From 3c3ec0c25d2966f9be521be731929c4ed461b33c Mon Sep 17 00:00:00 2001 From: Ted Kremenek Date: Tue, 14 Oct 2008 05:14:21 +0000 Subject: [PATCH] Add static analyzer notes. git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@57475 91177308-0d34-0410-b5e6-96231b3b80d8 --- docs/ReleaseNotes.html | 26 ++++++++++++++++++++++---- 1 file changed, 22 insertions(+), 4 deletions(-) diff --git a/docs/ReleaseNotes.html b/docs/ReleaseNotes.html index 02974bba841..97227446427 100644 --- a/docs/ReleaseNotes.html +++ b/docs/ReleaseNotes.html @@ -109,11 +109,29 @@ front-end work has started to make significant progress.

-

The -static analysis tool +

The Clang project also includes an early stage static source code analysis +tool for automatically +finding bugs in C and Objective-C programs. The tool performs a growing set +of checks to find bugs that occur on a specific path within a program. Examples +of bugs the tool finds include logic errors such as null dereferences, +violations of various API rules, dead code, and potential memory leaks in +Objective-C programs. Since its public announcement at Apple's WWDC 2008 +conference, the public feedback on the tool has been extremely positive, and +conservative estimates put the number of real bugs it has found in +industrial-quality software on the order of thousands.

-[TED] -.

+

The tool also provides a simple web GUI to inspect potential bugs found by +the tool. While still early in development, the GUI illustrates some of the key +features of Clang: accurate source location information, which is used by the +GUI to highlight specific code expressions that relate to a bug (including those +that span multiple lines) and built-in knowledge of macros, which is used to +perform inline expansion of macros within the GUI itself.

+ +

The set of checks perform by the static analyzer is gradually expanding, and +future plans for the tool include full source-level inter-procedural analysis +and deeper checks such as buffer overrun detection. There are many opportunities +to extend and enhance the static analyzer, and anyone interested in working on +this project is encouraged to get involved!