Static Analysis: Difference between revisions

Jump to navigation Jump to search

Static Analysis (view source)

Revision as of 11:21, 23 November 2017

18 bytes added ,  23 November 2017
See https://bugzilla.mozilla.org/show_bug.cgi?id=1418754
(New bullet points from nfroyd)
(See https://bugzilla.mozilla.org/show_bug.cgi?id=1418754)
Line 7: Line 7:
* '''Custom static analyses''': We have a clang plugin with a number of Gecko-specific checks.  There's terse documentation on the attributes we use to drive some of the checks [https://dxr.mozilla.org/mozilla-central/source/mfbt/Attributes.h#341 here]. Some checks are just good hygiene (e.g. MOZ_IMPLICIT), some checks exist to help you do the right thing (e.g. MOZ_MUST_OVERRIDE, MOZ_RAII, MOZ_MUST_USE), and some checks exist to prevent security bugs (e.g. MOZ_NON_MEMMOVABLE and related attributes). The checker currently runs on every push we do, on Windows, Mac, and Linux.
* '''Custom static analyses''': We have a clang plugin with a number of Gecko-specific checks.  There's terse documentation on the attributes we use to drive some of the checks [https://dxr.mozilla.org/mozilla-central/source/mfbt/Attributes.h#341 here]. Some checks are just good hygiene (e.g. MOZ_IMPLICIT), some checks exist to help you do the right thing (e.g. MOZ_MUST_OVERRIDE, MOZ_RAII, MOZ_MUST_USE), and some checks exist to prevent security bugs (e.g. MOZ_NON_MEMMOVABLE and related attributes). The checker currently runs on every push we do, on Windows, Mac, and Linux.


* '''[http://www.coverity.com/ Coverity]''': runs their code checker on Firefox every couple of days and throws all the problems into a nicely searchable database.  
* '''[https://scan.coverity.com/projects/firefox Coverity]''': runs their code checker on Firefox every couple of days and throws all the problems into a nicely searchable database.  


== Old ==
== Old ==
Elchi3
Confirmed users
62

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/1184674"

Navigation menu