static analysis of C/C++ code
Go to file
IOBYTE 508e8c234b Fixed #8683 (Using deleted token with multiple template instantiations.) (#1353)
* Fixed #8683 (Using deleted token with multiple template instantiations.)

* Fixed #8321 (heap use after free: templatesimplifier)

* Add a flag to Token indicating that it has a pointer to it.

* Run dmake

* Fix one source of list pointers to deleted tokens.

Refactor TemplateSimplifier class to get access to template lists.
Remove many function parameters now that they are class variables.
Fix one source of list pointers to deleted tokens.
Add tests with no output to catch crashes.

* Run dmake again.

* Make 2 more functions private.

* Make requested changes.

* Missed one change request.

* Use TokenList rather than Tokenizer.

* Move TokenAndName constructor to cpp file so token.h is not needed in header file.
2018-09-01 11:26:10 +02:00
Cppcheck.xcodeproj Fix xcode project file 2015-11-23 23:00:21 +03:00
addons addons/cert.py: Add MSC30-C: Do not use rand() (#1348) 2018-08-24 15:05:50 +02:00
cfg bsd.cfg: Add arc4random* functions with tests. (#1344) 2018-08-16 21:37:40 +02:00
cli ErrorLogger: add {cwe} (#1341) 2018-08-21 13:58:19 +02:00
cmake Minor Cleanups (#1321) 2018-07-23 08:34:41 +02:00
democlient Democlient: 2016-07-17 18:47:40 +02:00
externals Bump simplecpp 2018-05-14 13:00:22 +02:00
gui triage: set error line properly 2018-09-01 06:39:22 +02:00
htmlreport Improve Python code 2017-06-04 22:51:48 +02:00
lib Fixed #8683 (Using deleted token with multiple template instantiations.) (#1353) 2018-09-01 11:26:10 +02:00
man Support floats in valid config (#1297) 2018-07-15 22:47:56 +02:00
platforms Platforms: Add arm32 and arm64 platform files (#1128) 2018-03-21 12:48:02 +01:00
rules Fix a typo in a message for a rule (#1181) 2018-04-19 22:33:14 +02:00
samples Make warning disappear (#957) 2017-09-08 14:25:08 +02:00
snap Fix permissions of certain non-executable files (#1083) 2018-02-09 19:46:38 +01:00
test Fixed #8683 (Using deleted token with multiple template instantiations.) (#1353) 2018-09-01 11:26:10 +02:00
tools triage: show url and filename in edit boxes 2018-09-01 07:36:58 +02:00
triage Improve Python code 2017-06-05 13:23:00 +02:00
win_installer Windows Installer: Added qwindowsvistastyle.dll 2018-06-25 21:08:34 +02:00
.codacy.yml .codacy.yml: Ignore *.cpp files in addons/test too 2018-08-22 08:46:21 +02:00
.gitignore Minor Cleanups (#1321) 2018-07-23 08:34:41 +02:00
.mailmap Revert "Revert "Add a .mailmap file."" 2013-10-04 18:03:18 +02:00
.travis.yml addons/cert.py: Add MSC30-C: Do not use rand() (#1348) 2018-08-24 15:05:50 +02:00
.travis_llvmcheck_suppressions travis: update commits of the clang/llvm repo we are checking during CI 2018-05-10 14:46:09 +02:00
.travis_suppressions travis: remove redundant suppressions 2018-05-12 03:20:23 +02:00
AUTHORS Updated AUTHORS 2018-06-10 22:19:58 +02:00
CMakeLists.txt Minor Cleanups (#1321) 2018-07-23 08:34:41 +02:00
COPYING Licensing: Using the GPL 3 license 2008-10-26 07:55:15 +00:00
Makefile gui: fix 2 findings by cppcheck 2018-08-09 09:43:11 +02:00
appveyor.yml appveyor: go back from vs2017 to vs2015 since the path worked better 2018-04-09 06:14:16 +02:00
benchmarks.txt benchmarks.txt: suggest that cryptopp is used (c++ code with plenty of templates) 2018-05-11 13:43:52 +02:00
build-pcre.txt Updated/Improved several readme files 2015-11-06 15:19:08 +01:00
build.bat batch files: switch to the batch file directory before doing anything else so that relative paths work right even if the batch file isn't called from its directory 2012-09-29 17:32:04 +02:00
console_common.pri pro and pri files: remove unneeded empty lines, use spaces for consistency 2012-10-12 17:46:57 +02:00
cppcheck-errors.rng #8611 Rename xmlV2.rng. Renaming it to cppcheck-errors.rng (#1278) 2018-06-06 15:25:09 +02:00
cppcheck.cbp Removed ExecutionPath 2015-07-23 19:01:12 +02:00
cppcheck.cppcheck Add cppcheck.cppcheck build dir 2018-02-23 22:16:49 +01:00
cppcheck.sln Updated Visual Studio solution to VS2017. 2017-05-14 10:04:25 +02:00
createrelease updated createrelease 2018-03-31 21:03:41 +02:00
doxyfile Update doxyfile (#1314) 2018-07-20 21:28:28 +02:00
generate_coverage_report Adjust options for lcov/genhtml to unmangled symbols and HTML frames 2016-02-02 12:23:33 +01:00
readme.md Remove some more cxx11emu.h references 2018-04-10 06:52:33 +02:00
readme.txt Remove some more cxx11emu.h references 2018-04-10 06:52:33 +02:00
runastyle Updated runastyle scripts 2018-06-20 09:56:25 +02:00
runastyle.bat Updated runastyle scripts 2018-06-20 09:56:25 +02:00
webreport.sh webreport: skip simian 2017-12-26 12:04:42 +01:00

readme.md

Cppcheck

Linux Build Status Windows Build Status Coverity Scan Build Status
Linux Build Status Windows Build Status Coverity Scan Build Status

Donations

If you find Cppcheck useful for you, feel free to make a donation.

Donate

About the name

The original name of this program was "C++check", but it was later changed to "Cppcheck".

Despite the name, Cppcheck is designed for both C and C++.

Manual

A manual is available online.

Compiling

Any C++11 compiler should work. For compilers with partial C++11 support it may work. If your compiler has the C++11 features that are available in Visual Studio 2013 / GCC 4.6 then it will work.

To build the GUI, you need Qt.

When building the command line tool, PCRE is optional. It is used if you build with rules.

There are multiple compilation choices:

  • qmake - cross platform build tool
  • cmake - cross platform build tool
  • Windows: Visual Studio (VS 2010 and above)
  • Windows: Qt Creator + mingw
  • gnu make
  • g++ 4.6 (or later)
  • clang++

qmake

You can use the gui/gui.pro file to build the GUI.

cd gui
qmake
make

Visual Studio

Use the cppcheck.sln file. The file is configured for Visual Studio 2015, but the platform toolset can be changed easily to older or newer versions. The solution contains platform targets for both x86 and x64.

To compile with rules, select "Release-PCRE" or "Debug-PCRE" configuration. pcre.lib (pcre64.lib for x64 builds) and pcre.h are expected to be in /externals then.

Qt Creator + MinGW

The PCRE dll is needed to build the CLI. It can be downloaded here: http://software-download.name/pcre-library-windows/

GNU make

Simple, unoptimized build (no dependencies):

make

The recommended release build is:

make SRCDIR=build CFGDIR=cfg HAVE_RULES=yes CXXFLAGS="-O2 -DNDEBUG -Wall -Wno-sign-compare -Wno-unused-function"

Flags:

  1. SRCDIR=build
    Python is used to optimise cppcheck

  2. CFGDIR=cfg
    Specify folder where .cfg files are found

  3. HAVE_RULES=yes
    Enable rules (PCRE is required if this is used)

  4. CXXFLAGS="-O2 -DNDEBUG -Wall -Wno-sign-compare -Wno-unused-function" Enables most compiler optimizations, disables cppcheck-internal debugging code and enables basic compiler warnings.

g++ (for experts)

If you just want to build Cppcheck without dependencies then you can use this command:

g++ -o cppcheck -std=c++11 -Iexternals/simplecpp -Iexternals/tinyxml -Ilib cli/*.cpp lib/*.cpp externals/simplecpp/simplecpp.cpp externals/tinyxml/*.cpp

If you want to use --rule and --rule-file then dependencies are needed:

g++ -o cppcheck -std=c++11 -lpcre -DHAVE_RULES -Ilib -Iexternals/simplecpp -Iexternals/tinyxml cli/*.cpp lib/*.cpp externals/simplecpp/simplecpp.cpp externals/tinyxml/*.cpp

MinGW

mingw32-make LDFLAGS=-lshlwapi

Other Compiler/IDE

  1. Create a empty project file / makefile.
  2. Add all cpp files in the cppcheck cli and lib folders to the project file / makefile.
  3. Add all cpp files in the externals folders to the project file / makefile.
  4. Compile.

Cross compiling Win32 (CLI) version of Cppcheck in Linux

sudo apt-get install mingw32
make CXX=i586-mingw32msvc-g++ LDFLAGS="-lshlwapi" RDYNAMIC=""
mv cppcheck cppcheck.exe

Webpage

http://cppcheck.sourceforge.net/