static analysis of C/C++ code
Go to file
amai2012 582f33ea5e
Create coverage data with HAVE_RULES=yes (#2612)
2020-04-19 11:04:02 +02:00
.github/workflows Create coverage data with HAVE_RULES=yes (#2612) 2020-04-19 11:04:02 +02:00
Cppcheck.xcodeproj
addons cppcheckdata: Set Function.nestedIn attribute 2020-04-16 12:25:03 +02:00
cfg wxwidgets.cfg: Added support for more interfaces. 2020-04-15 17:11:08 +02:00
cli Add ..\externals to include path 2020-04-18 11:03:26 +02:00
cmake aligned GCC warnings (#2592) 2020-04-08 14:56:12 +02:00
cve-test-suite
democlient
externals some cleanups (#2601) 2020-04-09 09:23:31 +02:00
gui cleaned up includes based on include-what-you-use (#2600) 2020-04-13 13:44:48 +02:00
htmlreport htmlreport: Fix source view with leading empty lines 2020-01-21 09:13:55 +01:00
lib Fix issue 9678: False positive: generic valueflow forward analysis (#2611) 2020-04-19 08:28:07 +02:00
man manual: updated chapter about inline suppressions 2020-02-25 19:59:21 +01:00
oss-fuzz aligned GCC warnings (#2592) 2020-04-08 14:56:12 +02:00
platforms #8424 Supply platform files for each platform instead of generic ones. Supply platform file for AIX ppc64 2019-01-01 16:04:02 +01:00
rules Format rules files as well 2019-09-26 19:58:39 +02:00
samples Try to fix Travis 2019-08-20 22:00:50 +02:00
snap
test Fix issue 9678: False positive: generic valueflow forward analysis (#2611) 2020-04-19 08:28:07 +02:00
tools donate_cpu_lib.py: Fix that timed out analyses are handled as crashes (#2561) 2020-02-28 08:12:10 +01:00
win_installer Set version 2019-12-21 11:49:01 +01:00
.astylerc
.clang-tidy fixes for Clang and clang-tidy 10 (#2588) 2020-04-04 11:44:59 +02:00
.codacy.yml
.gitignore some cleanups (#2601) 2020-04-09 09:23:31 +02:00
.mailmap Revert "Revert "Add a .mailmap file."" 2013-10-04 18:03:18 +02:00
.travis.yml aligned GCC warnings (#2592) 2020-04-08 14:56:12 +02:00
.travis_llvmcheck_suppressions Travis: updated the .travis_llvmcheck_suppressions file, * is not allowed 2018-11-19 15:42:40 +01:00
.travis_suppressions Check that virtual function non-narrow access modifier in derived class (#2229) 2020-01-01 16:09:43 +01:00
AUTHORS AUTHORS: Add michaelgruner 2020-04-18 09:39:27 +02:00
CMakeLists.txt add a "run-clang-tidy" CMake target when the executable exists (#2567) 2020-04-02 13:55:49 +02:00
COPYING
Makefile Run dmake and astyle 2020-02-16 19:58:09 +01:00
appveyor.yml compiling; you can put z3 files in externals/z3 2020-02-11 17:42:40 +01:00
benchmarks.txt
build-pcre.txt
build.bat
console_common.pri pro and pri files: remove unneeded empty lines, use spaces for consistency 2012-10-12 17:46:57 +02:00
cppcheck-errors.rng cppcheck-errors.rng: added column attribute 2019-08-18 14:06:16 +02:00
cppcheck.cbp
cppcheck.cppcheck
cppcheck.sln
createrelease createrelease: update daca@home 2019-12-21 20:11:00 +01:00
doxyfile
generate_coverage_report
naming.json Check for JSON error when parsing addon .json files + fixes (#2374) 2019-11-20 15:37:09 +01:00
philosophy.md
pylintrc_travis pylintrc_travis: Add check for bad-indentation, fix issues in misra.py (#2349) 2019-11-11 13:53:19 +01:00
readme.md Add badge for GitHub Actions 2020-03-28 16:04:36 +01:00
readme.txt compiling; you can put z3 files in externals/z3 2020-02-11 17:42:40 +01:00
readmeja.md Update readmeja (#2108) 2019-08-22 22:15:09 +02:00
requirements.txt Update pcre version since the link is broken (#2089) 2019-08-15 20:48:10 +02:00
runastyle Format rules files as well 2019-09-26 19:58:39 +02:00
runastyle.bat
webreport.sh

readme.md

Cppcheck

GitHub Actions Linux Build Status Windows Build Status OSS-Fuzz Coverity Scan Build Status License
Github Action Status Linux Build Status Windows Build Status OSS-Fuzz Coverity Scan Build Status License

About the name

The original name of this program was "C++check", but it was later changed to "Cppcheck".

Despite the name, Cppcheck is designed for both C and C++.

Manual

A manual is available online.

Donate CPU

Cppcheck is a hobby project with limited resources. You can help us by donating CPU (1 core or as many as you like). It is simple:

  1. Download (and extract) Cppcheck source code
  2. Run script: python cppcheck/tools/donate-cpu.py

The script will analyse debian source code and upload the results to a cppcheck server. We need these results both to improve Cppcheck and to detect regressions.

You can stop the script whenever you like with Ctrl C.

Compiling

Any C++11 compiler should work. For compilers with partial C++11 support it may work. If your compiler has the C++11 features that are available in Visual Studio 2013 / GCC 4.6 then it will work.

To build the GUI, you need Qt.

When building the command line tool, PCRE is optional. It is used if you build with rules.

There are multiple compilation choices:

  • qmake - cross platform build tool
  • cmake - cross platform build tool
  • Windows: Visual Studio (VS 2013 and above)
  • Windows: Qt Creator + mingw
  • gnu make
  • g++ 4.6 (or later)
  • clang++

cmake

Example, compiling Cppcheck with cmake:

mkdir build
cd build
cmake ..
cmake --build .

If you want to compile the GUI you can use the flag -DBUILD_GUI=ON

For rules support (requires pcre) use the flag -DHAVE_RULES=ON

For release builds it is recommended that you use: -DUSE_MATCHCOMPILER=ON

qmake

You can use the gui/gui.pro file to build the GUI.

cd gui
qmake
make

Visual Studio

Use the cppcheck.sln file. The file is configured for Visual Studio 2019, but the platform toolset can be changed easily to older or newer versions. The solution contains platform targets for both x86 and x64.

To compile with rules, select "Release-PCRE" or "Debug-PCRE" configuration. pcre.lib (pcre64.lib for x64 builds) and pcre.h are expected to be in /externals then. A current version of PCRE for Visual Studio can be obtained using vcpkg.

Qt Creator + MinGW

The PCRE dll is needed to build the CLI. It can be downloaded here: http://software-download.name/pcre-library-windows/

GNU make

Simple, unoptimized build (no dependencies):

make

The recommended release build is:

make MATCHCOMPILER=yes FILESDIR=/usr/share/cppcheck HAVE_RULES=yes CXXFLAGS="-O2 -DNDEBUG -Wall -Wno-sign-compare -Wno-unused-function"

Flags:

  1. MATCHCOMPILER=yes Python is used to optimise cppcheck. The Token::Match patterns are converted into C++ code at compile time.

  2. FILESDIR=/usr/share/cppcheck Specify folder where cppcheck files are installed (addons, cfg, platform)

  3. HAVE_RULES=yes Enable rules (PCRE is required if this is used)

  4. CXXFLAGS="-O2 -DNDEBUG -Wall -Wno-sign-compare -Wno-unused-function" Enables most compiler optimizations, disables cppcheck-internal debugging code and enables basic compiler warnings.

g++ (for experts)

If you just want to build Cppcheck without dependencies then you can use this command:

g++ -o cppcheck -std=c++11 -Iexternals -Iexternals/simplecpp -Iexternals/tinyxml -Ilib cli/*.cpp lib/*.cpp externals/simplecpp/simplecpp.cpp externals/tinyxml/*.cpp

If you want to use --rule and --rule-file then dependencies are needed:

g++ -o cppcheck -std=c++11 -lpcre -DHAVE_RULES -Ilib -Iexternals -Iexternals/simplecpp -Iexternals/tinyxml cli/*.cpp lib/*.cpp externals/simplecpp/simplecpp.cpp externals/tinyxml/*.cpp

MinGW

mingw32-make LDFLAGS=-lshlwapi

Other Compiler/IDE

  1. Create an empty project file / makefile.
  2. Add all cpp files in the cppcheck cli and lib folders to the project file / makefile.
  3. Add all cpp files in the externals folders to the project file / makefile.
  4. Compile.

Cross compiling Win32 (CLI) version of Cppcheck in Linux

sudo apt-get install mingw32
make CXX=i586-mingw32msvc-g++ LDFLAGS="-lshlwapi" RDYNAMIC=""
mv cppcheck cppcheck.exe

Webpage

http://cppcheck.sourceforge.net/