|
From: | Paul Eggert |
Subject: | Re: Suppressing sanitizer in sha256.c |
Date: | Wed, 4 Apr 2018 12:12:38 -0700 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.7.0 |
On 04/04/2018 12:45 AM, Tim Rühsen wrote:
reducing false positives > would be of great help to reduce time spent into securing code that
> uses gnulib.Yes, and Gnulib tries to strike a balance here. For Gnulib headers, we try harder to pacify compilers even if we think their warnings are misguided. This particular bug report was about a .c file, though, and for that it's reasonable to suggest that you not use the compile-time option that enables this flag when compiling Gnulib code, as it is more trouble than it's worth in Gnulib code.
[Prev in Thread] | Current Thread | [Next in Thread] |