# This file was generated from template 'codesonar\presets\bsi.conf.in' # # Build Security In was a ruleset from CERT. They removed it from the # CERT website some time ago, but it lives on here. # # This part of this file was generated from 'cso_wcmanifest.py' # # BSI:AddAccess-ACE WARNING_FILTER += allow class="Use of AddAccessAllowedAce" # BSI:AddAccess-ACE WARNING_FILTER += allow class="Use of AddAccessDeniedAce" # BSI:AfxLoadLibrary WARNING_FILTER += allow class="Use of AfxLoadLibrary" # BSI:AfxParseURL: Use of AfxParseURL WARNING_FILTER += allow class="Use of AfxParseURL" # BSI:AfxLoadLibrary WARNING_FILTER += allow class="Use of CoLoadLibrary" # BSI:CreateFile-01: Use of CreateFile # BSI:CreateFile-02: Use of CreateFile WARNING_FILTER += allow class="Use of CreateFile" # BSI:CreateProcess-02: Use of CreateProcess # BSI:CreateProcess-03: Use of CreateProcess # BSI:CreateProcess-04: Use of CreateProcess WARNING_FILTER += allow class="Use of CreateProcess" # BSI:CreateThread: Use of CreateThread WARNING_FILTER += allow class="Use of CreateThread" # BSI:FormatMessage: Use of FormatMessage WARNING_FILTER += allow class="Use of FormatMessage" # BSI:LoadLibrary: Use of LoadLibrary WARNING_FILTER += allow class="Use of LoadLibrary" # BSI:LoadModule: Use of LoadModule WARNING_FILTER += allow class="Use of LoadModule" # BSI:MoveFile: Use of MoveFile WARNING_FILTER += allow class="Use of MoveFile" # BSI:OemToChar WARNING_FILTER += allow class="Use of OemToAnsi" # BSI:OemToChar WARNING_FILTER += allow class="Use of OemToChar" # BSI:SHCreateProcessAsUserW: Use of SHCreateProcessAsUserW WARNING_FILTER += allow class="Use of SHCreateProcessAsUserW" # BSI:ShellExecute: Use of ShellExecute WARNING_FILTER += allow class="Use of ShellExecute" # BSI:StrCatChainW: Use of StrCatChainW WARNING_FILTER += allow class="Use of StrCatChainW" # BSI:WinExec: Use of WinExec WARNING_FILTER += allow class="Use of WinExec" # BSI:Exec-SearchPath-01 # BSI:Exec-SearchPath-02 WARNING_FILTER += allow class="Use of _exec" # BSI:Exec-SearchPath-01 # BSI:Exec-SearchPath-02 WARNING_FILTER += allow class="Use of _spawn" # BSI:Catopen: Use of catopen WARNING_FILTER += allow class="Use of catopen" # BSI:CHROOT-01 # BSI:CHROOT-02 # BSI:CHROOT-03 WARNING_FILTER += allow class="Use of chroot" # BSI:CUSERID: Use of cuserid WARNING_FILTER += allow class="Use of cuserid" # BSI:Exec-SearchPath-01 WARNING_FILTER += allow class="Use of execlp" # BSI:Exec-SearchPath-01 WARNING_FILTER += allow class="Use of execvp" # BSI:GETLOGIN: Use of getlogin WARNING_FILTER += allow class="Use of getlogin" # BSI:GETOPT: Use of getopt WARNING_FILTER += allow class="Use of getopt" # BSI:GETPASS: Use of getpass WARNING_FILTER += allow class="Use of getpass" # BSI:GETWD: Use of getwd WARNING_FILTER += allow class="Use of getwd" # BSI:MEMSET: Use of memset WARNING_FILTER += allow class="Use of memset" # BSI:Mkstemp: Use of mkstemp WARNING_FILTER += allow class="Use of mkstemp" # BSI:Exec-SearchPath-01 WARNING_FILTER += allow class="Use of popen" # BSI:MetaRule WARNING_FILTER += allow class="Use of rand" # BSI:MetaRule WARNING_FILTER += allow class="Use of rand48 Function" # BSI:MetaRule WARNING_FILTER += allow class="Use of random" # BSI:REALPATH: Use of realpath WARNING_FILTER += allow class="Use of realpath" # BSI:RecvMsg: Use of recvmsg WARNING_FILTER += allow class="Use of recvmsg" # BSI:SIGNAL-02: Use of setuid WARNING_FILTER += allow class="Use of setuid" # BSI:SIGNAL-01: Use of signal WARNING_FILTER += allow class="Use of signal" # BSI:STRCAT: Use of strcat WARNING_FILTER += allow class="Use of strcat" # BSI:STRCMP: Use of strcmp WARNING_FILTER += allow class="Use of strcmp" # BSI:STRCPY: Use of strcpy WARNING_FILTER += allow class="Use of strcpy" # BSI:STRLEN: Use of strlen WARNING_FILTER += allow class="Use of strlen" # BSI:STRTRNS: Use of strtrns WARNING_FILTER += allow class="Use of strtrns" # BSI:SYSLOG-1: Use of syslog WARNING_FILTER += allow class="Use of syslog" # BSI:T_Open: Use of t_open WARNING_FILTER += allow class="Use of t_open" # BSI:TTYNAME: Use of ttyname WARNING_FILTER += allow class="Use of ttyname" # BSI:VFORK: Use of vfork WARNING_FILTER += allow class="Use of vfork" # BSI:CHROOT-01 # BSI:CHROOT-02 # BSI:CHROOT-03 WARNING_FILTER += allow class="chroot without chdir"