PVS-Studio 7.14: intermodular analysis in C++ and plugin for JetBrains CLion

• Integrating PVS-Studio into JetBrains CLion
• Intermodular analysis of C and C++ projects
• Speeding up the C# analyzer
• 29 new diagnostics
• Other details
• Some articles published after the previous release

The PVS-Studio team is increasing the number of diagnostics with each new release. Besides, we are improving the analyzer's infrastructure. This time we added the plugin for JetBrains CLion. Moreover, we introduced intermodular analysis of C++ projects and speeded up the C# analyzer core.

Integrating PVS-Studio into JetBrains CLion

We introduced a user-friendly plugin, which helps to use PVS-Studio in JetBrains CLion. Check out our blog to learn more about difficulties that we encountered when developing the CLion plugin. Here you can view the list of JetBrains IDEs which PVS-Studio already supports.

As we release the plugin for CLion for the first time, you may encounter some inconveniences or errors while using the plugin. In this case, please do not hesitate to write us. We'll try to help, give some advice, or fix defects. Thanks in advance.

Intermodular analysis of C and C++ projects

Now, the PVS-Studio C++ analyzer supports intermodular analysis. In this mode, when parsing the code, the analyzer considers the results of method calls declared in other translation units. We also have intermodular analysis in the C# analyzer (at the project level) and in the Java analyzer (at the package level). In the C++ analyzer, this mode is disabled by default because it can slow down the speed of analysis. Learn more about intermodular analysis and its implementation features in our blog.

Speeding up the C# analyzer

Now, the C# analyzer checks large projects (more than 10,000 source files) two times faster. Furthermore, the C# analyzer uses multi-core processors much more efficiently. Check out our blog to see techniques that we used to speed up the C# analyzer. These techniques may be applied for other classes of .NET applications:

• .NET application optimization: simple edits speeded up PVS-Studio and reduced memory consumption by 70%.
• Optimization of .NET applications: a big result of small edits.

29 new diagnostics

As the list below shows, most of the diagnostics that we currently implement are based on the MISRA C standard. We focused on the MISRA C support, and now PVS-Studio covers 60% of the standard. Soon, we plan to cover at least 80%. We also want to introduce the support of coding standards from the MISRA C Compliance.

In addition, we continue to improve the analyzer capabilities in identifying potential vulnerabilities. Now, PVS-Studio covers 6 out of 10 categories in OWASP Top 10 – the list of the most common and dangerous security threats for Web applications. In this release, we added diagnostics for A5 Broken Access Control, A7 Cross-Site Scripting (XSS), and A8 Insecure Deserialization categories. In future releases this year, we plan to increase the coverage to 9 categories.

• V2015. An identifier declared in an inner scope should not hide an identifier in an outer scope.
• V2016. Consider inspecting the function call. The function was annotated as dangerous.
• V2584. MISRA. Expression used in condition should have essential Boolean type.
• V2585. MISRA. Casts between a void pointer and an arithmetic type should not be performed.
• V2586. MISRA. Flexible array members should not be declared.
• V2587. MISRA. The '//' and '/*' character sequences should not appear within comments.
• V2588. MISRA. All memory or resources allocated dynamically should be explicitly released.
• V2589. MISRA. Casts between a pointer and a non-integer arithmetic type should not be performed.
• V2590. MISRA. Conversions should not be performed between pointer to function and any other type.
• V2591. MISRA. Bit fields should only be declared with explicitly signed or unsigned integer type.
• V2592. MISRA. An identifier declared in an inner scope should not hide an identifier in an outer scope.
• V2593. MISRA. Single-bit bit fields should not be declared as signed type.
• V2594. MISRA. Controlling expressions should not be invariant.
• V2595. MISRA. Array size should be specified explicitly when array declaration uses designated initialization.
• V2596. MISRA. The value of a composite expression should not be assigned to an object with wider essential type.
• V2597. MISRA. Cast should not convert pointer to function to any other pointer type.
• V2598. MISRA. Variable length array types are not allowed.
• V2599. MISRA. The standard signal handling functions should not be used.
• V2600. MISRA. The standard input/output functions should not be used.
• V2601. MISRA. Functions should be declared in prototype form with named parameters.
• V2602. MISRA. Octal and hexadecimal escape sequences should be terminated.
• V2603. MISRA. The 'static' keyword shall not be used between [] in the declaration of an array parameter.
• V3172. The 'if/if-else/for/while/foreach' statement and code block after it are not related. Inspect the program's logic.
• V3552. AUTOSAR. Cast should not convert a pointer to a function to any other pointer type, including a pointer to function type.
• V3553. AUTOSAR. The standard signal handling functions should not be used.
• V3554. AUTOSAR. The standard input/output functions should not be used.
• V5609. OWASP. Possible path traversal vulnerability. Potentially tainted data is used as a path.
• V5610. OWASP. Possible XSS vulnerability. Potentially tainted data might be used to execute a malicious script.
• V5611. OWASP. Potential insecure deserialization vulnerability. Potentially tainted data is used to create an object using deserialization.

Other details

The PVS-Studio plugin for SonarQube supports SonarQube 8.9 LTS.

Now, in the PVS-Studio C++ analyzer, you can disable diagnostic rules for a given range of lines in the source file. See the section "How to enable and disable certain diagnostics for a block of code" in the Suppression of false alarms documentation.

One of our users wrote an article about integrating the PVS-Studio analyzer into uVision Keil. PVS-Studio does not provide such an option out of the box. But if you want something, we'll do our best to implement it :). The story turned out to be entertaining. Do take a look, even if you don't use uVision Keil: Integrating PVS-Studio into uVision Keil. Here is a quote from the article:

I've been using this scenario until one day I spent 3 days debugging a very unpleasant bug. The bug appearances were random and bewildering. It turned out to be a banal null pointer dereference (which on microcontrollers usually does not result in any instantaneous errors like Access Violation). I quickly realized that PVS-Studio detects this bug. That was the final nail in the coffin of my patience! – and I started integrating PVS-Studio into Keil.

Some articles published after the previous release

• An unexpected article about our unicorn: who is the PVS-Studio mascot?
• A beautiful error in the implementation of the string concatenation function.
• Enums in C#: hidden pitfalls.
• OWASP, vulnerabilities, and taint analysis in PVS-Studio for C#. Stir, but don't shake.
• Static analysis protects your code from time bombs.
• PVS-Studio team: switching to Clang improved PVS-Studio C++ analyzer's performance