Adding upstream version 2:2.7.0.upstream/2%2.7.0

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-17 08:35:41 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-17 08:35:41 +0000
commit: f7458043ae6a2d2d54b911fac52e50341646bef2 (patch)
tree: 6c58e084cd8728490fd5bb8eead07db0be0038f4 /.codeql-config.yml
parent: Adding upstream version 2:2.6.1. (diff)
download: cryptsetup-f7458043ae6a2d2d54b911fac52e50341646bef2.tar.xz
cryptsetup-f7458043ae6a2d2d54b911fac52e50341646bef2.zip
1 files changed, 31 insertions, 0 deletions
diff --git a/.codeql-config.yml b/.codeql-config.yml
new file mode 100644
index 0000000..1311657
--- /dev/null
+++ b/.codeql-config.yml
@@ -0,0 +1,31 @@
+name: "Cryptsetup CodeQL config"
+
+query-filters:
+- exclude:
+     id: cpp/fixme-comment
+- exclude:
+     id: cpp/empty-block
+- exclude:
+     id: cpp/poorly-documented-function
+- exclude:
+     id: cpp/loop-variable-changed
+- exclude:
+     id: cpp/empty-if
+- exclude:
+     id: cpp/long-switch
+- exclude:
+     id: cpp/complex-condition
+- exclude:
+     id: cpp/commented-out-code
+
+# These produce many false positives
+- exclude:
+     id: cpp/uninitialized-local
+- exclude:
+     id: cpp/path-injection
+- exclude:
+     id: cpp/missing-check-scanf
+
+# CodeQL should understand coverity [toctou] comments
+- exclude:
+     id: cpp/toctou-race-condition
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-17 08:35:41 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-17 08:35:41 +0000
commit	f7458043ae6a2d2d54b911fac52e50341646bef2 (patch)
tree	6c58e084cd8728490fd5bb8eead07db0be0038f4 /.codeql-config.yml
parent	Adding upstream version 2:2.6.1. (diff)
download	cryptsetup-f7458043ae6a2d2d54b911fac52e50341646bef2.tar.xz cryptsetup-f7458043ae6a2d2d54b911fac52e50341646bef2.zip