not refer to the same array # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Comparison of Unrelated Pointers" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion from Function Pointer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion to Function Pointer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Pointer to Incomplete" language=c # TS17961:5.10-intptrconv: Converting a pointer to integer or integer to pointer # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Pointer/Integer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Void Pointer to Object Pointer" language=c # TS17961:5.1-ptrcomp: Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Derived Class From Virtual Base" language=c # TS17961:5.25-diverr: Integer division errors # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Division By Zero" language=c # TS17961:5.22-dblfree: Freeing memory multiple times # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Double Free" language=c # TS17961:5.12-filecpy: Copying a FILE object WARNING_FILTER += allow class="FILE* Dereference" language=c # TS17961:5.25-diverr: Integer division errors # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Float Division By Zero" language=c # TS17961:5.23-usrfmt: Including tainted or out-of-domain input in a format string WARNING_FILTER += allow class="Float-typed Loop Counter" language=c # TS17961:5.23-usrfmt: Including tainted or out-of-domain input in a format string # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String" language=c # TS17961:5.23-usrfmt: Including tainted or out-of-domain input in a format string # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String Injection" language=c # TS17961:5.44-invfmtstr: Using invalid format strings # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String Type Error" language=c # TS17961:5.38-taintnoproto: Using a tainted value as an argument to an unprototyped function pointer WARNING_FILTER += allow class="Function Pointer" language=c # TS17961:5.13-funcdecl: Declaring the same function or object in incompatible ways WARNING_FILTER += allow class="Global Variable Declared with Different Types" language=c # TS17961:5.19-liberr: Failing to detect and handle standard library errors # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Ignored Return Value" language=c # TS17961:5.13-funcdecl: Declaring the same function or object in incompatible ways # TS17961:5.6-argcomp: Calling functions with incorrect arguments WARNING_FILTER += allow class="Inconsistent Function Declarations" language=c # TS17961:5.13-funcdecl: Declaring the same function or object in incompatible ways WARNING_FILTER += allow class="Inconsistent Object Declarations" language=c # TS17961:5.29-intoflow: Overflowing signed integers # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Integer Overflow of Allocation Size" language=c # TS17961:5.18-fileclose: Failing to close files or free dynamic memory when they are no longer needed # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Leak" language=c # "Malformed switch Statement" is not enabled by this preset. # - All of its relevant categories are more closely related to other classes that are enabled by the preset. # - TS17961:5.17-swtchdflt is better matched by "Missing default" # TS17961:5.24-inverrno: Incorrectly setting and using errno WARNING_FILTER += allow class="Missing Test of Error Code" language=c # TS17961:5.17-swtchdflt: Use of an implied default in a switch statement WARNING_FILTER += allow class="Missing default" language=c # TS17961:5.29-intoflow: Overflowing signed integers # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Multiplication Overflow of Allocation Size" language=c # TS17961:5.29-intoflow: Overflowing signed integers # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Multiplication Overflow of Size" language=c # TS17961:5.16-signconv: Conversion of signed characters to wider integer types before a check for EOF # TS17961:5.31-chrsgnext: Passing arguments to character-handling functions that are not representable as unsigned char # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Negative Character Value" language=c # TS17961:5.30-nonnullstr: Passing a non-null-terminated string to a library function # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="No Space For Null Terminator" language=c # TS17961:5.27-strmod: Modifying string literals WARNING_FILTER += allow class="Non-const String Literal" language=c # TS17961:5.24-inverrno: Incorrectly setting and using errno WARNING_FILTER += allow class="Non-zero Error Code" language=c # TS17961:5.14-nullref: Dereferencing an out-of-domain pointer # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Null Pointer Dereference" language=c # TS17961:5.21-invptr: Forming or using out-of-bounds pointers or array subscripts WARNING_FILTER += allow class="Pointer Before Beginning of Object" language=c # TS17961:5.10-intptrconv: Converting a pointer to integer or integer to pointer # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Pointer Conversion Loses Bits" language=c # TS17961:5.10-intptrconv: Converting a pointer to integer or integer to pointer WARNING_FILTER += allow class="Pointer Conversion to Same Size Integer" language=c # TS17961:5.21-invptr: Forming or using out-of-bounds pointers or array subscripts WARNING_FILTER += allow class="Pointer Past End of Object" language=c # TS17961:5.32-restrict: Passing pointers into the same object as arguments to different restrict-qualified parameters WARNING_FILTER += allow class="Restrict Qualifier Used" language=c # TS17961:5.14-nullref: Dereferencing an out-of-domain pointer # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Return Pointer to Local" language=c # TS17961:5.28-libmod: Modifying the string returned by getenv, localeconv, setlocale, and strerror WARNING_FILTER += allow class="Returned Pointer Not Treated as const" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Subtraction Underflow of Allocation Size" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Subtraction Underflow of Size" language=c # TS17961:5.35-ptrobj: Subtracting or comparing two pointers that do not refer to the same array # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Subtraction of Unrelated Pointers" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Tainted Allocation Size" language=c # TS17961:5.14-nullref: Dereferencing an out-of-domain pointer # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Tainted Buffer Access" language=c # TS17961:5.39-taintformatio: Using a tainted value to write to an object using a formatted input or output function WARNING_FILTER += allow class="Tainted Write" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Truncation of Allocation Size" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Truncation of Size" language=c # TS17961:5.33-xfree: Reallocating or freeing memory that was not dynamically allocated # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Type Mismatch" language=c # TS17961:5.14-nullref: Dereferencing an out-of-domain pointer WARNING_FILTER += allow class="Unchecked Parameter Dereference" language=c language=c # TS17961:5.34-uninitref: Referencing uninitialized memory # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Uninitialized Variable" language=c # TS17961:5.45-taintsink: Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Unreasonable Size Argument" language=c # TS17961:5.30-nonnullstr: Passing a non-null-terminated string to a library function # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Unterminated C String" language=c # TS17961:5.2-accfree: Accessing freed memory # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Use After Free" language=c # TS17961:5.15-addrescape: Escaping of the address of an automatic object WARNING_FILTER += allow class="Use of putenv" language=c # TS17961:5.3-accsig: Accessing shared objects in signal handlers # TS17961:5.5-asyncsig: Calling functions in the C Standard Library other than abort, _Exit, and signal from within a signal handler # TS17961:5.7-sigcall: Calling signal from interruptible signal handlers WARNING_FILTER += allow class="Use of signal" language=c # TS17961:5.36-taintstrcpy: Tainted strings are passed to a string copying function WARNING_FILTER += allow class="Use of strcpy" language=c # TS17961:5.8-syscall: Calling system WARNING_FILTER += allow class="Use of system" language=c # TS17961:5.37-sizeofptr: Taking the size of a pointer to determine the size of the pointed-to type WARNING_FILTER += allow class="sizeof Array Parameter" language=c