Re: [hackers] [libgrapheme] Do not falsely read entire buffer instead of simply the filled with || Laslo Hunhold

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

From: NRK <nrk_AT_disroot.org>
Date: Thu, 24 Nov 2022 20:32:53 +0600

> This was caught via static analysis (clang asan), which I can definitely
> recommend.

Small nitpick: ASan (and the other sanitizers) are *dynamic* analyzers,
as they happen during runtime.

Static analysis is analyzing without executing anything. Examples of
static analyzers would be clang-tidy or cppcheck. Newer GCC versions
also have a `-fanalyzer` flag for statically analyzing C code, but in my
experience it's not mature yet - but the direction looks promising.

- NRK
Received on Thu Nov 24 2022 - 15:32:53 CET

This archive was generated by hypermail 2.3.0 : Thu Nov 24 2022 - 15:36:32 CET