ideas:automaticcodechecker
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision |
ideas:automaticcodechecker [2011/10/19 23:15] – svn link tyrael | ideas:automaticcodechecker [2017/09/22 13:28] (current) – external edit 127.0.0.1 |
---|
//Possible mentor: [[nlopess@php.net|Nuno Lopes]]// | //Possible mentor: [[nlopess@php.net|Nuno Lopes]]// |
| |
The PHP API has a couple of functions that are error prone and may easily cause segfaults in PHP, especially on less used platforms. The list of such functions include zend_parse_parameters*(), zend_error() and a few others. Our current check script is made in PHP and is regex based. It is available in [[http://cvs.php.net/viewvc.cgi/php-src/scripts/dev/check_parameters.php?view=markup|CVS]]. This script is difficult to maintain and generates way too many false-positives. The work would involve creating a [[http://clang.llvm.org/StaticAnalysis.html|LLVM clang]] analysis tool to perform some data-flow static analysis and output error messages for the problems found. A sample output of the script mentioned is available at: [[http://gcov.php.net/viewer.php?version=PHP_HEAD&func=params|http://gcov.php.net]]. | The PHP API has a couple of functions that are error prone and may easily cause segfaults in PHP, especially on less used platforms. The list of such functions include zend_parse_parameters*(), zend_error() and a few others. Our current check script is made in PHP and is regex based. It is available in [[http://svn.php.net/viewvc/web/php-gcov/trunk/cron/check_parameters.php?view=markup|SVN]]. This script is difficult to maintain and generates way too many false-positives. The work would involve creating a [[http://clang.llvm.org/StaticAnalysis.html|LLVM clang]] analysis tool to perform some data-flow static analysis and output error messages for the problems found. A sample output of the script mentioned is available at: [[http://gcov.php.net/viewer.php?version=PHP_HEAD&func=params|http://gcov.php.net]]. |
| |
==== Progress ==== | ==== Progress ==== |
ideas/automaticcodechecker.txt · Last modified: 2017/09/22 13:28 by 127.0.0.1