[cfe-dev] Confused by analysis
Ben Laurie
benl at google.com
Thu Feb 26 02:19:44 PST 2009
On Wed, Feb 25, 2009 at 5:22 PM, Ted Kremenek <kremenek at apple.com> wrote:
>
> On Feb 25, 2009, at 9:20 AM, Sebastian Redl wrote:
>
>> I'm pretty sure the analyzer works under the assumption that null
>> pointer dereferences are unrecoverable.
>
> That's correct. It's an excellent way to prune paths. We also try avoiding
> the cascading of "hard errors"; e.g. dereferencing garbage values, but
> halting the simulation of a path.
I did wonder if this was the case, cool. I haven't yet found the code
that drives the path analysis (admittedly I haven't looked!) - where
is it?
More information about the cfe-dev
mailing list