Skip to content

FIO32-C: enhance the query to support secure fopen usage pattern #12

New issue
New issue
Open
Open
FIO32-C: enhance the query to support secure fopen usage pattern#12
Labels
Difficulty-MediumA false positive or false negative report which is expected to take 1-5 days effort to addressImpact-LowStandard-CERT-CenhancementNew feature or request
@mbaluda

Description

@mbaluda
mbaluda
opened on Jul 15, 2022

Affected rules

  • FIO32-C

Description

Currently the implementation simply checks that the filename used in a call to fopen is not tainted.
However, the rule requires that certain OS-supported dynamic checks are present in the code.
We'd like to enhance this query to support some usage pattern that would allow it to be excluded from being checked.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Difficulty-MediumA false positive or false negative report which is expected to take 1-5 days effort to addressImpact-LowStandard-CERT-CenhancementNew feature or request

    Type

    No type

    Projects

    Coding Standards Public Development Board

    Status

    Reported

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions