Reputation: 95
Is there a static analysis tool to compute use-define chains?
I'm looking for a static analysis tool for C that performs dataflow analysis and computes use-define chains (preferably a command line tool). So far I have tried CIL, clang, lint, goanna and a few other static analysis tools, but none of them compute use-define chains. I also prefer not to work at the IR level (such as LLVM) but if the IR isn't too complex it could be fine. Is there any tool that satisfies my requirements?
Thanks!
Upvotes: 3
Views: 749
Answers (3)
Reputation: 1
Cil can do it if you have read the kernel code as usedef.ml and reachingDef.ml may help.
Upvotes: 0
Reputation: 95334
Our DMS Software Reengineering Toolkit with its C Front End can provide this.
DMS provides basic parsing and flow analysis machinery; the C Front End provides DMS with the details of the C language including where the data flows originate/sink. The def-use chains are provided as links between AST nodes representing assignments and AST nodes representing sinks. The variables in question can be found in the symbol table easily.
See a discussion of various types of DMS-extractable flows.
Upvotes: 2
Related Questions
- How to generate program dependence graph for C program?
- which free tools can I use to generate the program dependence graph for c codes
- static analysis tools for c++/c shared and static libraries
- Open Source Static Code Analysis Models
- Static analysis for call-graph generation in C programs
- Generating a comprehensive callgraph using GCC & Egypt
- Tool that outputs the longest chain of calls
- What are resources for building a static analyzer for C in C?
- Tools for generating Haskell function dependency (control flow) graph?
- Are there any tools that can "find references" to built in ops?