C is Brittle D is Plastic
Walter Bright
newshound2 at digitalmars.com
Wed Apr 8 20:01:01 UTC 2026
On 4/7/2026 4:52 PM, Richard (Rikki) Andrew Cattermole wrote:
> 1. Dedicated static analyzers work with whole program analysis, via IR's.
The halting problem cannot be solved.
> 2. This is solved, without the use of meet operations. Basically the entire
> state context gets duplicated on if statement completion, one for each branch,
> and everything after gets evaluated with both contexts. This appears to be why
> GCC will only error on one branch with the static analyzer errors. This has a
> research paper on it, and I was able to come up with it on my own too. I haven't
> done it in the fast DFA engine because its not exactly fast.
The program's flow depends on its inputs, and a static analyzer doesn't know
what they are.
BTW, if the dedicated static analyzers work, why does AI keep finding security
bugs in Linux code and everything else? Most recently an array buffer overflow
that had been in the kernel for 20 years.
More information about the Digitalmars-d
mailing list