Язык сайта / Site language:

PVS-Studio Static Code Analyzer for 64-bit and parallel C/C++ code

Our Customers

Blog

11.03.2010 Parallel notes N4 - continuing to study OpenMP constructs
In this post we will continue to introduce you into OpenMP technology and tell you about some functions and new directives.»

02.03.2010 Parallel notes N3 - base OpenMP constructs
Now we would like to start introducing you into OpenMP technology and show you the ways of using it.»

28.02.2010 In what way can C++0x standard help you eliminate 64-bit errors
Programmers see in C++0x standard an opportunity to use lambda-functions and other entities I do not quite understand :).»

Articles

10.12.2009 PVS-Studio FAQ
This paper contains some questions and answers about PVS-Studio code analyzer by OOO "Program Verification Systems".»

09.12.2009 VivaCore FAQ
This paper contains some questions and answers about VivaCore C/C++ code analysis library by OOO "Program Verification Systems"»

23.11.2009 PVS-Studio: using the function "Mark as False Alarm"
The article describes and demonstrates by an example the use of PVS-Studio 3.40 new function "Mark as False Alarm". »

News

15.03.2010 Our site has now a new appearance.»

12.03.2010 We have a knowledge base of issues related to 64-bit and parallel software development at our site.»

11.02.2010 We have a new section "Article reviews" on our site viva64.com. »

Blog

Main » Blog

Posts Tagged ‘company’

A course on static analysis

Monday, June 29th, 2009 by Andrey Karpov

Some time ago we communicated with TEKAMA Company about developing a course on static analysis for one of their corporate clients. Unfortunately, the project has not been implemented but we are still ready to develop theoretical and practical courses in this sphere. If you are interested in courses in the saphere of increasing software quality and code verification, write to us, we are likely to find mutual interests.

To make clear what exactly these courses include let’s study the contents of the two courses we have been planning to develop for TEKAMA Company. The first course is theoretical, the second is practical.

Static analysis. Theoretical section.

The first section of the course is of theoretical character and is intended for familiarizing the attendees with the methodology of static analysis and the principles it is based on. The course is meant for developers using C/C++ programming languages within the framework of Visual Studio 2008 environment. But it concerns many theoretical issues such as estimating the cost of a program project, metrics’ types, etc, what can be interesting for developers using any development environments.

Contents:

The history of static analysis methodology

a. Methods of increasing programs’ quality
b. Code review methodology as a basis of static analysis
c. Development of static analysis methodology
d. Advantages and disadvantages of static analysis in comparison with other code verification (testing) methodologies

Technical principles underlying static code analyzers

a. Brief description of the interior organization of static analyzers
b. Collection of information on the basis of parsing AST or parse tree
c. Tools for creating solutions in the sphere of code analysis

Metrics

a. Estimate of the cost of a program project on the basis of metrics
      i. Where do estimate errors arise from and in what way is metrics calculation helpful
      ii. Types of cost estimate metrics, their advantages and disadvantages
         1. The role of lines of code (LOC) in size estimate
         2. Functional points
         3. Conversion of functional points into LOC
         4. Simplified methods of calculating functional points
         5. Dutch method
         6. GUI items
      iii. Using estimates when negotiating and making decisions
      iv. Steve McConnel’s works in the sphere of cost estimate
      v. An example of a tool in the sphere of estimating the cost of creating a project
b. Increase of quality and safety of a project with the help of complexity estimate metrics
      i. Holstead’s metrics
      ii. Jilb’s metrics
      iii. McCabe’s metrics (cyclomatic complexity)
      iv. Meyers’ metrics
      v. Other metrics and literature on them
      vi. Practical use of complexity metrics
      vii. Examples of tools for estimating cyclomatic complexity (SourceMonitor, C and C++ Code Counter)

Static analysis

a. Difference between static analysis and dynamic analysis
b. Advantages and disadvantages of static analysis in comparison with dynamic analysis
c. How static and dynamic analysis can efficiently complement each other
d. Using sets of rules for diagnosing
      i. Scott Meyers “Effective C++”
      ii. MISRA
      iii. OOP
      iv. Qt Best Practices
      v. Other sets of rules
e. Using static analysis for style unification
      i. Examples
      ii. Discussion of the examples
f. Using static analysis for searching errors
      i. Inattention errors, diagnosing, examples
      ii. Initialization errors, diagnosing, examples
      iii. Safety errors, diagnosing, examples
      iv. Compatibility errors when developing cross-platform solutions, diagnosing, examples
      v. Performance errors, diagnosing, examples
      vi. Errors in multi-thread programs, diagnosing, examples
      vii. Other types of errors, diagnosing, examples
g. Using static analysis in practice
      i. Why are there so many warnings and what to do with them?
      ii. Integration of static analysis into the development process
h. Examples of the most popular static analysis systems

Additional information and a story about resources devoted to the topic of static analysis
Answering the questions

Static analysis. Practical section.

The second section is of practical character and is intended for familiarizing the attendees with some static analysis tools and methods of using them. The course is meant for developers using C/C++ programming languages within the framework of Visual Studio 2008 development environment. In the second section of the course we can touch upon the ways of applying practical studies on getting acquainted with the tools. As the authors of the course we can provide Viva64 and VivaMP tools free for the attendees to get acquainted with the working principles of static analyzers. If it is interesting to arrange practical studies on the basis of other tools, we should discuss this possibility and the budget for purchasing them separately.

Contents:

Review of code static analysis tools

      a. Lint
      b. PC-Lint
      c. FxCop
      d. JLint
      e. Cccc
      f. Estimate
      g. Analyzer included into Visual Studio Team System
      h. Viva64
      i. VivaMP
      j. Parasoft C++Test
      k. Other tools

Learning to apply the tools for calculating metrics

      a. Simple tools: SourceMonitor, C and C++ Code Counter (Cccc)
         i. SourceMonitor. Examples of use.
         ii. C and C++ Code Counter. Examples of use.
      b. Estimate program by Steve McConnel
         i. Methodologies of using Estimate program
         ii. Examples of use

Learning to apply C/C++ code static analysis tools

      a. PC-Lint
         i. Installation and setting of PC-Lint
         ii. Integration of PC-Lint into Visual Studio 2005/2008 and use of Visual Lint productt
         iii. Adaptation of PC-Lint tool’s settings to a project’s peculiarities
         iv. Examples of use
      b. Viva64
         i. Installation and setting of Viva64
         ii. Adaptation of Viva64 tool’s settings to a project’s peculiarities
         iii. Examples of use
         iv. We can discuss the variants of practical training on search of errors in 64-bit programs with the help of Viva64 tool. As the authors of Viva64 analyzer we are ready to provide the attendees with it free to get acquainted with it within the framework of the course.
      c. VivaMP
         i. VivaMP as a new direction in testing parallel applications
         ii. Installation and setting of VivaMP
         iii. Adaptation of VivaMP tool’s settings to a project’s peculiarities
         iv. Examples of use
         v. We can discuss the variants of practical training on search of errors in parallel programs with the help of VivaMP tool. As the authors of VivaMP analyzer we are ready to provide the attendees with it free to get acquainted with it within the framework of the course.
      d. C++Test
         i. Installation and setting of C++Test
         ii. Adaptation of C++Test tool’s settings to a project’s peculiarities
         iii. Examples of use

Practical approaches to integration of static analysis tools in the development process
Answering the questions

Tags: company, metrics, static analysis

OOO “Program Verification Systems”’s plans on developing its own software products

Tuesday, June 9th, 2009 by Evgeniy Ryzhkov

Since the beginning of the spring 2009 our company has been rapidly developing a new program product PVS-Studio which is a development of Viva64 and VivaMP code analyzers. Now it’s high time it was announced. But before doing this I’ll give a brief historical reference.

The first version of Viva64 1.0 software product was released December 31st, 2006 (versions history). Of course its implementation was not at a high level for it was very important for us to launch the product as soon as possible and get users’ response on the very technology of analyzing problems in 64-bit programs. And although it seems to me that we managed to avoid crude program errors, still even Viva64 2.0 version released July 9th, 2008 was far from being ideal.

Besides, November 27th, 2008 the first beta-version of our new VivaMP analyzer 1.00 beta was released which enabled the community of software developers to develop parallel programs in a simpler way with the help of OpenMP technology. The program was different from Viva64 only in the “stuffing”, that is in the errors diagnosed, while VivaMP’s interface was the same as in Viva64. Actually it was a copy of Viva64 operating in a different way. And although it is not convenient and logical from the user’s viewpoint to have two identical programs (Viva64 and VivaMP), this approach allowed us to introduce the technology of detecting errors in parallel programs on market more quickly.

Now, in 2009 it’s high time we improved our developments up to a more serious level.

I am glad to introduce a new software product by OOO “Program Verification Systems” named PVS-Studio (PVS is an abbreviation of our company’s name). PVS-Studio is a static code analyzer intended for simplifying development of modern applications in C and C++ languages. PVS-Studio unites the preceding developments of the company (software products Viva64 and VivaMP) into one solution. Everything that has been performed by the two tools (Viva64 and VivaMP) before is now performed by one PVS-Studio tool.

At present PVS-Studio software product contains two code analyzers. The first one is intended for simplifying development of 64-bit applications and also reducing the cost of migration of obsolete 32-bit code on a new platform. Earlier this was a separate tool Viva64. The second code analyzer is intended for simplifying development of parallel programs using OpenMP technology. Earlier it was VivaMP product.

Thus, our two products Viva64 and VivaMP will be distributed as a single tool kit of code analysis tools under the name of PVS-Studio. Moreover, we have composed the PVS-Studio licensing conditions so that you can purchase both separate code analysis units and the whole tool at once. Licenses are intended for single developers and for teams of 1-5 persons.

PVS-Studio product differs from Viva64 and VivaMP in that it allows you to:

perform code analysis in several threads;
conveniently and quickly operate the filters of diagnostic messages and error codes;
launch analysis in batch mode (you need to prepare command files);

Release of PVS-Studio is planned by the end of the summer 2009. But as PVS-Studio is a logical development and continuation of the line of Viva64 and VivaMP products we have decided not to reset numbering of the product’s versions. That’s why the version to be released will have number 3.00. We are planning to stop releasing separate products Viva64 and VivaMP in future but they will be available as separate units in PVS-Studio.

I can define PVS-Studio software product as a code analyzer for solving modern problems which programmers face instead of detecting already known and irrelevant errors like uninitialized variables or access to a zero pointer which have become obsolete 10 years ago.

So we are planning to release PVS-Studio at the end of the summer 2009.

Tags: company, PVS-Studio

OOO “Program Verification Systems” Blog Launch

Sunday, February 1st, 2009 by Evgeniy Ryzhkov

We pay much attention to writing and publishing articles here in OOO “Program Verification Systems”. On the “Articles” page of out site more than 40 various articles concerning static code analysis, 64-bit and parallel applications development are laid out. Many of them are written by the company employees, but there are also articles written by other people.

However, writing articles, we began to notice more often that not all topics which we want to speak on can fit the format of our ordinary article. Sometimes, just an item would be enough. For this reason, we have decided to launch a blog in which our employees could express their thoughts interesting to other people.

Tags: company

© 2008 - 2010, OOO "Program Verification Systems"
300027, Russia, Tula, P.O. Box 1800. Office: Russia, Tula, Kutuzova 100-73