Bug 12579

Summary: turn on GCC static code analysis for the distribution
Product: IPFire Reporter: Peter Müller <peter.mueller>
Component: ---Assignee: Jonatan Schlag <jonatan.schlag>
Status: NEW --- QA Contact: Michael Tremer <michael.tremer>
Severity: Security    
Priority: - Unknown - Keywords: Security
Version: 2   
Hardware: all   
OS: All   

Description Peter Müller 2021-03-01 20:12:14 UTC
Comment 1 Michael Tremer 2021-03-02 13:23:27 UTC
This is a not a feature that can be enabled when production-level code is being generated since it slows down compiling a lot and there isn't much we can do about those issues anyways.

It would be useful to enable -fanalyzer with --enable-debug when a compiler is detected that supports this flag.

> https://developers.redhat.com/blog/2020/03/26/static-analysis-in-gcc-10/