static code analysis tool

Ask the Community
Close
Ask the Community
nav search Icon
Forums gray-arrow gray-arrow
Resources gray-arrow gray-arrow
About gray-arrow gray-arrow
Groups gray-arrow gray-arrow
nav-user Account

Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob

static code analysis tool

ETRO_SSN583
Level 9
Level 9
250 likes received 100 sign-ins 5 likes given
‎Apr 05, 2013 02:08 PM
‎Apr 05, 2013 02:08 PM

Anyone experimented with a static code analysis tool to detect simple faults,

   

typing, pointer, array bounds, memory issues ? Call graphs, etc..

   

 

   

I see on web a Stanford and some other study of tools, free and commercial, and

   

looks like only commercial produces worthwhile analysis. But big $$$$.

   

 

   

Regards, Dana.

0 Likes
Subscribe
1 Reply

Re: static code analysis tool

HeLi_263931
Level 8
Level 8
100 solutions authored 50 solutions authored 25 solutions authored
‎Apr 05, 2013 04:13 PM
‎Apr 05, 2013 04:13 PM

There is always lint, should be available with cygwin or any linux distribution 🙂 (Or you pay $389 here: http://www.gimpel.com/html/pcl.htm ) Wikipedia is helpful as usual: http://en.wikipedia.org/wiki/List_of_tools_for_static_code_analysis#C.2FC.2B.2B

   

I remember an interesting write-up by John Carmack about using static code analysis within id software: http://www.altdevblogaday.com/2011/12/24/static-code-analysis/ . it reflects my experiences when using such tools on large code bases - one needs to be careful not to overwhelm the developers.

0 Likes