Date: Tue, 22 Apr 2014 18:12:11 -0700 From: "Ronald F. Guilmette" <rfg@tristatelogic.com> To: freebsd-security@freebsd.org Subject: Re: OpenSSL static analysis, was: De Raadt + FBSD + OpenSSH + hole? Message-ID: <10999.1398215531@server1.tristatelogic.com> In-Reply-To: <20140423010054.2891E143D098@rock.dv.isc.org>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <20140423010054.2891E143D098@rock.dv.isc.org>, Mark Andrews <marka@isc.org> wrote: >As for the number of CLANG analysis warnings. Clang has false >positives Please define your terms. I do imagine that the truth or falsehood of your assertion may depend quite substantally on what one does or does not consider a "false positive" in this context. >some of which are impossible to remove regardless of how >you recode the section... I, for one, would dearly love to see one or more concrete examples which purport to support the above assertion (of which I am dubious). Regards, rfg
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?10999.1398215531>