Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/kornel/statuses/112484809129860400">Kornel (kornel@mastodon.social)'s status on Wednesday, 22-May-2024 22:23:13 JST</a><a href="https://mastodon.social/@kornel" title="kornel@mastodon.social"><img src="https://gnusocial.jp/avatar/17873-48-20230311172358.webp" width="48" height="48" alt="Kornel" style="position: absolute; left: 0; top: 0;">Kornel</a><div><a href="https://queer.hacktivis.me/objects/e447cf02-cbee-444d-90cd-db88820e761d" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://queer.hacktivis.me/users/lanodan">@lanodan</a> Well yeah, these are the reasons why you have checkers with false positives and mostly only basic local reasoning.</p><p>From what I see, flawfinder is pattern matching well-known footguns by function name, rather than understanding these kinds of bugs semantically.<br>It can of course still be super useful given how common these footguns are, but it's not analyzing C deeply. </p><p>Clang analyzer does a lot of sophisticated analysis, but it is limited by the flexibility/vagueness of C's semantics.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3126241#notice-6194452">In conversation</a><time datetime="2024-05-22T22:23:13+09:00" title="Wednesday, 22-May-2024 22:23:13 JST">about 9 months ago</time> <span>from <span><a href="https://gnusocial.jp/notice/6194452" rel="external" title="Sent from gnusocial.jp via ActivityPub">gnusocial.jp</a></span></span><a href="https://gnusocial.jp/notice/6194452">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Kornel (kornel@mastodon.social)'s status on Wednesday, 22-May-2024 22:23:13 JSTKornel
in reply to
- Haelwenn /элвэн/ :triskell:
@lanodan Well yeah, these are the reasons why you have checkers with false positives and mostly only basic local reasoning.
From what I see, flawfinder is pattern matching well-known footguns by function name, rather than understanding these kinds of bugs semantically.
It can of course still be super useful given how common these footguns are, but it's not analyzing C deeply.
Clang analyzer does a lot of sophisticated analysis, but it is limited by the flexibility/vagueness of C's semantics.
In conversationabout 9 months ago from gnusocial.jppermalink

Public

Embed Notice

HTML Code

Corresponding Notice