Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 1 | <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01//EN" |
| 2 | "http://www.w3.org/TR/html4/strict.dtd"> |
| 3 | <html> |
| 4 | <head> |
Anna Zaks | 70186fc | 2012-06-09 01:05:01 +0000 | [diff] [blame] | 5 | <title>FAQ and How to Deal with Common False Positives</title> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 6 | <link type="text/css" rel="stylesheet" href="menu.css"> |
| 7 | <link type="text/css" rel="stylesheet" href="content.css"> |
| 8 | <script type="text/javascript" src="scripts/menu.js"></script> |
| 9 | <style type="text/css"> |
Ted Kremenek | dea37f2 | 2012-06-09 20:10:45 +0000 | [diff] [blame] | 10 | tr:first-child { width:20%; } |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 11 | </style> |
| 12 | </head> |
| 13 | <body> |
| 14 | |
| 15 | <div id="page"> |
| 16 | <!--#include virtual="menu.html.incl"--> |
| 17 | |
| 18 | <div id="content"> |
| 19 | |
Ted Kremenek | c1cb12b | 2012-06-09 20:10:42 +0000 | [diff] [blame] | 20 | <h1>FAQ and How to Deal with Common False Positives</h1> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 21 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 22 | <ol> |
| 23 | <li><a href="#custom_assert">How do I tell the analyzer that I do not want the bug being |
| 24 | reported here since my custom error handler will safely end the execution before |
| 25 | the bug is reached?</a></li> |
| 26 | <li><a href="#null_pointer">The analyzer reports a null dereference, but I know that the |
| 27 | pointer is never null. How can I tell the analyzer that a pointer can never be |
| 28 | null?</a></li> |
| 29 | <li><a href="#use_assert">The analyzer assumes that a loop body is never entered. How can I tell it that the loop body will be entered at least once?</a></li> |
| 30 | <li><a href="#suppress_issue">How can I suppress a specific analyzer warning?</a></li> |
| 31 | </ol> |
| 32 | |
| 33 | |
| 34 | <h4 id="custom_assert" class="faq">Q: How do I tell the analyzer that I do not want the bug being |
Ted Kremenek | dea37f2 | 2012-06-09 20:10:45 +0000 | [diff] [blame] | 35 | reported here since my custom error handler will safely end the execution before |
| 36 | the bug is reached?</h4> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 37 | |
| 38 | <img src="images/example_custom_assert.png" alt="example custom assert"> |
| 39 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 40 | <p>You can tell the analyzer that this path is unreachable by teaching it about your <a href = "annotations.html#custom_assertions" >custom assertion handlers</a>. For example, you can modify the code segment as following.</p> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 41 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 42 | <pre class="code_example"> |
| 43 | void customAssert() <span class="code_highlight">__attribute__((analyzer_noreturn))</span>; |
| 44 | int foo(int *b) { |
| 45 | if (!b) |
| 46 | customAssert(); |
| 47 | return *b; |
| 48 | }</pre> |
| 49 | |
| 50 | |
| 51 | <h4 id="null_pointer" class="faq">Q: The analyzer reports a null dereference, but I know that the |
Ted Kremenek | dea37f2 | 2012-06-09 20:10:45 +0000 | [diff] [blame] | 52 | pointer is never null. How can I tell the analyzer that a pointer can never be |
| 53 | null?</h4> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 54 | |
| 55 | <img src="images/example_null_pointer.png" alt="example null pointer"> |
| 56 | |
Ted Kremenek | dea37f2 | 2012-06-09 20:10:45 +0000 | [diff] [blame] | 57 | <p>The reason the analyzer often thinks that a pointer can be null is because the preceding code checked compared it against null. So if you are absolutely sure that it cannot be null, remove the preceding check and, preferably, add an assertion as well. For example, in the code segment above, it will be sufficient to remove the <tt>if (!b)</tt> check. </p> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 58 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 59 | <pre class="code_example"> |
| 60 | void usePointer(int *b); |
| 61 | int foo(int *b) { |
| 62 | usePointer(b); |
| 63 | return *b; |
| 64 | }</pre> |
| 65 | |
| 66 | <h4 id="use_assert" class="faq">Q: The analyzer assumes that a loop body is never entered. How can I tell it that the loop body will be entered at least once?</h4> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 67 | |
| 68 | <img src="images/example_use_assert.png" alt="example use assert"> |
| 69 | |
Ted Kremenek | dea37f2 | 2012-06-09 20:10:45 +0000 | [diff] [blame] | 70 | <p>You can teach the analyzer facts about your code as well as document it by |
| 71 | using assertions. In the contrived example above, the analyzer reports an error |
| 72 | on the path which assumes that the loop is never entered. However, the owner of |
| 73 | the code might know that the loop is always entered because the input parameter |
| 74 | <tt>length</tt> is always greater than <tt>0</tt>. The false positive can be |
| 75 | suppressed by asserting this knowledge, adding <tt>assert(length > 0)</tt> in |
| 76 | the beginning of the function.</p> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 77 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 78 | <pre class="code_example"> |
| 79 | int foo(int length) { |
| 80 | int x = 0; |
| 81 | <span class="code_highlight">assert(length > 0);</span> |
| 82 | for (int i = 0; i < length; i++) |
| 83 | x += 1; |
| 84 | return length/x; |
| 85 | } |
| 86 | </pre> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 87 | |
Anna Zaks | e06f5a0 | 2012-06-11 22:09:44 +0000 | [diff] [blame] | 88 | <h4 id="suppress_issue" class="faq">Q: How can I suppress a specific analyzer warning?</h4> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 89 | |
Ted Kremenek | c1cb12b | 2012-06-09 20:10:42 +0000 | [diff] [blame] | 90 | <p>There is currently no mechanism for suppressing the analyzer warning, |
| 91 | although this is currently being investigated. If you encounter an analyzer |
| 92 | bug/false positive, please <a href = "filing_bugs.html">report it</a>.</p> |
Anna Zaks | 568bdee | 2012-06-09 01:04:54 +0000 | [diff] [blame] | 93 | |
| 94 | </div> |
| 95 | </div> |
| 96 | </body> |
| 97 | </html> |
| 98 | |