C Language, Methods for improved code quality

Methods for improved code quality - static analysis...

Author	Message
Tor Rusta #1 / 3	Methods for improved code quality - static analysis... Hi, I am investigating mechanisms to improve C code quality I am a strong believer in using tools, however to be effective, such tools need to be simple and effective. For dynamic analysis, such tools do exists, however for static analysis I expect there might be better tools available than lint. The most promising candidate I have come up with so far, is a product named QAC. Does anyone here have experience QAC or is there better products available? Furthermore, I want to enforce an official coding standard, i.e. a sub-set of the C language. I am aware of MISRA-C, but is there better sub-sets to consider? Or has MISRA-C become de facto standard for usage of C in safety related development? What is the best tool to enforce MISRA-C? (I have read a report on an analysis of 6 MISRA-C tools, apparently both correctness and number of false positives was a big problem, e.g. not all tools looked mature and practical for real projects). -- Tor <torust AT online DOT no>
Tue, 05 Oct 2004 05:59:29 GMT

Tony Finc #2 / 3	Methods for improved code quality - static analysis... Quote: >I am investigating mechanisms to improve C code quality >I am a strong believer in using tools, however to be effective, such >tools need to be simple and effective. For dynamic analysis, such tools >do exists, however for static analysis I expect there might be better >tools available than lint. Have you looked at splint? http://www.splint.org/ Tony. -- EAST SOLE LUNDY FASTNET: SOUTHERLY 4 OR 5, OCCASIONALLY 6 LATER. OCCASIONAL RAIN. MODERATE OR GOOD.
Tue, 05 Oct 2004 17:50:34 GMT

Jack Klei #3 / 3	Methods for improved code quality - static analysis... wrote in comp.lang.c: Quote: > Hi, > I am investigating mechanisms to improve C code quality > I am a strong believer in using tools, however to be effective, such > tools need to be simple and effective. For dynamic analysis, such tools > do exists, however for static analysis I expect there might be better > tools > available than lint. The most promising candidate I have come up with so > far, is a product named QAC. Does anyone here have experience QAC or > is there better products available? > Furthermore, I want to enforce an official coding standard, i.e. a > sub-set of the C language. I am aware of MISRA-C, but is there better > sub-sets to consider? Or has MISRA-C become de facto standard > for usage of C in safety related development? > What is the best tool to enforce MISRA-C? > (I have read a report on an analysis of 6 MISRA-C tools, apparently > both correctness and number of false positives was a big problem, > e.g. not all tools looked mature and practical for real projects). I hate to say this, but your questions are off-topic here. The notion of enforcing an "official coding standard", some subset of legal C, is not topical no matter how useful it might be in the real world. And the notion of code checking tools is completely off-topic, just as are questions about make, lex and yacc (and their relatives), and even lint utilities. That said, the two best newsgroups I can think of for discussing these issues are comp.programming (marginal) and comp.software-eng. <off topic> MISRA C is an excellent set of guidelines, I agree with almost all of them. But the best analysis tool in the world is peer review, some kind of informal code review or formal code inspection. </off topic> -- Jack Klein Home: http://JK-Technology.Com FAQs for comp.lang.c http://www.eskimo.com/~scs/C-faq/top.html comp.lang.c++ http://www.parashift.com/c++-faq-lite/ alt.comp.lang.learn.c-c++ ftp://snurse-l.org/pub/acllc-c++/faq
Fri, 08 Oct 2004 07:13:33 GMT

Page 1 of 1

[ 3 post ]