Static and Dynamic Analysis

From OpenSSLWiki
Jump to navigationJump to search

Static and Dynamic Analysis outlines the methods the OpenSSL project uses in its engineering process to ensure the source code and binaries meet the quality standards and user expectations. Static analysis uses both the compiler's built-in warning system and static checkers, such as those provided by Clang. Dynamic analysis is performed by tools such as Clang and its runtime checkers (for example, Address Sanitizer, Memory Sanitizer, Integer Sanitizer), and other tools such as Purify, Valgrind, and Helgrind.