This is the mail archive of the gcc@gcc.gnu.org mailing list for the GCC project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: US-CERT Vulnerability Note VU#162289

From: Robert Dewar <dewar at adacore dot com>
To: Joe Buck <Joe dot Buck at synopsys dot COM>
Cc: Gerald dot Williams at infineon dot com, fw at deneb dot enyo dot de, rcs at cert dot org, gcc at gcc dot gnu dot org, crd at cert dot org
Date: Mon, 14 Apr 2008 21:37:44 -0400
Subject: Re: US-CERT Vulnerability Note VU#162289
References: <47FE14E6.4040406@cert.org> <4AD810FE2AA08D4D93851356BEE59A7AD8DEE2@mucse301.eu.infineon.com> <47FFA363.4060309@cert.org> <87mynxtoe3.fsf@mid.deneb.enyo.de> <4802A597.1080805@adacore.com> <874pa4e42c.fsf@mid.deneb.enyo.de> <4803C1EF.2000706@adacore.com> <4AD810FE2AA08D4D93851356BEE59A7AD8EA91@mucse301.eu.infineon.com> <4803DDD6.9090908@adacore.com> <20080414232132.GE344@synopsys.com>

Joe Buck wrote:

On Mon, Apr 14, 2008 at 06:42:30PM -0400, Robert Dewar wrote:

[In fact,
after GCC does something to warn users about this, it'll be
much "safer" than those other compilers.]

For sure you want a warning, the compiler should never be
removing explicit tests in the users code without generating
a warning I would think.


I vaguely recall a paper from Dawson Engler's group (the people who
did the Stanford Checker and Coverity) about warnings for dead code
removal.  They are often bugs if seen in straight-line code, but
macros as well as inlining of functions will produce many warnings
of this kind.  They focused their work on addressing what the user
could be expected to know, the idea being to issue warnings if
the code on a single level is redundant, but suppress warnings
if the redundant text came from macros or inlining.


Right, we have heuristics in the Ada front end along these lines.
For instance, you generally want to be warned if a test is
always true or always false, but if the test is

if XYZ then

where XYZ is a boolean constant, then probably this is
conditional compilation type activity that is legitimate.

References:
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert C. Seacord
- RE: US-CERT Vulnerability Note VU#162289
  - From: Gerald.Williams
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert C. Seacord
- Re: US-CERT Vulnerability Note VU#162289
  - From: Florian Weimer
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert Dewar
- Re: US-CERT Vulnerability Note VU#162289
  - From: Florian Weimer
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert Dewar
- RE: US-CERT Vulnerability Note VU#162289
  - From: Gerald.Williams
- Re: US-CERT Vulnerability Note VU#162289
  - From: Robert Dewar
- Re: US-CERT Vulnerability Note VU#162289
  - From: Joe Buck

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]