1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN"
"http://www.w3.org/TR/html4/strict.dtd">
<html>
<head>
<title>Release notes for checker-XXX builds</title>
<link type="text/css" rel="stylesheet" href="menu.css">
<link type="text/css" rel="stylesheet" href="content.css">
<script type="text/javascript" src="scripts/menu.js"></script>
</head>
<body>
<div id="page">
<!--#include virtual="menu.html.incl"-->
<div id="content">
<h1>Release notes for <tt>checker-XXX</tt> builds</h1>
<h4 id="checker_274">checker-274</h4>
<p><b>built:</b> April 23, 2013</br>
<b>download:</b> <a href="https://attache.apple.com/AttacheWeb/dl?id=ATCdb3165f4406a4589b5878a22494c3b79">checker-274.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Improved use-after-free and mismatched deallocator checking.</li>
<li>Diagnostic polish.</li>
<li>Fixes crashes found in checker-273.</li>
</ul>
<h4 id="checker_273">checker-273</h4>
<p><b>built:</b> April 8, 2013</br>
<b>download:</b> <a href="https://attache.apple.com/AttacheWeb/dl?id=ATCdefcc852a99546cfbaba2a960e07478e">checker-273.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Additional checks for misuse of Foundation collection APIs.
<li>New C++ checker for attempting to create a reference to null.</li>
<li>New use-after-free checker for C++ 'delete'.</li>
<li>New checker for simple cases of mismatched allocators and deallocators, e.g. "delete malloc(4);"</li>
<li>Support for basic interprocedural analysis of C++ destructors.</li>
<li>Additional heuristics for suppressing null pointer false positives.</li>
<li>Misc. bug fixes and performance enhancements.</li>
</ul>
<h4 id="checker_272">checker-272</h4>
<p><b>built:</b> March 1, 2013</br>
<b>download:</b> <a href="https://attache.apple.com/AttacheWeb/dl?id=ATCbb91eedf8edf4c7388549be8f91e810d">checker-272.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Better modeling of C++ constructors:
<ul>
<li>Interprocedural analysis support for constructors of types with trivial destructors</li>
<li>Efficient model of trivial copy and move constructors</li>
</ul>
</li>
<li>Better diagnostics for loops that execute 0 times</li>
<li>Fixes a linking issue that prevented the checker from running on OS X v10.6 and earlier</li>
<li>Fixes for misc. crashes and false positives</li>
</ul>
<h4 id="checker_271">checker-271</h4>
<p><b>built:</b> February 8, 2013</br>
<b>download:</b> <a href="http://bit.ly/1299Xt3">checker-271.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Faster analysis for <tt>scan-build xcodebuild</tt> when using Xcode 4.6 and higher:
<ul>
<li><tt>scan-build</tt> now uses Xcode's built-in interposition mechanism for the static analyzer to provide faster builds while doing static analysis (PCH files are now built).</li>
<li>This change also allows <tt>scan-build</tt> to have better support for iOS project analysis without having to specifying weird SDK settings to <tt>scan-build</tt>.</li>
</ul></li>
<li>Better diagnostics for implicitly-defined member functions in C++.</li>
<li>New warning for <tt>malloc</tt>/<tt>free</tt> checker when passing <tt>malloc</tt>'ed pointer with non-zero offset to <tt>free()</tt>.
<li>Fixes for misc. parser crashes.</li>
<li>Newer than the static analyzer version in Xcode 4.6</li>
</ul>
<h4 id="checker_270">checker-270</h4>
<p><b>built:</b> January 4, 2013</br>
<b>download:</b> <a href="http://bit.ly/13ekSoV">checker-270.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Major performance enhancements to speed up interprocedural analysis.</li>
<li>Misc. bug fixes.</li>
</ul>
<h4 id="checker_269">checker-269</h4>
<p><b>built:</b> September 25, 2012</br>
<b>download:</b> <a href="http://bit.ly/USf8ge">checker-269.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Significantly improves interprocedural analysis for Objective-C.</li>
<li>Numerous bug fixes and heuristics to reduce false positives reported
over checker-268.</li>
</ul>
<h4 id="checker_268">checker-268</h4>
<p><b>built:</b> September 11, 2012</br>
<b>download:</b> <a href="http://bit.ly/U75NOp">checker-268.tar.bz2</a></p>
<p><b>highlights:</b></p>
<ul>
<li>Adds initial interprocedural analysis support for C++ and Objective-C. This will greatly improve analysis coverage and find deeper bugs in Objective-C and C++ code.</li>
<li>Contains a static analyzer newer than Xcode 4.4.</li>
</ul>
<p>NOTE: this checker build includes a <i>huge</i> number of changes. It has the potential to find many more bugs, but may report new kinds of false positives. We'd like to know about
these, and any other problems you encounter. When you encounter an issue, please <a href="/filing_bugs.html">file a bug report</a>.</p>
<h4 id="checker_267">checker-267</h4>
<p><b>built:</b> June 1, 2012</br>
<b>download:</b> <a href="http://bit.ly/OIdyI7">checker-267.tar.bz2</a></p>
<p><b>highlights:</b></p>
<p>Adds basic interprocedural analysis support for blocks.</p>
<h4 id="checker_266">checker-266</h4>
<p><b>built:</b> May 23, 2012</br>
<b>download:</b> <a href="http://bit.ly/LgtUWx">checker-266.tar.bz2</a></p>
<p><b>highlights:</b></p>
<p>Contains numerous stability fixes over checker-266, especially when analyzing C++11 code.</p>
<h4 id="checker_265">checker-265</h4>
<p><b>built:</b> May 8, 2012</br>
<b>download:</b> <a href="http://bit.ly/JceZBE">checker-265.tar.bz2</a></p>
<p><b>highlights:</b></p>
<p>This release contains a fix for a major crasher introduced in checker-264, and various refinements to
improve the precision and reduce the false positive rate of the analyzer. It also enables a new unix.MallocSizeof check, which reports
inconsistencies between the casted type of the return value of a 'malloc/calloc/realloc' call and the operand
of sizeof expressions contained within its argument(s).</p>
<h4 id="checker_264">checker-264</h4>
<p><b>built:</b> April 26, 2012</br>
<b>download:</b> <a href="http://bit.ly/JATSI8">checker-264.tar.bz2</a></p>
<p><b>highlights:</b></p>
<p>This release contains misc. bug fixes and performance enhancements over checker-263, including
a reduction of some kinds of false positives related to the malloc() checker.</p>
<h4 id="checker_263">checker-263</h4>
<p><b>built:</b> March 22, 2012</br>
<p><b>highlights:</b></p>
<ul>
<li>Fixes several serious bugs with inter-procedural analysis, including a case where retain/releases would be "double-counted".</li>
</ul>
<h4 id="checker_262">checker-262</h4>
<p><b>built: </b>March 15, 2012</br>
<p><b>highlights:</b></p>
<ul>
<li>Enables experimental interprocedural analysis (within a file), which greatly amplifies the analyzer's ability to find issues.</li>
<li>Many bug fixes to the malloc/free checker.</li>
<li>Support for new Objective-C NSArray/NSDictionary/NSNumber literals syntax, and Objective-C container subscripting.</li>
</ul>
<p>NOTE: This build contains new interprocedural analysis that allows the analyzer to find more complicated bugs that span function boundaries. It may have problems, performance issues, etc. We'd like to <a href="/filing_bugs.html">hear about them</a>.
<h4 id="checker_261">checker-261</h4>
<p><b>built: </b>February 22, 2012<br>
<p><b>highlights:</b></p>
<ul>
<li>Contains a new experimental malloc/free checker.</li>
<li>Better support for projects using ARC.</li>
<li>Warns about null pointers passed as arguments to C string functions.</li>
<li>Warns about common anti-patterns in 'strncat' size argument, which can lead to buffer overflows.</li>
<li>set-xcode-analyzer now supports self-contained Xcode.app (Xcode 4.3 and later).</li>
<li>Contains a newer version of the analyzer than Xcode 4.3.</li>
<li>Misc. bug fixes and performance work.</li>
</ul>
<h4 id="checker_260">checker-260</h4>
<p><b>built: </b>January 25, 2012<br>
<p><b>highlights:</b></p>
<p>This is essentially the same as checker-259, but enables the following <i>experimental</i> checkers (please provide feedback):</p>
<ul>
<li>Warns about unsafe uses of CFArrayCreate, CFSetCreate, and CFDictionaryCreate</li>
<li>Warns about unsafe uses of getpw, gets, which are sources of buffer overflows</li>
<li>Warns about unsafe uses of mktemp and mktemps, which can lead to insecure temporary files</li>
<li>Warns about unsafe uses of vfork, which is <a href="https://www.securecoding.cert.org/confluence/display/seccode/POS33-C.+Do+not+use+vfork()">insecure</a> to use</li>
<li>Warns about not checking the return values of setuid, setgid, seteuid, setegid, setreuid, setregid (another security issue)</li>
</ul>
<h4 id="checker_259">checker-259</h4>
<p><b>built: </b>January 25, 2012<br>
<p><b>highlights:</b></p>
<ul>
<li>Contains a newer version of the analyzer than the one shipped in Xcode 4.2.</li>
<li>Significant performance optimizations to reduce memory usage of the analyzer.</li>
<li>Tweaks to scan-build to have it work more easily with Xcode projects using Clang.</li>
<li>Numerous bug fixes to better support code using ARC.</li>
</ul>
<h4 id="checker_258">checker-258</h4>
<p><b>built: </b>October 13, 2011<br>
<p><b>highlights:</b></p>
<ul>
<li>Contains a newer version of the analyzer than the one shipped in Xcode 4.2.</li>
<li>Adds a new security checker for looking at correct uses of the Mac OS KeyChain API.</li>
<li>Supports ARC (please file bugs where you see issues)</li>
<li>Major under-the-cover changes. This should result in more precise results in some cases, but this is laying the groundwork for major improvements. Please file bugs where you see regressions or issues.</li>
</ul>
<h4 id="checker_257">checker-257</h4>
<p><b>built: </b>May 25, 2011<br>
<p><b>highlights:</b></p>
<ul>
<li>The analyzer is now far more aggressive with checking conformance with Core Foundation conventions. Any function that returns a CF type must now obey the Core Foundation naming conventions, or use the <a href="/annotations.html#attr_cf_returns_retained">cf_returns_retained</a> or <a href="/annotations.html#attr_cf_returns_not_retained">cf_returns_not_retained</a> annotations.</li>
<li>Fixed a serious regression where the analyzer would not analyze Objective-C methods in class extensions.</li>
<li>Misc. bug fixes to improve analyzer precision.
</li>
</ul>
<h4 id="checker_256">checker-256</h4>
<p><b>built: </b>April 13, 2011<br>
<p><b>highlights:</b></p>
<ul>
<li>Lots of bug fixes and improvements to analyzer precision (fewer false positives, possibly more bugs found).
<li>Introductory analysis support for C++ and Objective-C++.
</ul>
<p>This build contains basic support for C++ and Objective-C++ that is
|
