Secure Programming Lint
SPecifications Lint
First Aid for Programmers
Splint is a tool for statically checking C programs for security vulnerabilities and programming mistakes. Splint does many of the traditional lint checks including unused declarations, type inconsistencies, use before definition, unreachable code, ignored return values, execution paths with no return, likely infinite loops, and fall through cases. More powerful checks are made possible by additional information given in source code annotations. Annotations are stylized comments that document assumptions about functions, variables, parameters and types. In addition to the checks specifically enabled by annotations, many of the traditional lint checks are improved by exploiting this additional information.
Source Code
Splint should compile (effortlessly) on any UNIX system with a Standard C compiler. A bit of effort may be required to port Splint to a non-UNIX platform.
Source Code Distribution:
Splint User’s Manual
阅读(3412) | 评论(0) | 转发(0) |
