I spent some time yesterday running #sudo through Facebook's Infer static analyzer. It seems much more strict about dead stores than other analyzers and there were a _lot_ of uninitialized value false positives Most of those false positives fall into two categories: the value was set inside a for() loop which was guaranteed to run for at least one iteration, or the value being set was dependent on another variable. This last case used to cause problems for gcc but they improved their checker to deal with that years ago.
November 25, 2022
November 25, 2022
November 25, 2022
I spent some time yesterday running #sudo through Facebook's Infer static analyzer. It seems much more strict about dead stores than other analyzers and there were a _lot_ of uninitialized value false positives Most of those false positives fall into two categories: the value was set inside a for() loop which was guaranteed to run for at least one iteration, or the value being set was dependent on another variable. This last case used to cause problems for gcc but they improved their checker to deal with that years ago.