HP UX Web Development Tools manual Reporting diagnostics from specific files

Page 32

Example 27 Suppressing diagnostics for specific file(s)

$ cadvise report -pdb test.pdb -summary -exclude "inflate.c"

Report generated using "HP Code Advisor C.XX.XX [Release Time]" on <machine> at <Report Time> Report command line: " cadvise report -pdb test.pdb -summary -exclude "inflate.c "

=============================== SUMMARY REPORT =================================

Unique warnings: 257

Duplicate warnings: 0

Sev. Count

Diagnostic Message

--------------------------------------------------------------------------------

5

1

warning #20111-D: (SECURITY) Tainted data may be used in data length computation%s

5

4

warning #20200-D: Potential null pointer dereference %s%s is detected %s

5

10

warning #20118-D: Tainted value may be used in pointer arithmetic expression%s

5

12

warning #20112-D: (SECURITY) Tainted data may be copied to the target buffer%s

5

20

warning #20117-D: (SECURITY) Tainted value may be used in array index expression%s

5

23

warning #20114-D: (SECURITY) Tainted value may be used in loop exit condition computation%s

3

1

remark #2193-D: zero used for undefined preprocessing identifier

32 remark #4315-D: %s loop without body, did you insert an extra ';'?

...

6.10Reporting diagnostics from specific files

The -include <string1:string2:...:stringN> option generates diagnostics for files that contain any of the strings from 1 to n in the file.

NOTE: You can use the -includeoption along with other filtering options, such as -exclude, -diag, and -severity. For more information, see “Report options interoperability” (page 40).

The following example shows the diagnostics containing strings from 1 to n for a file.

Example 28 Reporting diagnostics from specific file(s).

$ cadvise report -pdb test.pdb -summary -include "inflate.c"

report: warning: Filtering options do not affect -summary and -file_summary

Report generated using "HP Code Advisor C.XX.XX [Release Time]" on <machine> at <Report Time> Report command line: " cadvise report -pdb test.pdb -summary -include "inflate.c "

=============================== SUMMARY REPORT =================================

Unique warnings: 257

Duplicate warnings: 0

Sev. Count Diagnostic Message

--------------------------------------------------------------------------------

5 1 warning #20111-D: (SECURITY) Tainted data may be used in data length computation%s

5 4 warning #20200-D: Potential null pointer dereference %s%s is detected %s

5 10 warning #20118-D: Tainted value may be used in pointer arithmetic expression%s

5 12 warning #20112-D: (SECURITY) Tainted data may be copied to the target buffer%s

5 20 warning #20117-D: (SECURITY) Tainted value may be used in array index expression%s

5 23 warning #20114-D: (SECURITY) Tainted value may be used in loop exit condition computation%s

3 1 remark #2193-D: zero used for undefined preprocessing identifier

3 2 remark #4315-D: %s loop without body, did you insert an extra ';'?

6.11 Reporting program complexity metrics

The +metrics option reports the metrics in the PDB or metrics log file which is generated when the +metrics option is used during analysis. If you do not specify the +metrics option during analysis, cadvise displays the following warning:

report: warning: No metrics files specified

All options other than -includeand -excludeare ignored. The following example shows the report for program complexity data.

32 Generating reports

Page 31 Page 33
Image 32
Page 31 Page 33
Contents HP Code Advisor C.02.20 User Guide Page Contents Contents Document conventions and symbols About this documentIntended audience Related informationHP encourages your comments Cadvise-help@lists.hp.comFeatures Cadvise user interface FeaturesIntroduction Cadvise user interfaceAdvanced static code analysis $ cadvise cc -c hello.cSupported compilers $ cadvise -pdb ./mypdb +wlint aCC hello.cppUsing Cadvise Steps in using cadviseSupported platforms Installing Cadvise Getting startedInvoking Cadvise Using Cadvise as a wrapper around Compiler or Linker For information on PDB, see Using the Program Database PDBSee the following makefile content Integrating Cadvise with the makefiles and build processExample 2 Sample wrapper script Enabling different categories of diagnostic messagesGenerating code complexity metrics Example 3 Generating code complexity metrics Objfile.metricsGenerating code complexity metrics Example 4 Code complexity metrics $ cat /tmp/example.c+wcodeguide=rules-library Source structure in the rules library Example 5 Writing a rule to enforce naming conventionUsing the Program Database PDB PDB options table Specifying the PDB locationDeleting PDB Disabling locks in PDB operationsCreating a PDB snapshot at a specified location Displaying PDB versionExample 8 Removing object file information from the PDB Example 9 Creating a PDB snapshotCross-file analysis options Using cross-file analysisUsage Crossfile=auto Example 15 Specifying the location of object files Configuring diagnostic messages Diagnostic configuration options tableSuppressing warnings selectively Enabling warnings selectivelyManaging warnings in a source file Interpreting selective warnings as errorsDisabling warnings in a macro Generating reports Report generation options tableCadvise report report-options -pdb pdbdir Cadvise report report-options logfileGenerating summary reports Generating file summary reportGenerating detailed report $cadvise report -summary -pdb testpdb -noheaderTo save reports, run the following command Generating Html reportExample 23 Generating detailed report $ cadvise report -pdb testpdb -allPrinting diagnostics with specific diagnostic numbers Following example shows the command to generate XML reportGenerating XML report Example 24 Generating an XML reportSuppressing diagnostics for specific files Generating reports based on severity$ cadvise report -pdb testpdb -diag Example 26 Generating reports based on severityReporting diagnostics from specific files Reporting program complexity metrics$ cadvise report -pdb test.pdb -summary -exclude inflate.c $ cadvise report -pdb test.pdb -summary -include inflate.c$ cadvise report -pdb gzip.pdb +metrics -include inflate.c Generating report for a moduleExample 29 Reporting program complexity metrics Modifying the default severity level of a diagnostic Suppressing report headerGenerating PDB comparison report $ cadvise report -pdb test.pdb -summary -module test1Example 34 Generating detailed diff report with the header $ cadvise report -pdb tmp.pdb -basepdb tmp1.pdb -allExample 35 Generating diff report for any particular warning $ cadvise report -pdb tmp.pdb -basepdb tmp1.pdb -diag$ cadvise report -pdb tmp.pdb -basepdb tmp1.pdb -severity $ cadvise -pdb pdb1 cc one.c two.cReport options file $ cadvise report -pdb new.pdb -basepdb old.pdb -allExample 42 Generating a report using -migration option Generate report for migration related warningsGenerating consolidated report from multiple PDBs Example 41 Report options fileRecommended process for analyzing the diagnostic messages Generating PDB diffs with multiple PDBsReport options interoperability $ cadvise report -pdb 1.pdb2.pdb3.pdb4.pdb -allExample 44 Reporting options interoperability $ cadvise report -pdb test.pdb -diag 2549 -exclude b.cExample 45 Ignoring the -includeoption $ cadvise report -pdb test.pdb -summary -include a.cb.cExample 48 Using -noabort Miscellaneous driver optionsHelp-h-H Example 47 Displaying the list of cadvise optionsExample 49 Using -nobuild option Following command creates the file cadvdir/foo.cadExample 51 Using -tee option Following example shows the usage of -nobuildoptionExample 52 Using +opts filename option Line generates the following messagesDetecting generic programming errors Categories of diagnostics with examplesCategories of diagnostics table Categories of diagnostics with examples Example 53 Null pointer dereference check Such cases, cadvise generates the following warningExample 54 Potential memory leak check Such cases, cadvise generates the following warningsExample 55 Out of bound access Example 56 Out of scope accessExample 58 Allocator/deallocator mismatch Such cases, cadvise generates the following errorExample 57 Use of pointer after free Detecting 32-bit to 64-bit migraton issues Detecting endianness migration issuesExample 60 Detecting 32-bit to 64-bit migraton issues Example 59 Signed bit field of lengthConsider the following code fragment Detecting potential security vulnerabilitiesExample 61 Detecting endian dependent code fragments Detecting multi-threaded programming issues This case, cadvise generates the following errorDetecting potential performance improvement opportunities Example 63 Detecting multi-threaded programming issuesRunning cadvise generates the following error Detecting potential performance improvement opportunities Fixing the warnings by source change Incompatibilities on PA-RISC based systems AC++ standard conformance and compatibility changesSymbols Index
Top Page Image Contents