This is the mail archive of the
gcc-bugs@gcc.gnu.org
mailing list for the GCC project.
[Bug c/30475] assert(int+100 > int) optimized away
- From: "andreas at andreas dot org" <gcc-bugzilla at gcc dot gnu dot org>
- To: gcc-bugs at gcc dot gnu dot org
- Date: 21 Jan 2007 12:23:14 -0000
- Subject: [Bug c/30475] assert(int+100 > int) optimized away
- References: <bug-30475-3511@http.gcc.gnu.org/bugzilla/>
- Reply-to: gcc-bugzilla at gcc dot gnu dot org
------- Comment #31 from andreas at andreas dot org 2007-01-21 12:23 -------
And who will go over the existing millions lines of code, and verify the
overflow checks everywhere? Or add -fwrapv to all the Makefiles for unaidited
code? Obviously not you. It seems to be easier to pretend you're not
responsible for the next security bug in Linux.
I'm still amazed that for the gcc maintainers, performance seems to be more
important than security of the existing code base. I'm even more amazed that
they seem to be unable to do some benchmarks to show that they have a point,
apart from some made-up examples.
Why is Microsoft willing and able to do such changes to Visual Studio, and you
are not?
--
andreas at andreas dot org changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |andreas at andreas dot org
http://gcc.gnu.org/bugzilla/show_bug.cgi?id=30475