tech-kern archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: [gsoc] syscall/libc fuzzer proposal

On Sat, Mar 20, 2010 at 08:53:12PM +0200, Mateusz Kocielski wrote:
> 2010/3/20 Thor Lancelot Simon <>:
> > What is the benefit of this when compared to existing static-analysis
> > tools such as Coverity Scan, splint, or the Clang static analyzer? ?Will
> > this cover any cases they don't? ?If so, which ones?
> Undecidability is the limit for static-analysis. Consider following program:

I did.  Doesn't GCC's existing SSP, FORTIFY_SOURCE, and/or mudflap mode
already catch such cases?  (I am pretty sure Coverity would also catch
them at compile time).


Home | Main Index | Thread Index | Old Index