Upload File

beyond static analysis: integrating c and c++ static analysis with unit testing and more

  • Home
  • Technology
  • Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More
8
Multiple Error Detection Techniques in C/C++ Software Development September 2009 Wiktor Grodowski [email protected]

Upload: erika-barron

Post on 30-Jun-2015

737 views

Category:

Technology


1 download

Report

DESCRIPTION

Learn the strengths and weaknesses of C/C++ static analysis—and how a comprehensive development testing strategy that also includes unit testing, code review, and runtime error detection can pick up where development testing leaves off.

TRANSCRIPT

Page 1: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Multiple Error Detection Techniques in C/C++ Software Development

September 2009Wiktor Grodowski

[email protected]

Page 2: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Introduction

There is no silver bullet for software quality improvement

Multiple error detection techniques exist—each with their own strengths and weaknesses

Parasoft C++test provides a comprehensive solution to make software quality assurance effective and accurate

Page 3: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Code Structure Analysis

StrengthsFacilitates coding standard compliance (MISRA C, MISRA C 2004, MISRA C++ 2008, JSF, HIS, and others)Exposes typical errorsPrevents error-prone or dangerous constructsLow introduction cost

WeaknessesNo recognition of actual versus potential errors

Page 4: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Runtime Memory Monitoring

StrengthsDetects actual severe errors with high accuracyEasy-to-use and natural way of software testingMakes a noticeable impact in a short time

WeaknessesCovers only execution paths forced by the provided input and conditions to the application

Page 5: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Unit Testing

StrengthsProvides means of extending coverage—especially for error/interrupt handlersGood for regression tests

WeaknessesRelatively high creation and maintenance costProblem with reproducing proper application state

Page 6: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Flow-Based Static Analysis

StrengthsExamines code without actually executing itUncovers real bugs Tests execution paths that are difficult to reachwith traditional testing

WeaknessesRequires additional human verification

Page 7: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Summary

C++test can apply various techniques for comprehensive error detection

Code structure analysisRuntime memory monitoringUnit testingFlow-based static analysis

C+test runs tests on the host and targetWith these complementary error detection methods well-integrated into a single tool, C++test is most comprehensive embedded C/C++ quality solution

Page 8: Beyond Static Analysis: Integrating C and C++ Static Analysis with Unit Testing and More

Parasoft Proprietary and Confidential

Q & A

Contact: [email protected]


Static Analysis Results Interchange Format (SARIF) …...Static Analysis Results Interchange Format (SARIF) Version 2.1.0. Edited by Michael C. Fanning and Edited by Michael C. Fanning

Static analysis of C++ source code

Frama-C: Static Analysis Deployment in Industrial Contexts

Static analysis tools

Static Analysis Static Analysis, Internal Forces, Stresses: Normal and Shear 1

static force analysis

Chapter 4 Static Structural Analysis - etu.edu.trmguler.etu.edu.tr/WB-Mech_120_Ch04_Static.pdf · Chapter 4 Static Structural Analysis. ... – For a static analysis, the end time

PhASAR: An Inter-procedural Static Analysis Framework for C/C++ · 2019-12-03 · PhASAR: An Inter-procedural Static Analysis Framework for C/C++ Philipp Dominik Schubert1(B), Ben

Static Analysis of C++ programs

•Faster, Stronger C++ Analysis with the Clang Static Analyzer · 2019-10-30 · •Faster, Stronger C++ Analysis with the Clang Static Analyzer. Agenda ... •Improved C++ constructor

Static Timing Analysis

Static Analysis & Tools Static Analysis

Using Static Analysis to Support Variability Implementation … · 2020-03-16 · Using Static Analysis to Support Variability Implementation Decisions in C++ Samer AL Masri, Sarah

Static Analysis using Abstract Interpretation · Softwaredevelopment Softwarerepresentmorethanhalfofthedevelopmentcostof anaircraft Regulatedbyinternationalstandards(DO-178rev.B/C)

Static Pushover Analysis

Static Code Analysis

On the Value of Static Analysis for Fault Detection in ... the Value of Static Analysis for Fault Detection in Software ... static analysis tools ... performs static analysis of source

Static Analysis

C-STAT: Static code analysis - IAR Systems...• Why use code analysis? – IEC61508 v2 requires the use of static analysis for SIL 2 – 4 • Section C.4.2 lays out the need for

Static Program Anaylsis - Kent State Universityjmaletic/cs63901/lectures/Static...1 Static Program Analysis Automated Static Analysis • Static analyzers are software tools for source

ADVANCED STATIC ANALYSIS FOR C/C++An advanced static analysis tool will be able to find this problem. Even better, imagine test_free is called from multiple different locations, sometimes

STATIC ANALYSIS AND STABILITY OF THE GRILLAGEyadda.icm.edu.pl/yadda/element/bwmeta1.element.baztech-article-BUJ8-0008-0086/c/...Static Analysis and Stability of the Grillage which

Static Analysis of C for Hybrid Type Checking · Static Analysis of C for Hybrid Type Checking Zachary R. Anderson [email protected] University of California, Berkeley Abstract

PVS-Studio advertisement - static analysis of C/C++ code

Static Analysis Comparison

Software Static Analysis

Common Errors in C/C++ Code and Static Analysis

How static analysis supports quality over 50 million lines of C++ code

The Pivot: Static Analysis of C++ Applications

Fast Static Analysis of C++ Virtual Function Callscs.sookmyung.ac.kr/~chang/lecture/popa/bacon.pdf · 2003-08-28 · Fast Static Analysis of C++ Virtual Function Calls David F. Bacon

CERTIF: a testing methodology and a test bench to …...Static analysis tools Static analysis tools Static analysis tools Dynamic analysis tool (tests harnesses) Dynamic analysis tool

C-STAT® Static Analysis Guide - IAR Systemsftp.iar.se/ for static analysis ... Description of the C-STAT command line tools Introduction to C-STAT and static analysis These topics

Components and Static Analysis - SNUropas.snu.ac.kr/seminar/20090831a.pdf · 2009-08-31 · Components and Static Analysis Bruno C. d. S. Oliveira email: [email protected] Monday,

Static Analysis: Load Factor Analysis

Static Analysis: Natural Frequency Analysis