Software:Cppcheck

From HandWiki
Revision as of 07:39, 9 February 2024 by John Marlo (talk | contribs) (correction)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Short description: Static code analysis tool
Cppcheck
Original author(s)Daniel Marjamäki
Initial releaseMay 8, 2007; 16 years ago (2007-05-08)
Written inC++
Operating systemCross-platform
Available inEnglish, Dutch, Finnish, Swedish, German, Russian, Japanese, Serbian, Spanish, French, Italian, Korean, Chinese
TypeStatic code analysis
LicenseGNU General Public License
Websitecppcheck.sourceforge.io

Cppcheck is a static code analysis tool for the C and C++ programming languages. It is a versatile tool that can check non-standard code.[1] The creator and lead developer is Daniel Marjamäki.

Cppcheck is free software under the GNU General Public License.

Features

Cppcheck supports a wide variety of static checks that may not be covered by the compiler itself. These checks are static analysis checks that can be performed at a source code level. The program is directed towards static analysis checks that are rigorous, rather than heuristic in nature.

Some of the checks that are supported include:

  • Automatic variable checking
  • Bounds checking for array overruns
  • Classes checking (e.g. unused functions, variable initialization and memory duplication)
  • Usage of deprecated or superseded functions according to Open Group[2]
  • Exception safety checking, for example usage of memory allocation and destructor checks
  • Memory leaks, e.g. due to lost scope without deallocation
  • Resource leaks, e.g. due to forgetting to close a file handle
  • Invalid usage of Standard Template Library functions and idioms
  • Dead code elimination using unusedFunction option
  • Miscellaneous stylistic and performance errors

As with many analysis programs, there are many unusual cases of programming idioms that may be acceptable in particular target cases or outside of the programmer's scope for source code correction. A study conducted in March 2009 identified several areas where false positives were found by Cppcheck, but did not specify the program version examined.[3] Cppcheck has been identified for use in systems such as CERNs 4DSOFT meta analysis package,[4] for code verification in high energy particle detector readout devices,[5] system monitoring software for radio telescopes[6] as well as in error analysis of large projects, such as OpenOffice.org[7] and the Debian archive.[8]

Development

The project is actively under development[9] and is actively maintained in different distributions.[10][11] It has found valid bugs in a number of popular projects[12] such as the Linux kernel and MPlayer.[13]

Plugins

Plugins for the following IDEs or text editors exist[14]

See also

References

  1. "A Survey of C and C++ Software Tools for Computational Science". Science and Technologies Facility Council. Chilbolton, Daresbury, and Rutherford Appleton Laboratories. December 2009. p. 14. http://www.softeng.rl.ac.uk/media/uploads/publications/2010/03/c-c_tools_report.pdf. 
  2. "System Interfaces". https://pubs.opengroup.org/onlinepubs/9699919799/xrat/V4_xsh_chap03.html. 
  3. "Static Code Analysis For Embedded Systems". http://publications.lib.chalmers.se/records/fulltext/111920.pdf. 
  4. "Dissemination and use of knowledge plan (EU Deliverable DNA2.11". 2010. http://etics.web.cern.ch/etics/deliverables/ETICS-DNA2%2011-1065007-Dissemination_Use_Knowledge_Plan-v1%201.pdf. 
  5. "Entwurf und Implementierung eines adaptiven, strahlentoleranten eingebetteten Systems am Beispiel eines Read-Out-Controllers (En: Development and implementation of an adaptive, radiation tolerant embedded system for operation of a Read-Out controller)". 2010. http://www.kip.uni-heidelberg.de/tip/root/img/pool/literature/theses/2009_mueller-klieser_stefan.pdf. 
  6. "The Wettzell System Monitoring Concept and First Realizations". International VLBI Service for Geodesy & Astrometry. 2010. p. 447. http://ivscc.gsfc.nasa.gov/publications/gm2010/ettl.pdf. 
  7. "Hunting for vulnerabilities in large software : the OpenOffice suite". http://www.cl.cam.ac.uk/~wmk26/openoffice/openoffice9.pdf. 
  8. "Introducing the "Debian's Automated Code Analysis" (DACA) project". LWN.net. https://lwn.net/Articles/420252/. 
  9. Cppcheck on Github
  10. Cppcheck on Debian's Package Tracking System
  11. FreeBSD port
  12. "List of user reported bugs found by cppcheck". http://sourceforge.net/p/cppcheck/wiki/Found_bugs/?f=4&t=27. 
  13. "Found Bugs list". SourceForge. http://sourceforge.net/apps/mediawiki/cppcheck/index.php?title=Found_bugs. 
  14. "SourceForge.net: cppcheck". sourceforge.net. http://sourceforge.net/apps/mediawiki/cppcheck. 
  15. "cppcheck plugin for CLion". plugins.jetbrains.com. https://plugins.jetbrains.com/plugin/8143. 
  16. "Cppcheclipse". github.com. https://github.com/kwin/cppcheclipse/. 
  17. "Flycheck". github.com. https://flycheck.readthedocs.org/. 
  18. "gedit Cppcheck plugin". github.com. https://github.com/odamite/gedit-cppcheck. 
  19. "Cppcheck Plugin". hudson-ci.org. http://wiki.hudson-ci.org/display/HUDSON/Cppcheck+Plugin. 
  20. "Cppcheck Plugin". jenkins-ci.org. http://wiki.jenkins-ci.org/display/JENKINS/Cppcheck+Plugin. 
  21. Cullmann, Christoph (2013-02-02). "Kate Project Plugin News – Code Analysis". https://kate-editor.org/2013/02/02/kate-project-plugin-news-code-analysis/. 
  22. Funk, Kevin (2016-12-06). "KDevelop's Cppcheck plugin merged into kdevelop.git, will be released with 5.1". https://mail.kde.org/pipermail/kdevelop-devel/2016-December/055905.html. 
  23. "Qt Creator Plug-in Gallery". Qt Wiki. https://wiki.qt.io/Qt_Creator_Plug-in_Gallery#CppCheck. 
  24. "Sublimelinter plugin". github.com. https://github.com/SublimeLinter/SublimeLinter. 
  25. "Cppcheck add-in". Visual Studio Marketplace. https://marketplace.visualstudio.com/items?itemName=Alexium.Cppcheckadd-in. 
  26. VioletGiraffe. "Homepage cppcheck-vs-addin". https://github.com/VioletGiraffe/cppcheck-vs-addin. 
  27. Srix. "Simple open source static analysis tool for Visual Studio". http://www.technosrix.com/2008/10/simple-open-source-static-analysis-tool.html. 
  28. Scovetta, Michael. "Yasca". https://scovetta.github.io/yasca/. 

External links



Retrieved from "https://handwiki.org/wiki/index.php?title=Software:Cppcheck&oldid=3445776"