================ @@ -220,7 +220,7 @@ void VLASizeChecker::reportTaintBug(const Expr *SizeE, ProgramStateRef State, SmallString<256> buf; llvm::raw_svector_ostream os(buf); os << "Declared variable-length array (VLA) "; - os << "has tainted size"; + os << "has a tainted (attacker controlled) size, that can be 0 or negative"; ---------------- DonatNagyE wrote:
```suggestion os << "has a tainted (attacker controlled) size that can be 0 or negative"; ``` https://github.com/llvm/llvm-project/pull/68140 _______________________________________________ cfe-commits mailing list cfe-commits@lists.llvm.org https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits
