# This file was generated from template 'codesonar\presets\ts17961.conf.in' # # enables warning classes related to ISO/IEC TS 17961 "C Secure Coding # Rules Technical Specification". # # This part of this file was generated from 'cso_wcmanifest.py' # # At least one of the classes enabled by this preset requires unnormalized C ASTs RETAIN_UNNORMALIZED_C_AST = Yes # At least one of the classes enabled by this preset is incompatible with incremental analysis. INCREMENTAL_BUILD = No # TS17961:5.29-intoflow: 5.29. Overflowing signed integers # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Addition Overflow of Allocation Size" language=c # TS17961:5.29-intoflow: 5.29. Overflowing signed integers # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Addition Overflow of Size" language=c # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Array Parameter Mismatch" language=c # TS17961:5.4-boolasgn: 5.4. No assignment in conditional expressions WARNING_FILTER += allow class="Assignment in Conditional" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Buffer Overrun" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Buffer Underrun" language=c # TS17961:5.16-signconv: 5.16. Conversion of signed characters to wider integer types before a check for EOF # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Cast Alters Value" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast Removes const Qualifier" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast Removes volatile Qualifier" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Arithmetic Type/Void Pointer" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Non-integer Arithmetic Type/Object Pointer" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Object Pointers" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type WARNING_FILTER += allow class="Cast: Virtual Base to Derived" language=c # TS17961:5.16-signconv: 5.16. Conversion of signed characters to wider integer types before a check for EOF # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Coercion Alters Value" language=c # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Coercion: Integer Constant to Pointer" language=c # TS17961:5.35-ptrobj: 5.35. Subtracting or comparing two pointers that do not refer to the same array # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Comparison of Unrelated Pointers" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion from Function Pointer" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion to Function Pointer" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Pointer to Incomplete" language=c # TS17961:5.10-intptrconv: 5.10. Converting a pointer to integer or integer to pointer # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Pointer/Integer" language=c # TS17961:5.1-ptrcomp: 5.1. Accessing an object through a pointer to an incompatible type # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Conversion: Void Pointer to Object Pointer" language=c # TS17961:5.25-diverr: 5.25. Integer division errors # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Division By Zero" language=c # TS17961:5.22-dblfree: 5.22. Freeing memory multiple times # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Double Free" language=c # TS17961:5.12-filecpy: 5.12. Copying a FILE object WARNING_FILTER += allow class="FILE* Dereference" language=c # TS17961:5.25-diverr: 5.25. Integer division errors # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Float Division By Zero" language=c # TS17961:5.23-usrfmt: 5.23. Including tainted or out-of-domain input in a format string WARNING_FILTER += allow class="Float-typed Loop Counter" language=c # TS17961:5.23-usrfmt: 5.23. Including tainted or out-of-domain input in a format string # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String" language=c # TS17961:5.23-usrfmt: 5.23. Including tainted or out-of-domain input in a format string # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String Injection" language=c # TS17961:5.44-invfmtstr: 5.44. Using invalid format strings # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Format String Type Error" language=c # TS17961:5.38-taintnoproto: 5.38. Using a tainted value as an argument to an unprototyped function pointer WARNING_FILTER += allow class="Function Pointer" language=c # TS17961:5.13-funcdecl: 5.13. Declaring the same function or object in incompatible ways WARNING_FILTER += allow class="Global Variable Declared with Different Types" language=c # TS17961:5.19-liberr: 5.19. Failing to detect and handle standard library errors # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Ignored Return Value" language=c # TS17961:5.13-funcdecl: 5.13. Declaring the same function or object in incompatible ways # TS17961:5.6-argcomp: 5.6. Calling functions with incorrect arguments WARNING_FILTER += allow class="Inconsistent Function Declarations" language=c # TS17961:5.13-funcdecl: 5.13. Declaring the same function or object in incompatible ways WARNING_FILTER += allow class="Inconsistent Object Declarations" language=c # TS17961:5.29-intoflow: 5.29. Overflowing signed integers # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Integer Overflow of Allocation Size" language=c # TS17961:5.18-fileclose: 5.18. Failing to close files or free dynamic memory when they are no longer needed # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Leak" language=c # "Malformed switch Statement" is not enabled by this preset. # - All of its relevant categories are more closely related to other classes that are enabled by the preset. # - TS17961:5.17-swtchdflt is better matched by "Missing default" # TS17961:5.24-inverrno: 5.24. Incorrectly setting and using errno WARNING_FILTER += allow class="Missing Test of Error Code" language=c # TS17961:5.17-swtchdflt: 5.17. Use of an implied default in a switch statement WARNING_FILTER += allow class="Missing default" language=c # TS17961:5.29-intoflow: 5.29. Overflowing signed integers # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Multiplication Overflow of Allocation Size" language=c # TS17961:5.29-intoflow: 5.29. Overflowing signed integers # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Multiplication Overflow of Size" language=c # TS17961:5.16-signconv: 5.16. Conversion of signed characters to wider integer types before a check for EOF # TS17961:5.31-chrsgnext: 5.31. Passing arguments to character-handling functions that are not representable as unsigned char # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Negative Character Value" language=c # TS17961:5.30-nonnullstr: 5.30. Passing a non-null-terminated string to a library function # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="No Space For Null Terminator" language=c # TS17961:5.27-strmod: 5.27. Modifying string literals WARNING_FILTER += allow class="Non-const String Literal" language=c # TS17961:5.24-inverrno: 5.24. Incorrectly setting and using errno WARNING_FILTER += allow class="Non-zero Error Code" language=c # TS17961:5.14-nullref: 5.14. Dereferencing an out-of-domain pointer # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Null Pointer Dereference" language=c # TS17961:5.21-invptr: 5.21. Forming or using out-of-bounds pointers or array subscripts WARNING_FILTER += allow class="Pointer Before Beginning of Object" language=c # TS17961:5.21-invptr: 5.21. Forming or using out-of-bounds pointers or array subscripts WARNING_FILTER += allow class="Pointer Past End of Object" language=c # TS17961:5.32-restrict: 5.32. Passing pointers into the same object as arguments to different restrict-qualified parameters WARNING_FILTER += allow class="Restrict Qualifier Used" language=c # TS17961:5.14-nullref: 5.14. Dereferencing an out-of-domain pointer # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Return Pointer to Local" language=c # TS17961:5.28-libmod: 5.28. Modifying the string returned by getenv, localeconv, setlocale, and strerror WARNING_FILTER += allow class="Returned Pointer Not Treated as const" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Subtraction Underflow of Allocation Size" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Subtraction Underflow of Size" language=c # TS17961:5.35-ptrobj: 5.35. Subtracting or comparing two pointers that do not refer to the same array # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Subtraction of Unrelated Pointers" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Tainted Allocation Size" language=c # TS17961:5.14-nullref: 5.14. Dereferencing an out-of-domain pointer # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Tainted Buffer Access" language=c # TS17961:5.39-taintformatio: 5.39. Using a tainted value to write to an object using a formatted input or output function WARNING_FILTER += allow class="Tainted Write" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Truncation of Allocation Size" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink WARNING_FILTER += allow class="Truncation of Size" language=c # TS17961:5.33-xfree: 5.33. Reallocating or freeing memory that was not dynamically allocated # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Type Mismatch" language=c # TS17961:5.14-nullref: 5.14. Dereferencing an out-of-domain pointer WARNING_FILTER += allow class="Unchecked Parameter Dereference" language=c language=c # TS17961:5.34-uninitref: 5.34. Referencing uninitialized memory # This check is enabled by default for the language(s) C, C++ # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Uninitialized Variable" language=c # TS17961:5.45-taintsink: 5.45. Tainted, potentially mutilated, or out-of-domain integer values are used in a restricted sink # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Unreasonable Size Argument" language=c # TS17961:5.30-nonnullstr: 5.30. Passing a non-null-terminated string to a library function # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Unterminated C String" language=c # TS17961:5.2-accfree: 5.2. Accessing freed memory # This check is enabled by default for the language(s) C, C++, x86, x86_64 # It may remain in effect even if the following line is commented out. WARNING_FILTER += allow class="Use After Free" language=c # TS17961:5.15-addrescape: 5.15. Escaping of the address of an automatic object WARNING_FILTER += allow class="Use of putenv" language=c # TS17961:5.3-accsig: 5.3. Accessing shared objects in signal handlers # TS17961:5.5-asyncsig: 5.5. Calling functions in the C Standard Library other than abort, _Exit, and signal from within a signal handler # TS17961:5.7-sigcall: 5.7. Calling signal from interruptible signal handlers WARNING_FILTER += allow class="Use of signal" language=c # TS17961:5.36-taintstrcpy: 5.36. Tainted strings are passed to a string copying function WARNING_FILTER += allow class="Use of strcpy" language=c # TS17961:5.8-syscall: 5.8. Calling system WARNING_FILTER += allow class="Use of system" language=c # TS17961:5.37-sizeofptr: 5.37. Taking the size of a pointer to determine the size of the pointed-to type WARNING_FILTER += allow class="sizeof Array Parameter" language=c