Fast analysis of source code in C and C plus

被引:0
|
作者
Savitskii, V. O. [1 ]
Sidorov, D. V. [1 ]
机构
[1] Russian Acad Sci, Inst Syst Programming, Moscow 109004, Russia
来源
PROGRAMMING AND COMPUTER SOFTWARE | 2013年 / 39卷 / 01期
关键词
Source Code; Null Pointer; Open Source Project; Syntax Tree; Incremental Analysis;
D O I
10.1134/S0361768813010064
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Static analysis is a popular tool for detecting the vulnerabilities that cannot be found by means of ordinary testing. The main problem in the development of static analyzers is their low speed. Methods for accelerating such analyzers are described, which include incremental analysis, lazy analysis, and header file caching. These methods make it possible to considerably accelerate the detection of defects and to integrate the static analysis tools in the development environment. As a result, defects in a file edited in the Visual Studio development environment can be detected in 0.5 s or faster, which means that they can be practically detected after each keystroke. Therefore, critical vulnerabilities can be detected and corrected at the stage of coding.
引用
收藏
页码:49 / 55
页数:7
相关论文
共 50 条
  • [31] C plus plus EDSL for parallel code generation
    Berenyi, Daniel
    [J]. PROCEEDINGS 2015 8TH ROMANIA TIER 2 FEDERATION GRID, CLOUD & HIGH PERFORMANCE COMPUTING IN SCIENCE (RO-LCG), 2015,
  • [32] Detection of Incorrect Pointer Dereferences for C/C plus plus Programs using Static Code Analysis and Logical Inference
    Vert, Tatiana
    Krikun, Tatiana
    Glukhikh, Mikhail
    [J]. 2013 TOOLS & METHODS OF PROGRAM ANALYSIS (TMPA 2013), 2013, : 78 - 82
  • [33] Techniques for Memory-Efficient Model Checking of C and C plus plus Code
    Rockai, Petr
    Still, Vladimir
    Barnat, Jiri
    [J]. SOFTWARE ENGINEERING AND FORMAL METHODS, 2015, 9276 : 268 - 282
  • [34] From C/C plus plus Code to High-Performance Dataflow Circuits
    Josipovic, Lana
    Guerrieri, Andrea
    Ienne, Paolo
    [J]. IEEE TRANSACTIONS ON COMPUTER-AIDED DESIGN OF INTEGRATED CIRCUITS AND SYSTEMS, 2022, 41 (07) : 2142 - 2155
  • [35] NOBRAINER: A Tool for Example-Based Transformation of C/C plus plus Code
    Savchenko, V. V.
    Sorokin, K. S.
    Bronshtein, I. E.
    Volkov, A. S.
    Kachanov, V. V.
    Pankratenko, G. A.
    Ermakov, M. K.
    Markov, S. I.
    Spiridonov, A. V.
    Aleksandrov, I. V.
    [J]. PROGRAMMING AND COMPUTER SOFTWARE, 2020, 46 (05) : 362 - 372
  • [36] Nobrainer: An Example-Driven Framework for C/C plus plus Code Transformations
    Savchenko, Valeriy
    Sorokin, Konstantin
    Pankratenko, Georgiy
    Markov, Sergey
    Spiridonov, Alexander
    Alexandrov, Ilia
    Volkov, Alexander
    Sun, Kwangwon
    [J]. PERSPECTIVES OF SYSTEM INFORMATICS (PSI 2019), 2019, 11964 : 140 - 155
  • [37] CoBOT: Static C/C plus plus Bug Detection in the Presence of Incomplete Code
    Gao, Qing
    Zhang, Shikun
    Chen, Xianglong
    Ma, Sen
    Shao, Sihao
    Sui, Yulei
    Zhao, Guoliang
    Ma, Luyao
    Ma, Xiao
    Duan, Fuyao
    Deng, Xiao
    [J]. 2018 IEEE/ACM 26TH INTERNATIONAL CONFERENCE ON PROGRAM COMPREHENSION (ICPC 2018), 2018, : 385 - 388
  • [38] Detection of Memory Leaks in C/C plus plus Code via Machine Learning
    Andrzejak, Artur
    Eichler, Felix
    Ghanavati, Mohammadreza
    [J]. 2017 IEEE 28TH INTERNATIONAL SYMPOSIUM ON SOFTWARE RELIABILITY ENGINEERING WORKSHOPS (ISSREW 2017), 2017, : 252 - 258
  • [39] Static virtualization of C source code
    Jansen, Sam
    McGregor, Anthony
    [J]. SOFTWARE-PRACTICE & EXPERIENCE, 2008, 38 (04): : 397 - 416
  • [40] C-SOURCE-CODE FORMATTING
    CANN, P
    [J]. BYTE, 1983, 8 (12): : 18 - 18
12345