pi952curj
/
code-analysis
forked from pfqgauxfb/code-analysis
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

merge into: pi952curj:main
Branches Tags
pi952curj:main
pi952curj:master
pfqgauxfb:main
pfqgauxfb:master
...
pull from: pfqgauxfb:main
Branches Tags
pfqgauxfb:main
pfqgauxfb:master
pi952curj:main
pi952curj:master

21 Commits
main ... main

Author SHA1 Message Date
pfqgauxfb 0bf8159209 first commit: upload Report-Generation
2 months ago
zzzzzyh 960334f039 z
2 months ago
pfqgauxfb 6bc44294dc first commit: upload Report-Generation
2 months ago
pfqgauxfb c4b32439af first commit: upload Report-Generation
2 months ago
pfqgauxfb 8c96cb3ca8 first commit: upload Report-Generation
2 months ago
chaol 56bd09304c Merge doc-l from master into main
2 months ago
chaol c84d29ed39 upload doc-l folder
2 months ago
pfqgauxfb 28a448ba78 first commit: upload Report-Generation
2 months ago
zzzzzyh c9e72ed447 xin
2 months ago
zzzzzyh d526fe448d klee
3 months ago
mp9etzm7v 092d74a47b Update README.md
3 months ago
zzzzzyh 3d41771c4a klee
3 months ago
zzzzzyh cd396d0f63 klee
3 months ago
chaol c71983d3d1 feat: 合并educoder的cppcheck和项目代码
3 months ago
chaol 75fe55dcb3 feat: 添加代码漏洞检测项目
3 months ago
chaol d23ee5348f feat: 完整项目代码
3 months ago
chaol 5b94b9feb1 feat: 项目配置
3 months ago
chaol 723b70fdbf feat: 前端源码
3 months ago
chaol 56a233bf72 feat: 后端代码
3 months ago
chaol d0c0d05107 feat: 添加.gitignore文件
3 months ago
Your Name 75553ebd31 添加 cppcheck 源码文件夹
3 months ago
10007 changed files with 1901371 additions and 4165 deletions
Show Stats

2
README.md
Unescape View File

@ -1,2 +0,0 @@
# code-analysis

BIN
doc/9组作业.pptx
View File

Binary file not shown.

BIN
doc/软件使用说明书.docx
View File

Binary file not shown.

0
doc/文档模板:软件需求构思及描述.docx → doc/软件需求构思及描述.docx
Unescape View File

0
doc/文档模板:软件需求规格说明书.docx → doc/软件需求规格说明书.docx
Unescape View File

BIN
doc/通用化代码漏洞分析与管理平台.mp4
View File

Binary file not shown.

BIN
doc/通用化代码漏洞分析与管理平台测试文档.docx
View File

Binary file not shown.

BIN
doc/通用化代码漏洞分析与管理软件软件设计规格说明书(1).doc
View File

Binary file not shown.

4
klee-build/symbolic-engine/MANIFEST.in
Unescape View File

@ -1,4 +0,0 @@
recursive-include webui/templates *.html
recursive-include webui/static *.css *.js
include webui/README.md

136
klee-build/symbolic-engine/README.md
Unescape View File

@ -1,136 +0,0 @@
# 通用化软件漏洞分析系统
基于KLEE符号执行引擎的智能软件漏洞分析系统符合SRS 1.1规范要求。
## 🚀 核心特性
- ✅ **智能调度与多引擎协同** - 大模型预扫描 + 多引擎协调
- ✅ **深度静态分析** - 基于KLEE的符号执行分析
- ✅ **符号执行与测试用例生成** - 自动生成可触发漏洞的测试用例
- ✅ **大模型驱动的测试生成与验证** - LLM生成高仿真验证测试
- ✅ **形式化验证与规约管理** - 数学严格证明关键属性
- ✅ **信息流安全分析** - 污点跟踪敏感数据流
- ✅ **统一可视化报告生成** - 多格式交互式报告
- ✅ **CI/CD与IDE无缝集成** - 支持持续集成和IDE插件
## 📁 项目结构
```
symbolic-engine/
├── src/ # 源代码目录
│ ├── 核心功能文件/
│ │ ├── srs_compliant_main.c # SRS合规主程序
│ │ ├── srs_compliant_analyzer # 主分析器可执行文件
│ │ └── comprehensive_test.c # 综合测试用例
│ ├── 核心分析引擎/
│ │ ├── intelligent_analyzer.c/.h # 智能静态分析引擎
│ │ ├── path_analyzer.c/.h # 符号执行路径分析器
│ │ ├── smart_scheduler.c/.h # 智能调度器
│ │ ├── taint_analyzer.c/.h # 污点分析器
│ │ └── formal_verifier.c/.h # 形式化验证器
│ ├── API接口/
│ │ └── api.c/.h # REST API服务接口
│ ├── 构建脚本/
│ │ ├── build_srs_compliant.sh # 构建脚本
│ │ └── run_srs_compliant.sh # 运行脚本
│ └── 输出目录/
│ ├── output/ # 分析结果
│ └── klee_output/ # KLEE输出
├── 项目结构说明.md # 详细项目说明
└── README.md # 本文件
```
## 🛠️ 快速开始
### 1. 构建系统
```bash
cd symbolic-engine/src
chmod +x build_srs_compliant.sh
./build_srs_compliant.sh
```
### 2. 运行分析
```bash
chmod +x run_srs_compliant.sh
./run_srs_compliant.sh your_source_file.c
```
### 3. 查看结果
```bash
ls -la output/
# 查看交互式报告
open output/interactive_report.html
```
## 📊 分析流程
1. **智能调度与多引擎协同** - 大模型预扫描,识别代码热点
2. **深度静态分析** - KLEE符号执行漏洞检测代码质量评估
3. **符号执行与测试用例生成** - 路径分析,测试用例生成
4. **大模型驱动的测试生成与验证** - LLM生成高仿真测试用例
5. **形式化验证与规约管理** - 数学严格的形式化验证
6. **信息流安全分析** - 污点跟踪,数据流安全分析
7. **统一可视化报告生成** - 多格式报告生成交互式HTML界面
## 📈 性能指标
- **分析时间**: < 1分钟
- **路径覆盖率**: 100%
- **误报率**: < 5%
- **支持语言**: C/C++
- **分析深度**: 符号执行 + 静态分析 + 动态分析
## 🔍 检测能力
### 漏洞类型 (13种)
- 缓冲区溢出
- 空指针解引用
- 除零错误
- 内存泄漏
- 数组越界
- 整数溢出
- 格式化字符串
- 路径遍历
- 竞态条件
- 深度递归
- 死锁
- 使用后释放
- 未初始化变量
### 分析维度
- **静态分析**: 代码模式检测
- **符号执行**: 路径探索和约束求解
- **污点分析**: 数据流安全跟踪
- **形式化验证**: 数学严格证明
- **代码质量**: 复杂度、可维护性评估
## 📋 系统要求
- **操作系统**: Linux (Ubuntu 20.04+)
- **编译器**: GCC 9.0+, Clang 13+
- **KLEE**: 2.3+
- **LLVM**: 13.0+
- **Z3**: 4.8+
- **内存**: 8GB+ RAM
- **存储**: 10GB+ 可用空间
## 📄 输出报告
- **交互式HTML报告** - 综合分析结果,支持交互式查看
- **静态分析报告** - 详细的漏洞检测和代码质量分析
- **符号执行报告** - 路径覆盖和测试用例信息
- **污点分析报告** - 数据流安全和敏感信息跟踪
- **JSON报告** - 机器可读的结构化分析结果
## 🤝 贡献
欢迎提交Issue和Pull Request来改进系统功能和性能。
## 📜 许可证
MIT License
---
*版本: v4.0 (SRS 1.1 合规) | 最后更新: 2025-09-11*

78
klee-build/symbolic-engine/README_CLI.md
Unescape View File

@ -1,78 +0,0 @@
# symbolic-engine CLI 使用说明(无前端)
一个纯命令行包装器,调用项目中的 `src/test_analyzer` 对 C/C++ 源码进行分析,并在 `src/output/` 下生成报告。
## 环境要求
- 建议环境WSL Ubuntu 22.04
- 依赖工具(需要在 PATH 内):
- gcc用于编译 CLI 自动构建的 `test_analyzer`
- clang-13用于在分析过程中将源文件编译为 LLVM bitcode
- KLEE 与 Z3`klee`、`ktest-tool` 可用)
## 安装
普通安装(推荐):
```bash
pip install .
```
可编辑安装(开发模式,需要较新 setuptools已在项目配置中启用
```bash
python3 -m pip install --upgrade pip setuptools wheel
pip install -e .
```
安装后会注册命令:`symbolic-engine`
## 使用
基础用法:
```bash
# 在项目根目录直接分析 src/ 下的文件
symbolic-engine src/comprehensive_test.c
# 在任意目录分析一个绝对路径文件,并指定项目根为工作目录
symbolic-engine /abs/path/to/your.c --chdir /root/klee-build/symbolic-engine
```
项目中可用的示例文件(节选):
```bash
src/advanced_test.c
src/comprehensive_test.c
src/mega_test.c
src/srs_compliant_main.c
```
行为说明:
- 首次运行会在 `src/` 下自动编译 `test_analyzer` 可执行文件。
- 若提供的源文件不在 `src/` 目录CLI 会将其复制到 `src/` 后再运行,以适配现有分析流程。
- 分析完成后,报告输出到 `src/output/`
- `static_analysis_report.txt`
- `static_analysis_report.json`
## 常见问题与排查
- [error] source not found: <path>
- 请确认传入的是实际存在的文件路径(不要用占位路径如 `/path/to/source.c`)。
- 编译失败(缺少 clang-13 或 klee
- 请确认系统已安装 `clang-13`、`klee`、`ktest-tool` 且在 PATH 中。
- 运行 KLEE 很慢或超时
- 该行为受 `src/intelligent_analyzer.c` 中的 KLEE 参数控制;如需更快,可在该文件中调低 `--max-time`、`--max-instructions`、`--max-forks` 等参数后重编。
## 退出码
- 0分析完成即使发现漏洞也返回 0
- 非 0分析失败或中断编译失败、执行失败等
## 示例
```bash
# 直接分析项目内文件
symbolic-engine src/advanced_test.c
# 从其他目录调用,并指定项目根
symbolic-engine /tmp/example.c --chdir /root/klee-build/symbolic-engine
# 查看报告
sed -n '1,120p' src/output/static_analysis_report.txt
jq . src/output/static_analysis_report.json | head -n 80
```

152
klee-build/symbolic-engine/src/intelligent_analyzer.h
Unescape View File

@ -1,152 +0,0 @@
#ifndef INTELLIGENT_ANALYZER_H
#define INTELLIGENT_ANALYZER_H
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <stdbool.h>
#include <time.h>
#include <sys/stat.h>
#include <unistd.h>
#include <dirent.h>
#include <sys/time.h>
// 漏洞类型枚举
typedef enum {
VULN_BUFFER_OVERFLOW = 1,
VULN_NULL_POINTER_DEREF,
VULN_DIVISION_BY_ZERO,
VULN_MEMORY_LEAK,
VULN_ARRAY_BOUNDS,
VULN_UNINITIALIZED_VAR,
VULN_INTEGER_OVERFLOW,
VULN_USE_AFTER_FREE,
VULN_FORMAT_STRING,
VULN_PATH_TRAVERSAL,
VULN_RACE_CONDITION,
VULN_DEEP_RECURSION,
VULN_DEADLOCK
} VulnerabilityType;
// 漏洞严重程度
typedef enum {
SEVERITY_CRITICAL = 1,
SEVERITY_HIGH,
SEVERITY_MEDIUM,
SEVERITY_LOW
} SeverityLevel;
// KLEE测试用例信息
typedef struct {
char* test_file;
char* symbolic_vars;
char* test_data;
bool triggers_vulnerability;
} KLEETestCase;
// KLEE分析结果
typedef struct {
int total_instructions;
int completed_paths;
int partial_paths;
int generated_tests;
char** errors;
int error_count;
char** warnings;
int warning_count;
KLEETestCase* test_cases;
int test_case_count;
double coverage_rate;
} KLEEAnalysis;
// 漏洞信息结构
typedef struct {
VulnerabilityType type;
SeverityLevel severity;
char* file_path;
int line_number;
char* description;
char* test_case;
char* fix_suggestion;
char* code_line;
bool confirmed_by_klee;
char* klee_evidence;
int confidence_score; // 0-100 置信度
} VulnerabilityInfo;
// 代码质量指标
typedef struct {
int cyclomatic_complexity;
int function_count;
int line_count;
int comment_ratio;
int vulnerability_density;
double maintainability_index;
} CodeQualityMetrics;
// 分析结果结构
typedef struct {
VulnerabilityInfo* vulnerabilities;
int vuln_count;
KLEEAnalysis klee_analysis;
CodeQualityMetrics quality_metrics;
char* analysis_timestamp;
char* source_file_hash;
int total_analysis_time_ms;
} AnalysisResult;
// 前向声明
void analyze_klee_results(AnalysisResult* result, const char* source_file);
void detect_vulnerabilities_from_source(AnalysisResult* result, const char* source_file);
void add_vulnerability(AnalysisResult* result, VulnerabilityType type, SeverityLevel severity,
const char* file_path, int line_number, const char* code_line);
char* generate_vulnerability_description(VulnerabilityType type);
char* generate_test_case_for_vulnerability(VulnerabilityType type);
// 智能分析器接口
AnalysisResult* analyze_code_with_klee(const char* source_file);
void generate_intelligent_report(AnalysisResult* result, const char* output_file);
char* suggest_fix_for_vulnerability(VulnerabilityType type, const char* code_context);
void free_analysis_result(AnalysisResult* result);
// 漏洞检测函数
bool detect_buffer_overflow(const char* code);
bool detect_null_pointer_deref(const char* code);
bool detect_division_by_zero(const char* code);
bool detect_memory_leak(const char* code);
bool detect_array_bounds_violation(const char* code);
bool detect_format_string_vulnerability(const char* code);
bool detect_integer_overflow(const char* code);
bool detect_path_traversal(const char* code);
// 智能过滤和上下文分析函数
bool is_false_positive(const char* code_line, char** lines, int total_lines, int current_line);
SeverityLevel classify_vulnerability_severity(VulnerabilityType type, const char* code_line, int confidence_score);
// KLEE分析函数
void parse_klee_info_file(KLEEAnalysis* analysis, const char* info_file);
void parse_klee_messages_file(KLEEAnalysis* analysis, const char* messages_file);
void analyze_klee_test_cases(KLEEAnalysis* analysis, const char* klee_output_dir);
void correlate_klee_with_vulnerabilities(AnalysisResult* result);
// 代码质量分析函数
void calculate_code_quality_metrics(CodeQualityMetrics* metrics, const char* source_file);
int calculate_cyclomatic_complexity(const char* source_file);
int count_functions(const char* source_file);
int count_lines_and_comments(const char* source_file, int* comment_count);
// 工具函数
char* get_vulnerability_type_name(VulnerabilityType type);
char* get_severity_name(SeverityLevel severity);
// get_current_timestamp 现在是静态函数
char* calculate_file_hash(const char* file_path);
void print_analysis_summary(AnalysisResult* result);
void generate_json_report(AnalysisResult* result, const char* output_file);
void generate_smart_suggestions(AnalysisResult* result, FILE* report);
int calculate_confidence_score(VulnerabilityType type, const char* code_line);
// 数学函数宏
#define min(a, b) ((a) < (b) ? (a) : (b))
#define max(a, b) ((a) > (b) ? (a) : (b))
#endif // INTELLIGENT_ANALYZER_H

2204
klee-build/symbolic-engine/src/klee_output/assembly.ll
View File

File diff suppressed because it is too large Load Diff

20
klee-build/symbolic-engine/src/klee_output/info
Unescape View File

@ -1,20 +0,0 @@
klee --output-dir=klee_output --max-time=1200 --max-memory=65536 --max-instructions=50000000 --max-solver-time=300 --use-merge --use-batching-search --batch-instructions=1000 --search=random-path --rng-seed=608 --optimize --disable-inlining --max-forks=2000 --max-stack-frames=100 --max-sym-array-size=2000 --use-independent-solver advanced_test.c.bc
PID: 853
Using monotonic steady clock with 1/1000000000s resolution
Started: 2025-10-16 14:43:30
BEGIN searcher description
MergingSearcher
END searcher description
Finished: 2025-10-16 14:43:31
Elapsed: 00:00:01
KLEE: done: explored paths = 24
KLEE: done: avg. constructs per query = 47
KLEE: done: total queries = 48
KLEE: done: valid queries = 0
KLEE: done: invalid queries = 48
KLEE: done: query cex = 48
KLEE: done: total instructions = 434
KLEE: done: completed paths = 0
KLEE: done: partially completed paths = 24
KLEE: done: generated tests = 1

8
klee-build/symbolic-engine/src/klee_output/messages.txt
Unescape View File

@ -1,8 +0,0 @@
KLEE: Using Z3 solver backend
KLEE: Deterministic allocator: Using quarantine queue size 8
KLEE: Deterministic allocator: globals (start-address=0x758fac200000 size=10 GiB)
KLEE: Deterministic allocator: constants (start-address=0x758d2c200000 size=10 GiB)
KLEE: Deterministic allocator: heap (start-address=0x748d2c200000 size=1024 GiB)
KLEE: Deterministic allocator: stack (start-address=0x746d2c200000 size=128 GiB)
KLEE: ERROR: advanced_test.c:66: external call with symbolic argument: printf
KLEE: NOTE: now ignoring this error at this location

987
klee-build/symbolic-engine/src/klee_output/run.istats
Unescape View File

@ -1,987 +0,0 @@
version: 1
creator: klee
pid: 853
cmd: advanced_test.c.bc
positions: instr line
event: Icov : CoveredInstructions
event: Forks : Forks
event: Ireal : InstructionRealTimes
event: Itime : InstructionTimes
event: I : Instructions
event: UCdist : MinDistToUncovered
event: Rtime : ResolveTime
event: States : States
event: Iuncov : UncoveredInstructions
event: Q : Queries
event: Qiv : QueriesInvalid
event: Qv : QueriesValid
event: Qtime : QueryTime
events: Icov Forks Ireal Itime I UCdist Rtime States Iuncov Q Qiv Qv Qtime
ob=assembly.ll
fl=advanced_test.c
fn=main
37 30 1 0 0 0 1 0 0 0 0 0 0 0 0
38 30 1 0 0 0 1 0 0 0 0 0 0 0 0
39 30 1 0 0 0 1 0 0 0 0 0 0 0 0
40 30 1 0 0 0 1 0 0 0 0 0 0 0 0
41 30 1 0 0 0 1 0 0 0 0 0 0 0 0
42 30 1 0 0 0 1 0 0 0 0 0 0 0 0
43 30 1 0 0 0 1 0 0 0 0 0 0 0 0
44 30 1 0 0 0 1 0 0 0 0 0 0 0 0
45 30 1 0 0 0 1 0 0 0 0 0 0 0 0
46 30 1 0 0 0 1 0 0 0 0 0 0 0 0
47 30 1 0 0 0 1 0 0 0 0 0 0 0 0
48 30 1 0 0 0 1 0 0 0 0 0 0 0 0
49 30 1 0 0 0 1 0 0 0 0 0 0 0 0
50 30 1 0 0 0 1 0 0 0 0 0 0 0 0
51 30 1 0 0 0 1 0 0 0 0 0 0 0 0
52 30 1 0 0 0 1 0 0 0 0 0 0 0 0
53 30 1 0 0 0 1 0 0 0 0 0 0 0 0
54 30 1 0 0 0 1 0 0 0 0 0 0 0 0
55 30 1 0 0 0 1 0 0 0 0 0 0 0 0
56 30 1 0 0 0 1 0 0 0 0 0 0 0 0
57 30 1 0 0 0 1 0 0 0 0 0 0 0 0
58 30 1 0 0 0 1 0 0 0 0 0 0 0 0
59 30 1 0 0 0 1 0 0 0 0 1 0 0 0
60 32 1 0 0 0 1 0 0 0 0 0 0 0 0
61 32 1 0 0 0 1 0 0 0 0 0 0 0 0
62 32 1 0 0 0 1 0 0 0 0 0 0 0 0
63 32 1 0 0 0 1 0 0 0 0 0 0 0 0
64 32 1 0 0 0 1 0 0 0 0 0 0 0 0
65 32 1 0 0 0 1 0 0 0 0 0 0 0 0
66 32 1 0 0 0 1 0 0 0 0 0 0 0 0
67 32 1 0 0 0 1 0 0 0 0 0 0 0 0
68 33 1 0 0 0 1 0 0 0 0 0 0 0 0
69 33 1 0 0 0 1 0 0 0 0 2 0 0 0
70 34 1 0 0 0 1 0 0 0 0 0 0 0 0
71 34 1 0 0 0 1 0 0 0 0 2 0 0 0
72 35 1 0 0 0 1 0 0 0 0 0 0 0 0
73 35 1 0 0 0 1 0 0 0 0 2 0 0 0
74 36 1 0 0 0 1 0 0 0 0 0 0 0 0
75 36 1 0 0 0 1 0 0 0 0 2 0 0 0
76 37 1 0 0 0 1 0 0 0 0 0 0 0 0
77 37 1 0 0 0 1 0 0 0 0 2 0 0 0
78 38 1 0 0 0 1 0 0 0 0 0 0 0 0
79 38 1 0 0 0 1 0 0 0 0 2 0 0 0
80 39 1 0 0 0 1 0 0 0 0 0 0 0 0
81 39 1 0 0 0 1 0 0 0 0 2 0 0 0
82 40 1 0 0 0 1 0 0 0 0 0 0 0 0
83 40 1 0 0 0 1 0 0 0 0 2 0 0 0
84 43 1 0 0 0 1 0 0 0 0 0 0 0 0
85 44 1 0 0 0 1 0 0 0 0 0 0 0 0
86 44 1 0 0 0 1 0 0 0 0 0 0 0 0
87 44 1 0 0 0 1 0 0 0 0 2 0 0 0
88 47 1 0 0 0 1 0 0 0 0 0 0 0 0
89 48 1 0 0 0 1 0 0 0 0 0 0 0 0
90 48 1 0 0 0 1 0 0 0 0 2 0 0 0
91 49 1 0 0 0 1 0 0 0 0 0 0 0 0
92 49 1 0 0 0 1 0 0 0 0 1 0 0 0
93 52 1 0 0 0 1 0 0 0 0 0 0 0 0
94 53 1 0 0 0 1 0 0 0 0 0 0 0 0
95 53 1 0 0 0 1 0 0 0 0 2 0 0 0
96 54 1 0 0 0 1 0 0 0 0 0 0 0 0
97 54 1 0 0 0 1 0 0 0 0 0 0 0 0
98 54 1 0 0 0 1 0 0 0 0 1 0 0 0
99 57 1 0 0 0 1 0 0 0 0 0 0 0 0
100 58 1 0 0 0 1 0 0 0 0 0 0 0 0
101 58 1 0 0 0 1 0 0 0 0 2 0 0 0
102 61 1 0 0 0 1 0 0 0 0 0 0 0 0
103 61 1 0 0 0 1 0 0 0 0 0 0 0 0
104 61 1 0 0 0 1 0 0 0 0 0 0 0 0
105 61 1 0 0 0 1 0 0 0 0 1 0 0 0
106 62 1 0 0 0 1 0 0 0 0 1 0 0 0
107 62 1 0 0 0 1 0 0 0 0 0 0 0 0
108 62 1 0 0 0 1 0 0 0 0 2 0 0 0
109 65 1 0 0 0 1 0 0 0 0 0 0 0 0
110 65 1 0 0 0 1 0 0 0 0 1 0 0 0
111 65 1 0 0 0 1 0 0 0 0 1 0 0 0
112 65 1 0 0 0 1 0 0 0 0 1 0 0 0
113 65 1 0 0 0 1 0 0 0 0 0 0 0 0
cfn=complex_function
calls=1 182 104
113 65 116 23 0 0 285 0 0 0 0 138 24 0 258712
114 65 1 0 0 0 24 0 0 0 0 24 0 0 0
115 66 1 0 0 0 24 0 0 0 0 24 0 0 0
116 66 1 0 0 0 24 0 0 0 0 49 24 0 298738
117 69 0 0 0 0 0 0 0 0 1 0 0 0 0
118 69 0 0 0 0 0 0 0 0 1 0 0 0 0
119 69 0 0 0 0 0 0 0 0 1 0 0 0 0
120 69 0 0 0 0 0 0 0 0 1 0 0 0 0
121 70 0 0 0 0 0 0 0 0 1 0 0 0 0
122 70 0 0 0 0 0 0 0 0 1 0 0 0 0
123 73 0 0 0 0 0 0 0 0 1 0 0 0 0
124 73 0 0 0 0 0 0 0 0 1 0 0 0 0
125 73 0 0 0 0 0 0 0 0 1 0 0 0 0
126 73 0 0 0 0 0 0 0 0 1 0 0 0 0
127 74 0 0 0 0 0 0 0 0 1 0 0 0 0
128 74 0 0 0 0 0 0 0 0 1 0 0 0 0
129 77 0 0 0 0 0 0 0 0 1 0 0 0 0
130 77 0 0 0 0 0 0 0 0 1 0 0 0 0
131 77 0 0 0 0 0 0 0 0 1 0 0 0 0
132 78 0 0 0 0 0 0 0 0 1 0 0 0 0
133 78 0 0 0 0 0 0 0 0 1 0 0 0 0
134 81 0 0 0 0 0 0 0 0 1 0 0 0 0
135 81 0 0 0 0 0 0 0 0 1 0 0 0 0
136 81 0 0 0 0 0 0 0 0 1 0 0 0 0
137 81 0 0 0 0 0 0 0 0 1 0 0 0 0
138 81 0 0 0 0 0 0 0 0 1 0 0 0 0
139 81 0 0 0 0 0 0 0 0 1 0 0 0 0
140 82 0 0 0 0 0 0 0 0 1 0 0 0 0
141 82 0 0 0 0 0 0 0 0 1 0 0 0 0
142 85 0 0 0 0 0 0 0 0 1 0 0 0 0
143 85 0 0 0 0 0 0 0 0 1 0 0 0 0
144 85 0 0 0 0 0 0 0 0 1 0 0 0 0
145 85 0 0 0 0 0 0 0 0 1 0 0 0 0
146 86 0 0 0 0 0 0 0 0 1 0 0 0 0
147 86 0 0 0 0 0 0 0 0 1 0 0 0 0
148 89 0 0 0 0 0 0 0 0 1 0 0 0 0
149 89 0 0 0 0 0 0 0 0 1 0 0 0 0
150 89 0 0 0 0 0 0 0 0 1 0 0 0 0
151 90 0 0 0 0 0 0 0 0 1 0 0 0 0
152 90 0 0 0 0 0 0 0 0 1 0 0 0 0
153 90 0 0 0 0 0 0 0 0 1 0 0 0 0
154 91 0 0 0 0 0 0 0 0 1 0 0 0 0
155 91 0 0 0 0 0 0 0 0 1 0 0 0 0
156 91 0 0 0 0 0 0 0 0 1 0 0 0 0
157 92 0 0 0 0 0 0 0 0 1 0 0 0 0
158 92 0 0 0 0 0 0 0 0 1 0 0 0 0
159 95 0 0 0 0 0 0 0 0 1 0 0 0 0
160 95 0 0 0 0 0 0 0 0 1 0 0 0 0
161 95 0 0 0 0 0 0 0 0 1 0 0 0 0
162 95 0 0 0 0 0 0 0 0 1 0 0 0 0
163 95 0 0 0 0 0 0 0 0 1 0 0 0 0
164 95 0 0 0 0 0 0 0 0 1 0 0 0 0
165 95 0 0 0 0 0 0 0 0 1 0 0 0 0
166 96 0 0 0 0 0 0 0 0 1 0 0 0 0
167 96 0 0 0 0 0 0 0 0 1 0 0 0 0
168 99 0 0 0 0 0 0 0 0 1 0 0 0 0
169 99 0 0 0 0 0 0 0 0 1 0 0 0 0
170 99 0 0 0 0 0 0 0 0 1 0 0 0 0
171 101 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=complex_function
184 104 1 0 0 0 1 0 0 0 0 0 0 0 0
185 104 1 0 0 0 1 0 0 0 0 0 0 0 0
186 104 1 0 0 0 1 0 0 0 0 0 0 0 0
187 104 1 0 0 0 1 0 0 0 0 0 0 0 0
188 104 1 0 0 0 1 0 0 0 0 1 0 0 0
189 104 1 0 0 0 1 0 0 0 0 0 0 0 0
190 104 1 0 0 0 1 0 0 0 0 1 0 0 0
191 104 1 0 0 0 1 0 0 0 0 0 0 0 0
192 104 1 0 0 0 1 0 0 0 0 1 0 0 0
193 104 1 0 0 0 1 0 0 0 0 0 0 0 0
194 105 1 0 0 0 1 0 0 0 0 0 0 0 0
195 105 1 0 0 0 1 0 0 0 0 1 0 0 0
196 108 1 0 0 0 1 0 0 0 0 1 0 0 0
197 108 1 0 0 0 1 0 0 0 0 0 0 0 0
198 108 1 1 0 0 1 0 0 0 0 1 2 0 51834
201 109 1 0 0 0 1 0 0 0 0 1 0 0 0
202 109 1 0 0 0 1 0 0 0 0 0 0 0 0
203 109 1 1 0 0 1 0 0 0 0 1 1 0 6177
206 110 1 0 0 0 1 0 0 0 0 1 0 0 0
207 110 1 0 0 0 1 0 0 0 0 0 0 0 0
208 110 1 1 0 0 1 0 0 0 0 1 1 0 4544
211 111 1 0 0 0 1 0 0 0 0 1 0 0 0
212 111 1 0 0 0 1 0 0 0 0 1 0 0 0
213 111 1 0 0 0 1 0 0 0 0 0 0 0 0
214 111 1 0 0 0 1 0 0 0 0 1 0 0 0
215 111 1 0 0 0 1 0 0 0 0 0 0 0 0
216 111 1 0 0 0 1 0 0 0 0 1 0 0 0
217 112 1 0 0 0 1 0 0 0 0 0 0 0 0
220 113 1 0 0 0 1 0 0 0 0 1 0 0 0
221 113 1 0 0 0 1 0 0 0 0 1 0 0 0
222 113 1 0 0 0 1 0 0 0 0 0 0 0 0
223 113 1 0 0 0 1 0 0 0 0 1 0 0 0
224 113 1 0 0 0 1 0 0 0 0 0 0 0 0
225 113 1 0 0 0 1 0 0 0 0 1 0 0 0
226 104 1 0 0 0 1 0 0 0 0 0 0 0 0
229 115 1 0 0 0 2 0 0 0 0 0 0 0 0
232 116 1 0 0 0 1 0 0 0 0 1 0 0 0
233 116 1 0 0 0 1 0 0 0 0 0 0 0 0
234 116 1 1 0 0 1 0 0 0 0 1 0 0 0
237 117 1 0 0 0 1 0 0 0 0 1 0 0 0
238 117 1 0 0 0 1 0 0 0 0 1 0 0 0
239 117 1 0 0 0 1 0 0 0 0 0 0 0 0
240 117 1 0 0 0 1 0 0 0 0 1 0 0 0
241 117 1 0 0 0 1 0 0 0 0 0 0 0 0
242 117 1 0 0 0 1 0 0 0 0 1 0 0 0
243 118 1 0 0 0 1 0 0 0 0 0 0 0 0
246 119 1 0 0 0 1 0 0 0 0 1 0 0 0
247 119 1 0 0 0 1 0 0 0 0 1 0 0 0
248 119 1 0 0 0 1 0 0 0 0 0 0 0 0
249 119 1 0 0 0 1 0 0 0 0 1 0 0 0
250 119 1 0 0 0 1 0 0 0 0 0 0 0 0
251 119 1 0 0 0 1 0 0 0 0 1 0 0 0
252 104 1 0 0 0 1 0 0 0 0 0 0 0 0
255 104 1 0 0 0 2 0 0 0 0 0 0 0 0
258 122 1 0 0 0 4 0 0 0 0 0 0 0 0
261 123 1 0 0 0 1 0 0 0 0 1 0 0 0
262 123 1 0 0 0 1 0 0 0 0 0 0 0 0
263 123 1 1 0 0 1 0 0 0 0 1 0 0 0
266 124 1 0 0 0 1 0 0 0 0 1 0 0 0
267 124 1 0 0 0 1 0 0 0 0 0 0 0 0
268 124 1 1 0 0 1 0 0 0 0 1 0 0 0
271 125 1 0 0 0 1 0 0 0 0 1 0 0 0
272 125 1 0 0 0 1 0 0 0 0 0 0 0 0
273 125 1 0 0 0 1 0 0 0 0 1 0 0 0
274 125 1 0 0 0 1 0 0 0 0 0 0 0 0
275 125 1 0 0 0 1 0 0 0 0 1 0 0 0
276 125 1 0 0 0 1 0 0 0 0 0 0 0 0
277 125 1 0 0 0 1 0 0 0 0 1 0 0 0
278 126 1 0 0 0 1 0 0 0 0 0 0 0 0
281 127 1 0 0 0 1 0 0 0 0 1 0 0 0
282 127 1 0 0 0 1 0 0 0 0 0 0 0 0
283 127 1 0 0 0 1 0 0 0 0 1 0 0 0
284 127 1 0 0 0 1 0 0 0 0 0 0 0 0
285 127 1 0 0 0 1 0 0 0 0 1 0 0 0
286 127 1 0 0 0 1 0 0 0 0 0 0 0 0
287 127 1 0 0 0 1 0 0 0 0 1 0 0 0
288 104 1 0 0 0 1 0 0 0 0 0 0 0 0
291 129 1 0 0 0 2 0 0 0 0 0 0 0 0
294 130 1 0 0 0 1 0 0 0 0 1 0 0 0
295 130 1 0 0 0 1 0 0 0 0 0 0 0 0
296 130 1 1 0 0 1 0 0 0 0 1 0 0 0
299 131 1 0 0 0 1 0 0 0 0 1 0 0 0
300 131 1 0 0 0 1 0 0 0 0 0 0 0 0
301 131 1 0 0 0 1 0 0 0 0 1 0 0 0
302 131 1 0 0 0 1 0 0 0 0 0 0 0 0
303 131 1 0 0 0 1 0 0 0 0 1 0 0 0
304 131 1 0 0 0 1 0 0 0 0 0 0 0 0
305 131 1 0 0 0 1 0 0 0 0 1 0 0 0
306 132 1 0 0 0 1 0 0 0 0 0 0 0 0
309 133 1 0 0 0 1 0 0 0 0 1 0 0 0
310 133 1 0 0 0 1 0 0 0 0 0 0 0 0
311 133 1 0 0 0 1 0 0 0 0 1 0 0 0
312 133 1 0 0 0 1 0 0 0 0 0 0 0 0
313 133 1 0 0 0 1 0 0 0 0 1 0 0 0
314 133 1 0 0 0 1 0 0 0 0 0 0 0 0
315 133 1 0 0 0 1 0 0 0 0 1 0 0 0
316 104 1 0 0 0 1 0 0 0 0 0 0 0 0
319 104 1 0 0 0 2 0 0 0 0 0 0 0 0
322 104 1 0 0 0 4 0 0 0 0 0 0 0 0
325 139 1 0 0 0 8 0 0 0 0 8 0 0 0
326 139 1 0 0 0 8 0 0 0 0 0 0 0 0
327 139 1 8 0 0 8 0 0 0 0 8 12 0 111810
330 140 1 0 0 0 8 0 0 0 0 8 0 0 0
331 140 1 0 0 0 8 0 0 0 0 0 0 0 0
332 140 1 0 0 0 8 0 0 0 0 8 0 0 0
333 141 1 0 0 0 8 0 0 0 0 0 0 0 0
336 141 1 0 0 0 8 0 0 0 0 8 0 0 0
337 141 1 0 0 0 8 0 0 0 0 0 0 0 0
338 141 1 8 0 0 8 0 0 0 0 8 8 0 84347
341 142 1 0 0 0 8 0 0 0 0 8 0 0 0
342 142 1 0 0 0 8 0 0 0 0 0 0 0 0
343 142 1 0 0 0 8 0 0 0 0 8 0 0 0
344 143 1 0 0 0 8 0 0 0 0 0 0 0 0
347 104 1 0 0 0 16 0 0 0 0 0 0 0 0
350 145 1 0 0 0 24 0 0 0 0 24 0 0 0
351 145 1 0 0 0 24 0 0 0 0 0 0 0 0
fn=array_operations
358 148 0 0 0 0 0 0 0 0 1 0 0 0 0
359 148 0 0 0 0 0 0 0 0 1 0 0 0 0
360 148 0 0 0 0 0 0 0 0 1 0 0 0 0
361 148 0 0 0 0 0 0 0 0 1 0 0 0 0
362 148 0 0 0 0 0 0 0 0 1 0 0 0 0
363 148 0 0 0 0 0 0 0 0 1 0 0 0 0
364 148 0 0 0 0 0 0 0 0 1 0 0 0 0
365 148 0 0 0 0 0 0 0 0 1 0 0 0 0
366 148 0 0 0 0 0 0 0 0 1 0 0 0 0
367 148 0 0 0 0 0 0 0 0 1 0 0 0 0
368 148 0 0 0 0 0 0 0 0 1 0 0 0 0
369 148 0 0 0 0 0 0 0 0 1 0 0 0 0
370 148 0 0 0 0 0 0 0 0 1 0 0 0 0
371 149 0 0 0 0 0 0 0 0 1 0 0 0 0
372 149 0 0 0 0 0 0 0 0 1 0 0 0 0
373 150 0 0 0 0 0 0 0 0 1 0 0 0 0
374 150 0 0 0 0 0 0 0 0 1 0 0 0 0
375 151 0 0 0 0 0 0 0 0 1 0 0 0 0
376 151 0 0 0 0 0 0 0 0 1 0 0 0 0
377 151 0 0 0 0 0 0 0 0 1 0 0 0 0
378 151 0 0 0 0 0 0 0 0 1 0 0 0 0
379 151 0 0 0 0 0 0 0 0 1 0 0 0 0
380 152 0 0 0 0 0 0 0 0 1 0 0 0 0
381 152 0 0 0 0 0 0 0 0 1 0 0 0 0
382 152 0 0 0 0 0 0 0 0 1 0 0 0 0
383 152 0 0 0 0 0 0 0 0 1 0 0 0 0
384 152 0 0 0 0 0 0 0 0 1 0 0 0 0
385 155 0 0 0 0 0 0 0 0 1 0 0 0 0
386 155 0 0 0 0 0 0 0 0 1 0 0 0 0
387 155 0 0 0 0 0 0 0 0 1 0 0 0 0
390 155 0 0 0 0 0 0 0 0 1 0 0 0 0
391 155 0 0 0 0 0 0 0 0 1 0 0 0 0
392 155 0 0 0 0 0 0 0 0 1 0 0 0 0
393 155 0 0 0 0 0 0 0 0 1 0 0 0 0
396 156 0 0 0 0 0 0 0 0 1 0 0 0 0
397 156 0 0 0 0 0 0 0 0 1 0 0 0 0
398 156 0 0 0 0 0 0 0 0 1 0 0 0 0
399 156 0 0 0 0 0 0 0 0 1 0 0 0 0
400 156 0 0 0 0 0 0 0 0 1 0 0 0 0
401 156 0 0 0 0 0 0 0 0 1 0 0 0 0
402 156 0 0 0 0 0 0 0 0 1 0 0 0 0
403 156 0 0 0 0 0 0 0 0 1 0 0 0 0
404 157 0 0 0 0 0 0 0 0 1 0 0 0 0
405 157 0 0 0 0 0 0 0 0 1 0 0 0 0
406 157 0 0 0 0 0 0 0 0 1 0 0 0 0
407 157 0 0 0 0 0 0 0 0 1 0 0 0 0
408 157 0 0 0 0 0 0 0 0 1 0 0 0 0
409 157 0 0 0 0 0 0 0 0 1 0 0 0 0
410 157 0 0 0 0 0 0 0 0 1 0 0 0 0
411 157 0 0 0 0 0 0 0 0 1 0 0 0 0
412 159 0 0 0 0 0 0 0 0 1 0 0 0 0
413 159 0 0 0 0 0 0 0 0 1 0 0 0 0
414 159 0 0 0 0 0 0 0 0 1 0 0 0 0
415 159 0 0 0 0 0 0 0 0 1 0 0 0 0
416 159 0 0 0 0 0 0 0 0 1 0 0 0 0
417 159 0 0 0 0 0 0 0 0 1 0 0 0 0
418 159 0 0 0 0 0 0 0 0 1 0 0 0 0
419 159 0 0 0 0 0 0 0 0 1 0 0 0 0
422 160 0 0 0 0 0 0 0 0 1 0 0 0 0
423 160 0 0 0 0 0 0 0 0 1 0 0 0 0
424 160 0 0 0 0 0 0 0 0 1 0 0 0 0
425 160 0 0 0 0 0 0 0 0 1 0 0 0 0
426 160 0 0 0 0 0 0 0 0 1 0 0 0 0
427 160 0 0 0 0 0 0 0 0 1 0 0 0 0
428 161 0 0 0 0 0 0 0 0 1 0 0 0 0
431 162 0 0 0 0 0 0 0 0 1 0 0 0 0
432 162 0 0 0 0 0 0 0 0 1 0 0 0 0
433 162 0 0 0 0 0 0 0 0 1 0 0 0 0
434 162 0 0 0 0 0 0 0 0 1 0 0 0 0
435 162 0 0 0 0 0 0 0 0 1 0 0 0 0
436 162 0 0 0 0 0 0 0 0 1 0 0 0 0
437 162 0 0 0 0 0 0 0 0 1 0 0 0 0
438 162 0 0 0 0 0 0 0 0 1 0 0 0 0
441 163 0 0 0 0 0 0 0 0 1 0 0 0 0
442 163 0 0 0 0 0 0 0 0 1 0 0 0 0
443 163 0 0 0 0 0 0 0 0 1 0 0 0 0
444 163 0 0 0 0 0 0 0 0 1 0 0 0 0
445 163 0 0 0 0 0 0 0 0 1 0 0 0 0
446 163 0 0 0 0 0 0 0 0 1 0 0 0 0
447 164 0 0 0 0 0 0 0 0 1 0 0 0 0
450 165 0 0 0 0 0 0 0 0 1 0 0 0 0
453 155 0 0 0 0 0 0 0 0 1 0 0 0 0
454 155 0 0 0 0 0 0 0 0 1 0 0 0 0
455 155 0 0 0 0 0 0 0 0 1 0 0 0 0
456 155 0 0 0 0 0 0 0 0 1 0 0 0 0
459 168 0 0 0 0 0 0 0 0 1 0 0 0 0
460 168 0 0 0 0 0 0 0 0 1 0 0 0 0
461 168 0 0 0 0 0 0 0 0 1 0 0 0 0
462 168 0 0 0 0 0 0 0 0 1 0 0 0 0
463 168 0 0 0 0 0 0 0 0 1 0 0 0 0
464 168 0 0 0 0 0 0 0 0 1 0 0 0 0
465 168 0 0 0 0 0 0 0 0 1 0 0 0 0
466 169 0 0 0 0 0 0 0 0 1 0 0 0 0
467 169 0 0 0 0 0 0 0 0 1 0 0 0 0
468 169 0 0 0 0 0 0 0 0 1 0 0 0 0
469 169 0 0 0 0 0 0 0 0 1 0 0 0 0
470 169 0 0 0 0 0 0 0 0 1 0 0 0 0
471 171 0 0 0 0 0 0 0 0 1 0 0 0 0
472 171 0 0 0 0 0 0 0 0 1 0 0 0 0
473 171 0 0 0 0 0 0 0 0 1 0 0 0 0
474 171 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=string_operations
479 174 0 0 0 0 0 0 0 0 1 0 0 0 0
480 174 0 0 0 0 0 0 0 0 1 0 0 0 0
481 174 0 0 0 0 0 0 0 0 1 0 0 0 0
482 174 0 0 0 0 0 0 0 0 1 0 0 0 0
483 174 0 0 0 0 0 0 0 0 1 0 0 0 0
484 174 0 0 0 0 0 0 0 0 1 0 0 0 0
485 174 0 0 0 0 0 0 0 0 1 0 0 0 0
486 174 0 0 0 0 0 0 0 0 1 0 0 0 0
487 174 0 0 0 0 0 0 0 0 1 0 0 0 0
488 174 0 0 0 0 0 0 0 0 1 0 0 0 0
489 175 0 0 0 0 0 0 0 0 1 0 0 0 0
490 175 0 0 0 0 0 0 0 0 1 0 0 0 0
491 176 0 0 0 0 0 0 0 0 1 0 0 0 0
492 176 0 0 0 0 0 0 0 0 1 0 0 0 0
493 177 0 0 0 0 0 0 0 0 1 0 0 0 0
494 177 0 0 0 0 0 0 0 0 1 0 0 0 0
495 180 0 0 0 0 0 0 0 0 1 0 0 0 0
496 180 0 0 0 0 0 0 0 0 1 0 0 0 0
497 180 0 0 0 0 0 0 0 0 1 0 0 0 0
500 180 0 0 0 0 0 0 0 0 1 0 0 0 0
501 180 0 0 0 0 0 0 0 0 1 0 0 0 0
502 180 0 0 0 0 0 0 0 0 1 0 0 0 0
503 180 0 0 0 0 0 0 0 0 1 0 0 0 0
506 180 0 0 0 0 0 0 0 0 1 0 0 0 0
507 180 0 0 0 0 0 0 0 0 1 0 0 0 0
508 180 0 0 0 0 0 0 0 0 1 0 0 0 0
509 180 0 0 0 0 0 0 0 0 1 0 0 0 0
510 180 0 0 0 0 0 0 0 0 1 0 0 0 0
511 180 0 0 0 0 0 0 0 0 1 0 0 0 0
512 180 0 0 0 0 0 0 0 0 1 0 0 0 0
513 174 0 0 0 0 0 0 0 0 1 0 0 0 0
516 180 0 0 0 0 0 0 0 0 1 0 0 0 0
517 180 0 0 0 0 0 0 0 0 1 0 0 0 0
520 181 0 0 0 0 0 0 0 0 1 0 0 0 0
521 181 0 0 0 0 0 0 0 0 1 0 0 0 0
522 181 0 0 0 0 0 0 0 0 1 0 0 0 0
523 184 0 0 0 0 0 0 0 0 1 0 0 0 0
524 184 0 0 0 0 0 0 0 0 1 0 0 0 0
525 184 0 0 0 0 0 0 0 0 1 0 0 0 0
526 184 0 0 0 0 0 0 0 0 1 0 0 0 0
527 184 0 0 0 0 0 0 0 0 1 0 0 0 0
528 184 0 0 0 0 0 0 0 0 1 0 0 0 0
529 184 0 0 0 0 0 0 0 0 1 0 0 0 0
530 184 0 0 0 0 0 0 0 0 1 0 0 0 0
533 184 0 0 0 0 0 0 0 0 1 0 0 0 0
534 184 0 0 0 0 0 0 0 0 1 0 0 0 0
535 184 0 0 0 0 0 0 0 0 1 0 0 0 0
536 184 0 0 0 0 0 0 0 0 1 0 0 0 0
537 184 0 0 0 0 0 0 0 0 1 0 0 0 0
538 184 0 0 0 0 0 0 0 0 1 0 0 0 0
539 184 0 0 0 0 0 0 0 0 1 0 0 0 0
540 184 0 0 0 0 0 0 0 0 1 0 0 0 0
543 184 0 0 0 0 0 0 0 0 1 0 0 0 0
544 184 0 0 0 0 0 0 0 0 1 0 0 0 0
545 184 0 0 0 0 0 0 0 0 1 0 0 0 0
546 184 0 0 0 0 0 0 0 0 1 0 0 0 0
547 184 0 0 0 0 0 0 0 0 1 0 0 0 0
548 184 0 0 0 0 0 0 0 0 1 0 0 0 0
549 184 0 0 0 0 0 0 0 0 1 0 0 0 0
550 184 0 0 0 0 0 0 0 0 1 0 0 0 0
553 185 0 0 0 0 0 0 0 0 1 0 0 0 0
554 185 0 0 0 0 0 0 0 0 1 0 0 0 0
555 185 0 0 0 0 0 0 0 0 1 0 0 0 0
556 185 0 0 0 0 0 0 0 0 1 0 0 0 0
557 185 0 0 0 0 0 0 0 0 1 0 0 0 0
558 185 0 0 0 0 0 0 0 0 1 0 0 0 0
559 185 0 0 0 0 0 0 0 0 1 0 0 0 0
560 185 0 0 0 0 0 0 0 0 1 0 0 0 0
563 185 0 0 0 0 0 0 0 0 1 0 0 0 0
564 185 0 0 0 0 0 0 0 0 1 0 0 0 0
565 185 0 0 0 0 0 0 0 0 1 0 0 0 0
566 185 0 0 0 0 0 0 0 0 1 0 0 0 0
567 185 0 0 0 0 0 0 0 0 1 0 0 0 0
568 185 0 0 0 0 0 0 0 0 1 0 0 0 0
569 185 0 0 0 0 0 0 0 0 1 0 0 0 0
570 185 0 0 0 0 0 0 0 0 1 0 0 0 0
573 185 0 0 0 0 0 0 0 0 1 0 0 0 0
574 185 0 0 0 0 0 0 0 0 1 0 0 0 0
575 185 0 0 0 0 0 0 0 0 1 0 0 0 0
576 185 0 0 0 0 0 0 0 0 1 0 0 0 0
577 185 0 0 0 0 0 0 0 0 1 0 0 0 0
578 185 0 0 0 0 0 0 0 0 1 0 0 0 0
579 185 0 0 0 0 0 0 0 0 1 0 0 0 0
580 185 0 0 0 0 0 0 0 0 1 0 0 0 0
583 186 0 0 0 0 0 0 0 0 1 0 0 0 0
584 186 0 0 0 0 0 0 0 0 1 0 0 0 0
585 186 0 0 0 0 0 0 0 0 1 0 0 0 0
586 186 0 0 0 0 0 0 0 0 1 0 0 0 0
587 186 0 0 0 0 0 0 0 0 1 0 0 0 0
588 186 0 0 0 0 0 0 0 0 1 0 0 0 0
589 186 0 0 0 0 0 0 0 0 1 0 0 0 0
590 186 0 0 0 0 0 0 0 0 1 0 0 0 0
593 186 0 0 0 0 0 0 0 0 1 0 0 0 0
594 186 0 0 0 0 0 0 0 0 1 0 0 0 0
595 186 0 0 0 0 0 0 0 0 1 0 0 0 0
596 186 0 0 0 0 0 0 0 0 1 0 0 0 0
597 186 0 0 0 0 0 0 0 0 1 0 0 0 0
598 186 0 0 0 0 0 0 0 0 1 0 0 0 0
599 186 0 0 0 0 0 0 0 0 1 0 0 0 0
600 186 0 0 0 0 0 0 0 0 1 0 0 0 0
603 186 0 0 0 0 0 0 0 0 1 0 0 0 0
604 186 0 0 0 0 0 0 0 0 1 0 0 0 0
605 186 0 0 0 0 0 0 0 0 1 0 0 0 0
606 186 0 0 0 0 0 0 0 0 1 0 0 0 0
607 186 0 0 0 0 0 0 0 0 1 0 0 0 0
608 186 0 0 0 0 0 0 0 0 1 0 0 0 0
609 186 0 0 0 0 0 0 0 0 1 0 0 0 0
610 186 0 0 0 0 0 0 0 0 1 0 0 0 0
613 186 0 0 0 0 0 0 0 0 1 0 0 0 0
614 186 0 0 0 0 0 0 0 0 1 0 0 0 0
615 186 0 0 0 0 0 0 0 0 1 0 0 0 0
616 186 0 0 0 0 0 0 0 0 1 0 0 0 0
617 186 0 0 0 0 0 0 0 0 1 0 0 0 0
618 186 0 0 0 0 0 0 0 0 1 0 0 0 0
619 186 0 0 0 0 0 0 0 0 1 0 0 0 0
620 184 0 0 0 0 0 0 0 0 1 0 0 0 0
623 187 0 0 0 0 0 0 0 0 1 0 0 0 0
624 187 0 0 0 0 0 0 0 0 1 0 0 0 0
625 187 0 0 0 0 0 0 0 0 1 0 0 0 0
626 188 0 0 0 0 0 0 0 0 1 0 0 0 0
629 188 0 0 0 0 0 0 0 0 1 0 0 0 0
630 188 0 0 0 0 0 0 0 0 1 0 0 0 0
631 188 0 0 0 0 0 0 0 0 1 0 0 0 0
632 188 0 0 0 0 0 0 0 0 1 0 0 0 0
633 188 0 0 0 0 0 0 0 0 1 0 0 0 0
634 188 0 0 0 0 0 0 0 0 1 0 0 0 0
635 188 0 0 0 0 0 0 0 0 1 0 0 0 0
636 188 0 0 0 0 0 0 0 0 1 0 0 0 0
639 188 0 0 0 0 0 0 0 0 1 0 0 0 0
640 188 0 0 0 0 0 0 0 0 1 0 0 0 0
641 188 0 0 0 0 0 0 0 0 1 0 0 0 0
642 188 0 0 0 0 0 0 0 0 1 0 0 0 0
643 188 0 0 0 0 0 0 0 0 1 0 0 0 0
644 188 0 0 0 0 0 0 0 0 1 0 0 0 0
645 188 0 0 0 0 0 0 0 0 1 0 0 0 0
646 188 0 0 0 0 0 0 0 0 1 0 0 0 0
649 189 0 0 0 0 0 0 0 0 1 0 0 0 0
650 189 0 0 0 0 0 0 0 0 1 0 0 0 0
651 189 0 0 0 0 0 0 0 0 1 0 0 0 0
652 189 0 0 0 0 0 0 0 0 1 0 0 0 0
653 189 0 0 0 0 0 0 0 0 1 0 0 0 0
654 189 0 0 0 0 0 0 0 0 1 0 0 0 0
655 189 0 0 0 0 0 0 0 0 1 0 0 0 0
656 189 0 0 0 0 0 0 0 0 1 0 0 0 0
659 189 0 0 0 0 0 0 0 0 1 0 0 0 0
660 189 0 0 0 0 0 0 0 0 1 0 0 0 0
661 189 0 0 0 0 0 0 0 0 1 0 0 0 0
662 189 0 0 0 0 0 0 0 0 1 0 0 0 0
663 189 0 0 0 0 0 0 0 0 1 0 0 0 0
664 189 0 0 0 0 0 0 0 0 1 0 0 0 0
665 189 0 0 0 0 0 0 0 0 1 0 0 0 0
666 188 0 0 0 0 0 0 0 0 1 0 0 0 0
669 190 0 0 0 0 0 0 0 0 1 0 0 0 0
670 190 0 0 0 0 0 0 0 0 1 0 0 0 0
671 190 0 0 0 0 0 0 0 0 1 0 0 0 0
672 191 0 0 0 0 0 0 0 0 1 0 0 0 0
675 174 0 0 0 0 0 0 0 0 1 0 0 0 0
678 192 0 0 0 0 0 0 0 0 1 0 0 0 0
681 180 0 0 0 0 0 0 0 0 1 0 0 0 0
682 180 0 0 0 0 0 0 0 0 1 0 0 0 0
683 180 0 0 0 0 0 0 0 0 1 0 0 0 0
684 180 0 0 0 0 0 0 0 0 1 0 0 0 0
687 194 0 0 0 0 0 0 0 0 1 0 0 0 0
688 194 0 0 0 0 0 0 0 0 1 0 0 0 0
689 194 0 0 0 0 0 0 0 0 1 0 0 0 0
690 194 0 0 0 0 0 0 0 0 1 0 0 0 0
691 194 0 0 0 0 0 0 0 0 1 0 0 0 0
692 194 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=pointer_operations
697 197 0 0 0 0 0 0 0 0 1 0 0 0 0
698 197 0 0 0 0 0 0 0 0 1 0 0 0 0
699 197 0 0 0 0 0 0 0 0 1 0 0 0 0
700 197 0 0 0 0 0 0 0 0 1 0 0 0 0
701 197 0 0 0 0 0 0 0 0 1 0 0 0 0
702 197 0 0 0 0 0 0 0 0 1 0 0 0 0
703 197 0 0 0 0 0 0 0 0 1 0 0 0 0
704 197 0 0 0 0 0 0 0 0 1 0 0 0 0
705 197 0 0 0 0 0 0 0 0 1 0 0 0 0
706 198 0 0 0 0 0 0 0 0 1 0 0 0 0
707 198 0 0 0 0 0 0 0 0 1 0 0 0 0
708 198 0 0 0 0 0 0 0 0 1 0 0 0 0
711 199 0 0 0 0 0 0 0 0 1 0 0 0 0
712 199 0 0 0 0 0 0 0 0 1 0 0 0 0
715 202 0 0 0 0 0 0 0 0 1 0 0 0 0
716 202 0 0 0 0 0 0 0 0 1 0 0 0 0
717 205 0 0 0 0 0 0 0 0 1 0 0 0 0
718 205 0 0 0 0 0 0 0 0 1 0 0 0 0
719 205 0 0 0 0 0 0 0 0 1 0 0 0 0
720 205 0 0 0 0 0 0 0 0 1 0 0 0 0
721 205 0 0 0 0 0 0 0 0 1 0 0 0 0
722 205 0 0 0 0 0 0 0 0 1 0 0 0 0
723 208 0 0 0 0 0 0 0 0 1 0 0 0 0
724 208 0 0 0 0 0 0 0 0 1 0 0 0 0
725 208 0 0 0 0 0 0 0 0 1 0 0 0 0
728 208 0 0 0 0 0 0 0 0 1 0 0 0 0
729 208 0 0 0 0 0 0 0 0 1 0 0 0 0
730 208 0 0 0 0 0 0 0 0 1 0 0 0 0
733 209 0 0 0 0 0 0 0 0 1 0 0 0 0
734 209 0 0 0 0 0 0 0 0 1 0 0 0 0
735 209 0 0 0 0 0 0 0 0 1 0 0 0 0
736 209 0 0 0 0 0 0 0 0 1 0 0 0 0
737 209 0 0 0 0 0 0 0 0 1 0 0 0 0
738 209 0 0 0 0 0 0 0 0 1 0 0 0 0
739 209 0 0 0 0 0 0 0 0 1 0 0 0 0
740 209 0 0 0 0 0 0 0 0 1 0 0 0 0
741 209 0 0 0 0 0 0 0 0 1 0 0 0 0
742 210 0 0 0 0 0 0 0 0 1 0 0 0 0
745 208 0 0 0 0 0 0 0 0 1 0 0 0 0
746 208 0 0 0 0 0 0 0 0 1 0 0 0 0
747 208 0 0 0 0 0 0 0 0 1 0 0 0 0
748 208 0 0 0 0 0 0 0 0 1 0 0 0 0
751 213 0 0 0 0 0 0 0 0 1 0 0 0 0
752 213 0 0 0 0 0 0 0 0 1 0 0 0 0
753 213 0 0 0 0 0 0 0 0 1 0 0 0 0
756 213 0 0 0 0 0 0 0 0 1 0 0 0 0
757 213 0 0 0 0 0 0 0 0 1 0 0 0 0
758 213 0 0 0 0 0 0 0 0 1 0 0 0 0
761 213 0 0 0 0 0 0 0 0 1 0 0 0 0
762 213 0 0 0 0 0 0 0 0 1 0 0 0 0
763 213 0 0 0 0 0 0 0 0 1 0 0 0 0
764 213 0 0 0 0 0 0 0 0 1 0 0 0 0
765 213 0 0 0 0 0 0 0 0 1 0 0 0 0
766 213 0 0 0 0 0 0 0 0 1 0 0 0 0
767 213 0 0 0 0 0 0 0 0 1 0 0 0 0
768 213 0 0 0 0 0 0 0 0 1 0 0 0 0
769 197 0 0 0 0 0 0 0 0 1 0 0 0 0
772 213 0 0 0 0 0 0 0 0 1 0 0 0 0
773 213 0 0 0 0 0 0 0 0 1 0 0 0 0
776 214 0 0 0 0 0 0 0 0 1 0 0 0 0
777 214 0 0 0 0 0 0 0 0 1 0 0 0 0
778 214 0 0 0 0 0 0 0 0 1 0 0 0 0
779 214 0 0 0 0 0 0 0 0 1 0 0 0 0
780 214 0 0 0 0 0 0 0 0 1 0 0 0 0
781 214 0 0 0 0 0 0 0 0 1 0 0 0 0
782 214 0 0 0 0 0 0 0 0 1 0 0 0 0
783 214 0 0 0 0 0 0 0 0 1 0 0 0 0
784 214 0 0 0 0 0 0 0 0 1 0 0 0 0
785 214 0 0 0 0 0 0 0 0 1 0 0 0 0
786 215 0 0 0 0 0 0 0 0 1 0 0 0 0
789 213 0 0 0 0 0 0 0 0 1 0 0 0 0
790 213 0 0 0 0 0 0 0 0 1 0 0 0 0
791 213 0 0 0 0 0 0 0 0 1 0 0 0 0
792 213 0 0 0 0 0 0 0 0 1 0 0 0 0
795 218 0 0 0 0 0 0 0 0 1 0 0 0 0
796 218 0 0 0 0 0 0 0 0 1 0 0 0 0
797 218 0 0 0 0 0 0 0 0 1 0 0 0 0
798 219 0 0 0 0 0 0 0 0 1 0 0 0 0
799 219 0 0 0 0 0 0 0 0 1 0 0 0 0
800 220 0 0 0 0 0 0 0 0 1 0 0 0 0
803 220 0 0 0 0 0 0 0 0 1 0 0 0 0
804 220 0 0 0 0 0 0 0 0 1 0 0 0 0
805 220 0 0 0 0 0 0 0 0 1 0 0 0 0
808 220 0 0 0 0 0 0 0 0 1 0 0 0 0
809 220 0 0 0 0 0 0 0 0 1 0 0 0 0
810 197 0 0 0 0 0 0 0 0 1 0 0 0 0
813 0 0 0 0 0 0 0 0 0 1 0 0 0 0
814 220 0 0 0 0 0 0 0 0 1 0 0 0 0
817 221 0 0 0 0 0 0 0 0 1 0 0 0 0
818 221 0 0 0 0 0 0 0 0 1 0 0 0 0
819 221 0 0 0 0 0 0 0 0 1 0 0 0 0
820 221 0 0 0 0 0 0 0 0 1 0 0 0 0
821 221 0 0 0 0 0 0 0 0 1 0 0 0 0
822 221 0 0 0 0 0 0 0 0 1 0 0 0 0
823 222 0 0 0 0 0 0 0 0 1 0 0 0 0
824 222 0 0 0 0 0 0 0 0 1 0 0 0 0
825 222 0 0 0 0 0 0 0 0 1 0 0 0 0
826 222 0 0 0 0 0 0 0 0 1 0 0 0 0
827 222 0 0 0 0 0 0 0 0 1 0 0 0 0
828 223 0 0 0 0 0 0 0 0 1 0 0 0 0
829 223 0 0 0 0 0 0 0 0 1 0 0 0 0
830 223 0 0 0 0 0 0 0 0 1 0 0 0 0
831 220 0 0 0 0 0 0 0 0 1 0 0 0 0
834 226 0 0 0 0 0 0 0 0 1 0 0 0 0
835 226 0 0 0 0 0 0 0 0 1 0 0 0 0
836 226 0 0 0 0 0 0 0 0 1 0 0 0 0
839 227 0 0 0 0 0 0 0 0 1 0 0 0 0
840 227 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=conditional_logic
845 229 0 0 0 0 0 0 0 0 1 0 0 0 0
846 229 0 0 0 0 0 0 0 0 1 0 0 0 0
847 229 0 0 0 0 0 0 0 0 1 0 0 0 0
848 229 0 0 0 0 0 0 0 0 1 0 0 0 0
849 229 0 0 0 0 0 0 0 0 1 0 0 0 0
850 229 0 0 0 0 0 0 0 0 1 0 0 0 0
851 229 0 0 0 0 0 0 0 0 1 0 0 0 0
852 229 0 0 0 0 0 0 0 0 1 0 0 0 0
853 229 0 0 0 0 0 0 0 0 1 0 0 0 0
854 229 0 0 0 0 0 0 0 0 1 0 0 0 0
855 230 0 0 0 0 0 0 0 0 1 0 0 0 0
856 230 0 0 0 0 0 0 0 0 1 0 0 0 0
857 233 0 0 0 0 0 0 0 0 1 0 0 0 0
858 233 0 0 0 0 0 0 0 0 1 0 0 0 0
859 233 0 0 0 0 0 0 0 0 1 0 0 0 0
860 233 0 0 0 0 0 0 0 0 1 0 0 0 0
863 234 0 0 0 0 0 0 0 0 1 0 0 0 0
864 234 0 0 0 0 0 0 0 0 1 0 0 0 0
865 234 0 0 0 0 0 0 0 0 1 0 0 0 0
866 234 0 0 0 0 0 0 0 0 1 0 0 0 0
869 235 0 0 0 0 0 0 0 0 1 0 0 0 0
870 235 0 0 0 0 0 0 0 0 1 0 0 0 0
871 235 0 0 0 0 0 0 0 0 1 0 0 0 0
872 235 0 0 0 0 0 0 0 0 1 0 0 0 0
873 235 0 0 0 0 0 0 0 0 1 0 0 0 0
874 235 0 0 0 0 0 0 0 0 1 0 0 0 0
875 236 0 0 0 0 0 0 0 0 1 0 0 0 0
878 236 0 0 0 0 0 0 0 0 1 0 0 0 0
879 236 0 0 0 0 0 0 0 0 1 0 0 0 0
880 236 0 0 0 0 0 0 0 0 1 0 0 0 0
881 236 0 0 0 0 0 0 0 0 1 0 0 0 0
884 237 0 0 0 0 0 0 0 0 1 0 0 0 0
885 237 0 0 0 0 0 0 0 0 1 0 0 0 0
886 237 0 0 0 0 0 0 0 0 1 0 0 0 0
887 237 0 0 0 0 0 0 0 0 1 0 0 0 0
888 237 0 0 0 0 0 0 0 0 1 0 0 0 0
889 237 0 0 0 0 0 0 0 0 1 0 0 0 0
890 238 0 0 0 0 0 0 0 0 1 0 0 0 0
893 239 0 0 0 0 0 0 0 0 1 0 0 0 0
894 239 0 0 0 0 0 0 0 0 1 0 0 0 0
895 239 0 0 0 0 0 0 0 0 1 0 0 0 0
896 239 0 0 0 0 0 0 0 0 1 0 0 0 0
897 239 0 0 0 0 0 0 0 0 1 0 0 0 0
898 239 0 0 0 0 0 0 0 0 1 0 0 0 0
899 229 0 0 0 0 0 0 0 0 1 0 0 0 0
902 229 0 0 0 0 0 0 0 0 1 0 0 0 0
905 241 0 0 0 0 0 0 0 0 1 0 0 0 0
908 241 0 0 0 0 0 0 0 0 1 0 0 0 0
909 241 0 0 0 0 0 0 0 0 1 0 0 0 0
910 241 0 0 0 0 0 0 0 0 1 0 0 0 0
911 241 0 0 0 0 0 0 0 0 1 0 0 0 0
914 242 0 0 0 0 0 0 0 0 1 0 0 0 0
915 242 0 0 0 0 0 0 0 0 1 0 0 0 0
916 242 0 0 0 0 0 0 0 0 1 0 0 0 0
917 242 0 0 0 0 0 0 0 0 1 0 0 0 0
920 243 0 0 0 0 0 0 0 0 1 0 0 0 0
921 243 0 0 0 0 0 0 0 0 1 0 0 0 0
922 243 0 0 0 0 0 0 0 0 1 0 0 0 0
923 243 0 0 0 0 0 0 0 0 1 0 0 0 0
924 243 0 0 0 0 0 0 0 0 1 0 0 0 0
925 243 0 0 0 0 0 0 0 0 1 0 0 0 0
926 244 0 0 0 0 0 0 0 0 1 0 0 0 0
929 245 0 0 0 0 0 0 0 0 1 0 0 0 0
930 245 0 0 0 0 0 0 0 0 1 0 0 0 0
931 245 0 0 0 0 0 0 0 0 1 0 0 0 0
932 245 0 0 0 0 0 0 0 0 1 0 0 0 0
933 245 0 0 0 0 0 0 0 0 1 0 0 0 0
934 245 0 0 0 0 0 0 0 0 1 0 0 0 0
935 229 0 0 0 0 0 0 0 0 1 0 0 0 0
938 247 0 0 0 0 0 0 0 0 1 0 0 0 0
941 248 0 0 0 0 0 0 0 0 1 0 0 0 0
942 248 0 0 0 0 0 0 0 0 1 0 0 0 0
943 248 0 0 0 0 0 0 0 0 1 0 0 0 0
944 248 0 0 0 0 0 0 0 0 1 0 0 0 0
945 248 0 0 0 0 0 0 0 0 1 0 0 0 0
946 248 0 0 0 0 0 0 0 0 1 0 0 0 0
947 229 0 0 0 0 0 0 0 0 1 0 0 0 0
950 229 0 0 0 0 0 0 0 0 1 0 0 0 0
953 252 0 0 0 0 0 0 0 0 1 0 0 0 0
954 252 0 0 0 0 0 0 0 0 1 0 0 0 0
955 252 0 0 0 0 0 0 0 0 1 0 0 0 0
956 252 0 0 0 0 0 0 0 0 1 0 0 0 0
959 253 0 0 0 0 0 0 0 0 1 0 0 0 0
960 253 0 0 0 0 0 0 0 0 1 0 0 0 0
961 253 0 0 0 0 0 0 0 0 1 0 0 0 0
962 254 0 0 0 0 0 0 0 0 1 0 0 0 0
965 255 0 0 0 0 0 0 0 0 1 0 0 0 0
966 255 0 0 0 0 0 0 0 0 1 0 0 0 0
967 255 0 0 0 0 0 0 0 0 1 0 0 0 0
968 255 0 0 0 0 0 0 0 0 1 0 0 0 0
969 229 0 0 0 0 0 0 0 0 1 0 0 0 0
972 258 0 0 0 0 0 0 0 0 1 0 0 0 0
973 258 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=loop_operations
978 261 0 0 0 0 0 0 0 0 1 0 0 0 0
979 261 0 0 0 0 0 0 0 0 1 0 0 0 0
980 261 0 0 0 0 0 0 0 0 1 0 0 0 0
981 261 0 0 0 0 0 0 0 0 1 0 0 0 0
982 261 0 0 0 0 0 0 0 0 1 0 0 0 0
983 261 0 0 0 0 0 0 0 0 1 0 0 0 0
984 261 0 0 0 0 0 0 0 0 1 0 0 0 0
985 262 0 0 0 0 0 0 0 0 1 0 0 0 0
986 262 0 0 0 0 0 0 0 0 1 0 0 0 0
987 265 0 0 0 0 0 0 0 0 1 0 0 0 0
988 265 0 0 0 0 0 0 0 0 1 0 0 0 0
989 265 0 0 0 0 0 0 0 0 1 0 0 0 0
992 265 0 0 0 0 0 0 0 0 1 0 0 0 0
993 265 0 0 0 0 0 0 0 0 1 0 0 0 0
994 265 0 0 0 0 0 0 0 0 1 0 0 0 0
995 265 0 0 0 0 0 0 0 0 1 0 0 0 0
998 266 0 0 0 0 0 0 0 0 1 0 0 0 0
999 266 0 0 0 0 0 0 0 0 1 0 0 0 0
1000 266 0 0 0 0 0 0 0 0 1 0 0 0 0
1003 266 0 0 0 0 0 0 0 0 1 0 0 0 0
1004 266 0 0 0 0 0 0 0 0 1 0 0 0 0
1007 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1008 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1009 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1012 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1013 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1014 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1015 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1018 270 0 0 0 0 0 0 0 0 1 0 0 0 0
1019 270 0 0 0 0 0 0 0 0 1 0 0 0 0
1020 270 0 0 0 0 0 0 0 0 1 0 0 0 0
1021 270 0 0 0 0 0 0 0 0 1 0 0 0 0
1022 271 0 0 0 0 0 0 0 0 1 0 0 0 0
1025 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1026 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1027 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1028 269 0 0 0 0 0 0 0 0 1 0 0 0 0
1031 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1032 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1033 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1034 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1037 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1038 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1039 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1042 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1043 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1044 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1045 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1046 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1047 274 0 0 0 0 0 0 0 0 1 0 0 0 0
1048 275 0 0 0 0 0 0 0 0 1 0 0 0 0
1051 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1052 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1053 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1054 273 0 0 0 0 0 0 0 0 1 0 0 0 0
1057 277 0 0 0 0 0 0 0 0 1 0 0 0 0
1058 277 0 0 0 0 0 0 0 0 1 0 0 0 0
1059 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1062 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1063 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1064 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1065 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1068 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1069 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1070 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1071 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1072 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1073 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1074 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1075 279 0 0 0 0 0 0 0 0 1 0 0 0 0
1076 280 0 0 0 0 0 0 0 0 1 0 0 0 0
1077 280 0 0 0 0 0 0 0 0 1 0 0 0 0
1078 280 0 0 0 0 0 0 0 0 1 0 0 0 0
1079 278 0 0 0 0 0 0 0 0 1 0 0 0 0
1082 283 0 0 0 0 0 0 0 0 1 0 0 0 0
1083 283 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=memory_operations
1088 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1089 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1090 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1091 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1092 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1093 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1094 286 0 0 0 0 0 0 0 0 1 0 0 0 0
1095 287 0 0 0 0 0 0 0 0 1 0 0 0 0
1096 287 0 0 0 0 0 0 0 0 1 0 0 0 0
1097 287 0 0 0 0 0 0 0 0 1 0 0 0 0
1100 288 0 0 0 0 0 0 0 0 1 0 0 0 0
1101 288 0 0 0 0 0 0 0 0 1 0 0 0 0
1104 291 0 0 0 0 0 0 0 0 1 0 0 0 0
1105 291 0 0 0 0 0 0 0 0 1 0 0 0 0
1106 294 0 0 0 0 0 0 0 0 1 0 0 0 0
1107 294 0 0 0 0 0 0 0 0 1 0 0 0 0
1108 294 0 0 0 0 0 0 0 0 1 0 0 0 0
1109 294 0 0 0 0 0 0 0 0 1 0 0 0 0
1110 294 0 0 0 0 0 0 0 0 1 0 0 0 0
1113 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1114 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1115 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1118 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1119 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1120 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1121 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1122 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1123 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1126 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1127 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1128 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1129 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1130 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1131 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1132 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1133 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1134 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1135 296 0 0 0 0 0 0 0 0 1 0 0 0 0
1136 297 0 0 0 0 0 0 0 0 1 0 0 0 0
1139 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1140 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1141 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1142 295 0 0 0 0 0 0 0 0 1 0 0 0 0
1145 298 0 0 0 0 0 0 0 0 1 0 0 0 0
1148 301 0 0 0 0 0 0 0 0 1 0 0 0 0
1149 301 0 0 0 0 0 0 0 0 1 0 0 0 0
1150 301 0 0 0 0 0 0 0 0 1 0 0 0 0
1151 301 0 0 0 0 0 0 0 0 1 0 0 0 0
1152 301 0 0 0 0 0 0 0 0 1 0 0 0 0
1155 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1156 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1157 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1160 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1161 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1162 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1163 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1164 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1165 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1166 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1167 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1168 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1169 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1172 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1173 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1174 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1175 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1176 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1177 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1178 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1179 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1180 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1181 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1182 303 0 0 0 0 0 0 0 0 1 0 0 0 0
1183 304 0 0 0 0 0 0 0 0 1 0 0 0 0
1186 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1187 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1188 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1189 302 0 0 0 0 0 0 0 0 1 0 0 0 0
1192 305 0 0 0 0 0 0 0 0 1 0 0 0 0
1195 307 0 0 0 0 0 0 0 0 1 0 0 0 0
1196 307 0 0 0 0 0 0 0 0 1 0 0 0 0
1197 307 0 0 0 0 0 0 0 0 1 0 0 0 0
1200 308 0 0 0 0 0 0 0 0 1 0 0 0 0
1201 308 0 0 0 0 0 0 0 0 1 0 0 0 0
fn=mathematical_operations
1206 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1207 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1208 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1209 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1210 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1211 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1212 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1213 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1214 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1215 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1216 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1217 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1218 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1219 311 0 0 0 0 0 0 0 0 1 0 0 0 0
1220 311 0 0 0 0 0 0 0 0 1 0 0 0 0
1221 314 0 0 0 0 0 0 0 0 1 0 0 0 0
1222 314 0 0 0 0 0 0 0 0 1 0 0 0 0
1223 314 0 0 0 0 0 0 0 0 1 0 0 0 0
1224 314 0 0 0 0 0 0 0 0 1 0 0 0 0
1225 315 0 0 0 0 0 0 0 0 1 0 0 0 0
1226 315 0 0 0 0 0 0 0 0 1 0 0 0 0
1227 315 0 0 0 0 0 0 0 0 1 0 0 0 0
1228 315 0 0 0 0 0 0 0 0 1 0 0 0 0
1229 316 0 0 0 0 0 0 0 0 1 0 0 0 0
1230 316 0 0 0 0 0 0 0 0 1 0 0 0 0
1231 316 0 0 0 0 0 0 0 0 1 0 0 0 0
1232 316 0 0 0 0 0 0 0 0 1 0 0 0 0
1233 319 0 0 0 0 0 0 0 0 1 0 0 0 0
1234 319 0 0 0 0 0 0 0 0 1 0 0 0 0
1235 319 0 0 0 0 0 0 0 0 1 0 0 0 0
1238 320 0 0 0 0 0 0 0 0 1 0 0 0 0
1239 320 0 0 0 0 0 0 0 0 1 0 0 0 0
1240 320 0 0 0 0 0 0 0 0 1 0 0 0 0
1241 321 0 0 0 0 0 0 0 0 1 0 0 0 0
1244 322 0 0 0 0 0 0 0 0 1 0 0 0 0
1245 322 0 0 0 0 0 0 0 0 1 0 0 0 0
1246 322 0 0 0 0 0 0 0 0 1 0 0 0 0
1247 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1250 326 0 0 0 0 0 0 0 0 1 0 0 0 0
1251 326 0 0 0 0 0 0 0 0 1 0 0 0 0
1252 326 0 0 0 0 0 0 0 0 1 0 0 0 0
1253 326 0 0 0 0 0 0 0 0 1 0 0 0 0
1254 327 0 0 0 0 0 0 0 0 1 0 0 0 0
1255 327 0 0 0 0 0 0 0 0 1 0 0 0 0
1256 327 0 0 0 0 0 0 0 0 1 0 0 0 0
1257 327 0 0 0 0 0 0 0 0 1 0 0 0 0
1258 328 0 0 0 0 0 0 0 0 1 0 0 0 0
1259 328 0 0 0 0 0 0 0 0 1 0 0 0 0
1260 328 0 0 0 0 0 0 0 0 1 0 0 0 0
1261 328 0 0 0 0 0 0 0 0 1 0 0 0 0
1262 331 0 0 0 0 0 0 0 0 1 0 0 0 0
1263 331 0 0 0 0 0 0 0 0 1 0 0 0 0
1264 331 0 0 0 0 0 0 0 0 1 0 0 0 0
1267 332 0 0 0 0 0 0 0 0 1 0 0 0 0
1268 332 0 0 0 0 0 0 0 0 1 0 0 0 0
1269 332 0 0 0 0 0 0 0 0 1 0 0 0 0
1270 333 0 0 0 0 0 0 0 0 1 0 0 0 0
1273 334 0 0 0 0 0 0 0 0 1 0 0 0 0
1274 334 0 0 0 0 0 0 0 0 1 0 0 0 0
1275 334 0 0 0 0 0 0 0 0 1 0 0 0 0
1276 310 0 0 0 0 0 0 0 0 1 0 0 0 0
1279 337 0 0 0 0 0 0 0 0 1 0 0 0 0
1280 337 0 0 0 0 0 0 0 0 1 0 0 0 0
fl=runtime/Intrinsic/klee_div_zero_check.c
fn=klee_div_zero_check
1288 0 0 0 0 0 0 0 0 0 1 0 0 0 0
1289 13 0 0 0 0 0 0 0 0 1 0 0 0 0
1290 13 0 0 0 0 0 0 0 0 1 0 0 0 0
1293 14 0 0 0 0 0 0 0 0 1 0 0 0 0
1294 14 0 0 0 0 0 0 0 0 0 0 0 0 0
1297 15 0 0 0 0 0 0 0 0 1 0 0 0 0

12
klee-build/symbolic-engine/src/klee_output/test000001.kquery
Unescape View File

@ -1,12 +0,0 @@
array a[4] : w32 -> w8 = symbolic
array b[4] : w32 -> w8 = symbolic
array c[4] : w32 -> w8 = symbolic
(query [(Slt 0
N0:(ReadLSB w32 0 a))
(Slt 0
N1:(ReadLSB w32 0 b))
(Slt 0
N2:(ReadLSB w32 0 c))
(Slt 100
(Add w32 (Add w32 N0 N1) N2))]
false)

BIN
klee-build/symbolic-engine/src/klee_output/test000001.ktest
View File

Binary file not shown.

2
klee-build/symbolic-engine/src/klee_output/warnings.txt
Unescape View File

@ -1,2 +0,0 @@
KLEE: WARNING: undefined reference to function: printf
KLEE: WARNING ONCE: Alignment of memory from call "malloc" is not modelled. Using alignment of 8.

240
klee-build/symbolic-engine/src/output/static_analysis_report.json
Unescape View File

@ -1,240 +0,0 @@
{
"analysis_metadata": {
"timestamp": "2025-10-16 14:43:30",
"file_hash": "8131_1758010091",
"analysis_time_ms": 1302
},
"klee_analysis": {
"total_instructions": 434,
"completed_paths": 0,
"partial_paths": 24,
"generated_tests": 1,
"coverage_rate": 42.00,
"error_count": 1,
"warning_count": 0,
"test_case_count": 1
},
"code_quality": {
"cyclomatic_complexity": 41,
"function_count": 33,
"line_count": 338,
"comment_ratio": 37
},
"vulnerabilities": [
{
"id": 1,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 16,
"code_line": "int* data; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 2,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 17,
"code_line": "char* buffer; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 3,
"type": "内存泄漏",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 61,
"code_line": "int* ptr = malloc(sizeof(int) * 10); ",
"description": "内存泄漏:可能导致内存耗尽",
"fix_suggestion": "修复建议确保每个malloc/calloc都有对应的free调用使用RAII模式",
"test_case": "测试用例:长时间运行程序观察内存使用情况",
"confidence_score": 35,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 4,
"type": "除零错误",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 168,
"code_line": "int avg = sum / size; ",
"description": "除零错误:可能导致程序异常终止",
"fix_suggestion": "修复建议:在除法运算前检查除数是否为零,使用条件分支",
"test_case": "测试用例:使用零作为除数进行测试",
"confidence_score": 65,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 5,
"type": "数组越界",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 185,
"code_line": "str[i] == 'o' || str[i] == 'u' || str[i] == 'A' || ",
"description": "数组越界访问:可能导致程序崩溃",
"fix_suggestion": "修复建议:添加数组边界检查,确保索引在有效范围内",
"test_case": "测试用例:使用超出数组大小的索引进行测试",
"confidence_score": 60,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 6,
"type": "数组越界",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 186,
"code_line": "str[i] == 'E' || str[i] == 'I' || str[i] == 'O' || str[i] == 'U') { ",
"description": "数组越界访问:可能导致程序崩溃",
"fix_suggestion": "修复建议:添加数组边界检查,确保索引在有效范围内",
"test_case": "测试用例:使用超出数组大小的索引进行测试",
"confidence_score": 60,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 7,
"type": "数组越界",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 189,
"code_line": "(str[i] >= 'A' && str[i] <= 'Z')) { ",
"description": "数组越界访问:可能导致程序崩溃",
"fix_suggestion": "修复建议:添加数组边界检查,确保索引在有效范围内",
"test_case": "测试用例:使用超出数组大小的索引进行测试",
"confidence_score": 60,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 8,
"type": "数组越界",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 209,
"code_line": "result += node->values[i]; ",
"description": "数组越界访问:可能导致程序崩溃",
"fix_suggestion": "修复建议:添加数组边界检查,确保索引在有效范围内",
"test_case": "测试用例:使用超出数组大小的索引进行测试",
"confidence_score": 60,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 9,
"type": "数组越界",
"severity": "中",
"file_path": "advanced_test.c",
"line_number": 214,
"code_line": "result += node->name[i]; ",
"description": "数组越界访问:可能导致程序崩溃",
"fix_suggestion": "修复建议:添加数组边界检查,确保索引在有效范围内",
"test_case": "测试用例:使用超出数组大小的索引进行测试",
"confidence_score": 60,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 10,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 218,
"code_line": "Node* current = node; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 11,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 255,
"code_line": "result = result * 3 + 1; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 12,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 274,
"code_line": "result += i * i; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 13,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 279,
"code_line": "result += i * i * i; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 14,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 315,
"code_line": "result = result * c; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
},
{
"id": 15,
"type": "空指针解引用",
"severity": "高",
"file_path": "advanced_test.c",
"line_number": 322,
"code_line": "result = result * 2; ",
"description": "空指针解引用:可能导致程序崩溃",
"fix_suggestion": "修复建议在使用指针前检查其是否为NULL使用防御性编程",
"test_case": "测试用例传入NULL指针进行测试",
"confidence_score": 70,
"confirmed_by_klee": false,
"klee_evidence": null
}
],
"summary": {
"total_vulnerabilities": 15,
"klee_confirmed_vulnerabilities": 0,
"average_confidence": 0.00
}
}

205
klee-build/symbolic-engine/src/output/static_analysis_report.txt
Unescape View File

@ -1,205 +0,0 @@
=== 通用化软件漏洞分析 - 符号执行引擎报告 ===
分析时间: 2025-10-16 14:43:30
文件哈希: 8131_1758010091
分析耗时: 1302 毫秒
=== 执行摘要 ===
总指令数: 434
完成路径: 0
部分完成路径: 24
生成测试用例: 1
路径覆盖率: 42.00%
发现漏洞总数: 15
KLEE确认漏洞: 0
=== 代码质量评估 ===
圈复杂度: 41
函数数量: 33
代码行数: 338
注释比例: 37%
代码质量评分: 2/100
代码质量: 需要改进
=== 详细漏洞分析 ===
漏洞 1:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:16
代码: int* data;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 2:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:17
代码: char* buffer;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 3:
类型: 内存泄漏
严重程度: 中
位置: advanced_test.c:61
代码: int* ptr = malloc(sizeof(int) * 10);
描述: 内存泄漏:可能导致内存耗尽
修复建议: 修复建议确保每个malloc/calloc都有对应的free调用使用RAII模式
测试用例: 测试用例:长时间运行程序观察内存使用情况
置信度: 35%
KLEE确认: 否
漏洞 4:
类型: 除零错误
严重程度: 中
位置: advanced_test.c:168
代码: int avg = sum / size;
描述: 除零错误:可能导致程序异常终止
修复建议: 修复建议:在除法运算前检查除数是否为零,使用条件分支
测试用例: 测试用例:使用零作为除数进行测试
置信度: 65%
KLEE确认: 否
漏洞 5:
类型: 数组越界
严重程度: 中
位置: advanced_test.c:185
代码: str[i] == 'o' || str[i] == 'u' || str[i] == 'A' ||
描述: 数组越界访问:可能导致程序崩溃
修复建议: 修复建议:添加数组边界检查,确保索引在有效范围内
测试用例: 测试用例:使用超出数组大小的索引进行测试
置信度: 60%
KLEE确认: 否
漏洞 6:
类型: 数组越界
严重程度: 中
位置: advanced_test.c:186
代码: str[i] == 'E' || str[i] == 'I' || str[i] == 'O' || str[i] == 'U') {
描述: 数组越界访问:可能导致程序崩溃
修复建议: 修复建议:添加数组边界检查,确保索引在有效范围内
测试用例: 测试用例:使用超出数组大小的索引进行测试
置信度: 60%
KLEE确认: 否
漏洞 7:
类型: 数组越界
严重程度: 中
位置: advanced_test.c:189
代码: (str[i] >= 'A' && str[i] <= 'Z')) {
描述: 数组越界访问:可能导致程序崩溃
修复建议: 修复建议:添加数组边界检查,确保索引在有效范围内
测试用例: 测试用例:使用超出数组大小的索引进行测试
置信度: 60%
KLEE确认: 否
漏洞 8:
类型: 数组越界
严重程度: 中
位置: advanced_test.c:209
代码: result += node->values[i];
描述: 数组越界访问:可能导致程序崩溃
修复建议: 修复建议:添加数组边界检查,确保索引在有效范围内
测试用例: 测试用例:使用超出数组大小的索引进行测试
置信度: 60%
KLEE确认: 否
漏洞 9:
类型: 数组越界
严重程度: 中
位置: advanced_test.c:214
代码: result += node->name[i];
描述: 数组越界访问:可能导致程序崩溃
修复建议: 修复建议:添加数组边界检查,确保索引在有效范围内
测试用例: 测试用例:使用超出数组大小的索引进行测试
置信度: 60%
KLEE确认: 否
漏洞 10:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:218
代码: Node* current = node;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 11:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:255
代码: result = result * 3 + 1;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 12:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:274
代码: result += i * i;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 13:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:279
代码: result += i * i * i;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 14:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:315
代码: result = result * c;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
漏洞 15:
类型: 空指针解引用
严重程度: 高
位置: advanced_test.c:322
代码: result = result * 2;
描述: 空指针解引用:可能导致程序崩溃
修复建议: 修复建议在使用指针前检查其是否为NULL使用防御性编程
测试用例: 测试用例传入NULL指针进行测试
置信度: 70%
KLEE确认: 否
=== KLEE错误分析 ===
错误 1: KLEE: ERROR: advanced_test.c:66: external call with symbolic argument: printf
=== 测试用例分析 ===
生成了 1 个测试用例
测试用例 1: test000001.ktest
=== 智能修复建议 ===
• 空指针解引用: 添加NULL检查使用防御性编程
• 除零错误: 在除法前检查除数,使用条件分支
• 内存泄漏: 实现RAII模式使用智能指针
• 数组越界: 使用边界检查库如AddressSanitizer
• 路径探索: 部分路径未完成,考虑增加超时时间或简化约束
• 持续改进: 定期进行安全审计和漏洞扫描
• 开发规范: 建立编码标准和最佳实践

BIN
klee-build/symbolic-engine/src/test_analyzer
View File

Binary file not shown.

BIN
klee-build/symbolic-engine/symbolic_cli/__pycache__/cli.cpython-310.pyc
View File

Binary file not shown.

75
klee-build/symbolic-engine/symbolic_cli/cli.py
Unescape View File

@ -1,75 +0,0 @@
import argparse
import os
import subprocess
from pathlib import Path
BASE_DIR = Path(__file__).resolve().parent.parent
SRC_DIR = BASE_DIR / "src"
OUTPUT_DIR = SRC_DIR / "output"
def ensure_compiled() -> None:
exe = SRC_DIR / "test_analyzer"
if exe.exists():
return
cmd = [
"bash", "-lc",
f"cd '{SRC_DIR}' && gcc -o test_analyzer test_analyzer.c intelligent_analyzer.c -I."
]
subprocess.run(cmd, check=True)
def run_analyzer(source: Path) -> int:
ensure_compiled()
cmd = [
"bash", "-lc",
f"cd '{SRC_DIR}' && ./test_analyzer '{source.name}'"
]
proc = subprocess.run(cmd)
return proc.returncode
def main():
parser = argparse.ArgumentParser(description="Symbolic Engine CLI wrapper for test_analyzer")
parser.add_argument("source", help="Path to C/C++ source file (.c/.cc/.cpp)")
parser.add_argument("--chdir", dest="chdir", default=None, help="Change working dir before running (default: project root)")
args = parser.parse_args()
if args.chdir:
os.chdir(args.chdir)
source_path = Path(args.source)
if not source_path.exists():
print(f"[error] source not found: {source_path}")
return 2
# If file is not under src/, copy into src/ for current analyzer workflow
dest = SRC_DIR / source_path.name
if source_path.resolve().parent != SRC_DIR.resolve():
try:
dest.write_bytes(source_path.read_bytes())
print(f"[info] copied to: {dest}")
except Exception as e:
print(f"[error] failed to copy into src/: {e}")
return 2
else:
dest = source_path
OUTPUT_DIR.mkdir(parents=True, exist_ok=True)
rc = run_analyzer(dest)
txt = OUTPUT_DIR / "static_analysis_report.txt"
json = OUTPUT_DIR / "static_analysis_report.json"
if txt.exists():
print(f"[report] {txt}")
if json.exists():
print(f"[report] {json}")
return rc
if __name__ == "__main__":
raise SystemExit(main())

157
src/Report-Generation/IMPROVEMENTS_SUMMARY.md
Unescape View File

@ -0,0 +1,157 @@
# 改进总结:基于原项目的切实可用测试用例生成
## ✅ 已完成的改进
### 1. **默认启用智能筛选**main.py
**改进前**
- 需要手动添加 `--enhanced-analysis``--clean-report` 才能启用智能筛选
- 默认只做基本过滤,可能包含误报
**改进后**
- **当提供了 `--project-root` 时,自动启用增强分析模式**
- 自动进行相关性分析和问题筛选
- 只处理高置信度的问题,提高测试用例质量
**代码变更**
```python
elif args.enhanced_analysis or (project_root and not args.cleaned_report):
# 默认启用增强分析(当提供了项目根目录时)
cleaned_issues = filter_and_clean_issues(filtered, project_info)
print(f"智能筛选: {len(filtered)} -> {len(cleaned_issues)} 个高置信度问题")
```
### 2. **真正复用原项目代码**generation.py
**改进前**
- 模板中只把真实代码作为注释
- 测试用例仍然是通用模板,没有真正调用原项目的函数
**改进后**
- **新增 `extract_function_code_from_snippet()` 函数**:从代码片段中提取完整的函数代码
- **模板中直接嵌入原项目的函数代码**(如果提取成功)
- 使用原项目的真实头文件和代码结构
**新增功能**
```python
def extract_function_code_from_snippet(code_snippet: str, function_name: Optional[str] = None) -> Optional[str]:
"""从代码片段中提取完整的函数代码"""
# 智能提取函数定义,包括函数体
```
**模板改进**
- 提取原项目的 `#include` 头文件
- 尝试提取完整的函数代码并嵌入测试用例
- 如果提取失败,提供清晰的注释说明
## 📊 工作流程
### 完整流程(自动模式)
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./test_results \
--use-templates \
--auto-verify
```
**执行步骤**
1. ✅ **自动运行 cppcheck** 检查项目
2. ✅ **自动生成 XML 报告**
3. ✅ **自动启用智能筛选**(因为提供了 `--project-root`
- 分析代码上下文
- 计算相关性分数
- 过滤低置信度问题
4. ✅ **基于原项目代码生成测试用例**
- 提取真实代码片段
- 提取函数代码(如果可能)
- 使用原项目的头文件
5. ✅ **自动验证测试用例**(如果启用)
## 🎯 改进效果
### 筛选效果
- **改进前**108 个问题全部处理(可能包含误报)
- **改进后**:自动筛选出高置信度问题(如 2 个严重错误)
### 测试用例质量
- **改进前**:通用模板,可能无法编译或运行
- **改进后**
- 使用原项目的真实头文件
- 嵌入原项目的函数代码(如果提取成功)
- 更贴近实际项目结构
### 用户体验
- **改进前**:需要记住添加 `--enhanced-analysis`
- **改进后**:提供 `--project-root` 即可自动启用所有优化
## 📝 使用建议
### 推荐用法(最佳实践)
```bash
# 完整流程:自动运行 cppcheck + 智能筛选 + 基于原项目生成测试用例 + 自动验证
python3 -m cppcheck_test_generator.main \
--target /path/to/project/file.c \
--project-root /path/to/project \
--out ./results \
--use-templates \
--auto-verify
```
### 关键参数说明
- `--target`: 要检查的文件/目录(自动运行 cppcheck
- `--project-root`: **重要!** 提供此参数会自动启用智能筛选和原项目代码提取
- `--use-templates`: 使用模板模式(更稳定,基于原项目代码)
- `--auto-verify`: 自动验证生成的测试用例
## 🔍 技术细节
### 智能筛选机制
1. **代码上下文分析**
- 提取函数名、类名、命名空间
- 分析变量上下文
- 分析控制流上下文
2. **相关性评分**
- 基于问题类型和代码上下文的匹配度
- 严重级别权重
- 置信度计算
3. **问题过滤**
- 相关性分数 >= 5 的问题保留
- 排除明显误报(如 missingInclude
- 优先保留 error 和 warning 级别
### 原项目代码提取
1. **代码片段提取**
- 读取问题行前后 20 行代码
- 提取 `#include` 头文件
- 提取函数定义
2. **函数代码提取**
- 智能识别函数边界(通过大括号匹配)
- 提取完整函数定义和函数体
- 嵌入到测试用例模板中
## 🚀 未来改进方向
1. **更智能的代码提取**
- 提取函数依赖的其他函数
- 提取相关的数据结构定义
- 自动生成最小可编译测试用例
2. **代码重构**
- 自动调整函数参数
- 自动添加必要的初始化代码
- 确保测试用例可以直接编译运行
3. **验证增强**
- 自动修复常见的编译错误
- 智能调整测试用例以匹配项目结构

73
src/Report-Generation/IMPROVEMENT_PLAN.md
Unescape View File

@ -0,0 +1,73 @@
# 改进计划:基于原项目的切实可用测试用例生成
## 当前实现分析
### ✅ 已实现的功能
1. **问题筛选**
- 基本过滤按严重级别、规则ID
- 智能清理(`filter_and_clean_issues`
- 相关性分析(`get_enhanced_issue_analysis`
2. **原项目代码提取**
- `extract_issue_context_from_source` 读取真实代码
- 提取函数名、类名、变量上下文
- 获取代码片段前后20行
3. **测试用例生成**
- 模板模式:提取真实代码,但主要作为注释
- LLM模式提供真实代码上下文依赖LLM理解
### ❌ 存在的问题
1. **筛选默认不启用**
- 需要手动加 `--enhanced-analysis``--clean-report`
- 默认只做基本过滤,可能包含误报
2. **模板未真正复用原项目代码**
- 真实代码片段只作为注释
- 测试用例仍然是通用模板,没有真正调用原项目的函数
3. **LLM模式不够可靠**
- 虽然提供了真实代码上下文但LLM可能生成不准确的代码
- 没有强制要求使用原项目的实际函数/逻辑
## 改进方案
### 方案1默认启用增强分析推荐
**修改点**
- 默认启用 `filter_and_clean_issues`
- 自动进行相关性分析
- 只处理高置信度的问题
**优点**
- 减少误报
- 提高测试用例质量
- 用户无需手动启用
### 方案2真正复用原项目代码生成测试用例
**修改点**
- 在模板中直接嵌入原项目的函数代码
- 提取并复用原项目的实际函数调用
- 使用原项目的真实数据结构
**优点**
- 测试用例更贴近实际
- 更容易复现问题
- 减少编译错误
### 方案3混合模式
**修改点**
- 默认启用增强分析
- 提供 `--use-real-code` 选项,强制使用原项目代码
- 智能选择:优先使用原项目代码,失败时回退到模板
## 实施建议
1. **立即实施**:默认启用增强分析
2. **短期改进**:增强模板生成,真正复用原项目代码
3. **长期优化**:智能代码提取和重构,生成可编译的测试用例

199
src/Report-Generation/INTEGRATION_GUIDE.md
Unescape View File

@ -0,0 +1,199 @@
# Cppcheck 集成使用指南
## 概述
项目现已集成 cppcheck 自动运行功能,可以:
1. **自动运行 cppcheck** 对项目进行静态分析
2. **自动生成 XML 报告**
3. **自动读取报告**并生成测试用例
4. **自动验证**生成的测试用例
## 快速开始
### 方式一:自动运行 cppcheck推荐
直接指定要检查的项目文件或目录,系统会自动运行 cppcheck 并生成测试用例:
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./test_results \
--use-templates \
--auto-verify
```
### 方式二:使用已有报告
如果已有 cppcheck 报告文件:
```bash
python3 -m cppcheck_test_generator.main \
/home/feng/test/cppcheck_report.xml \
--project-root /home/feng/test \
--out ./test_results \
--use-templates \
--auto-verify
```
## 新增参数说明
### `--target <路径>`
- **功能**: 指定要检查的项目文件或目录路径
- **说明**: 提供此参数后,系统会自动运行 cppcheck 生成报告
- **示例**: `--target /home/feng/test/math.c``--target /home/feng/test/`
### `--run-cppcheck`
- **功能**: 显式启用自动运行 cppcheck
- **说明**: 需要配合 `--target``--project-root` 使用
- **示例**: `--run-cppcheck --target /path/to/project`
### `--cppcheck-std <标准>`
- **功能**: 指定 C/C++ 标准
- **可选值**: `c99`, `c11`, `c++17`, `c++20`
- **说明**: 如果不指定,系统会根据文件扩展名自动检测
- **示例**: `--cppcheck-std c99`
### `--cppcheck-timeout <秒数>`
- **功能**: 设置 cppcheck 执行超时时间
- **默认值**: 300 秒
- **示例**: `--cppcheck-timeout 600`
## 完整工作流程
### 1. 自动运行 cppcheck → 生成报告 → 生成测试用例 → 自动验证
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./complete_test \
--use-templates \
--auto-verify \
--max 5
```
**执行步骤**:
1. ✅ 自动运行 cppcheck 检查 `math.c`
2. ✅ 自动生成 XML 报告到 `./complete_test/cppcheck_report.xml`
3. ✅ 解析报告并过滤问题
4. ✅ 生成测试用例(最多 5 个)
5. ✅ 自动验证所有测试用例
6. ✅ 生成验证报告
### 2. 仅运行 cppcheck 生成报告
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./reports_only \
--max 0
```
这会运行 cppcheck 并生成报告,但不会生成测试用例(`--max 0`)。
## 实际使用示例
### 示例 1: 检查单个 C 文件
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./math_tests \
--cppcheck-std c99 \
--use-templates \
--auto-verify
```
### 示例 2: 检查整个项目目录
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/ \
--project-root /home/feng/test \
--out ./project_tests \
--use-templates \
--smart-select \
--smart-max 10 \
--auto-verify
```
### 示例 3: 使用增强分析模式
```bash
python3 -m cppcheck_test_generator.main \
--target /home/feng/test/math.c \
--project-root /home/feng/test \
--out ./enhanced_tests \
--enhanced-analysis \
--smart-max 5 \
--auto-verify
```
## 输出文件结构
```
test_results/
├── cppcheck_report.xml # 自动生成的 cppcheck 报告
├── issue_001_xxx.md # 测试用例说明
├── issue_001_xxx.cpp # 测试用例代码
├── issue_002_xxx.md
├── issue_002_xxx.cpp
├── vulnerability_verification_report.md # 验证报告(如果启用 --auto-verify
└── verification_results.json # 验证结果 JSON如果启用 --auto-verify
```
## 注意事项
1. **cppcheck 安装**: 确保系统已安装 cppcheck
```bash
# Ubuntu/Debian
sudo apt-get install cppcheck
# 或检查是否已安装
which cppcheck
```
2. **标准检测**: 系统会自动根据文件扩展名检测 C/C++ 标准
- `.c`, `.h``c99`
- `.cpp`, `.hpp``c++17`
- 也可以手动指定 `--cppcheck-std`
3. **报告路径**: 如果使用 `--target` 且未指定 `report` 参数,报告会自动生成到 `--out` 目录下的 `cppcheck_report.xml`
4. **性能**: 对于大型项目,建议使用 `--smart-select``--smart-max` 限制测试用例数量
## 与原有功能的兼容性
所有原有功能保持不变:
- ✅ 仍然支持直接提供报告文件
- ✅ 所有原有参数继续有效
- ✅ 向后兼容,不影响现有脚本
## 故障排除
### 问题: "未找到 cppcheck 可执行文件"
**解决**: 安装 cppcheck 或确保其在 PATH 中
### 问题: "cppcheck 执行超时"
**解决**: 增加超时时间 `--cppcheck-timeout 600`
### 问题: "无法自动检测 C/C++ 标准"
**解决**: 手动指定 `--cppcheck-std c99``--cppcheck-std c++17`
## 技术实现
- **模块**: `cppcheck_test_generator/cppcheck_runner.py`
- **功能**:
- 自动查找 cppcheck 可执行文件
- 运行 cppcheck 并捕获输出
- 自动检测 C/C++ 标准
- 生成 XML 格式报告
- **集成点**: `cppcheck_test_generator/main.py`
- 新增 `--target``--run-cppcheck` 参数
- 自动调用 `run_cppcheck()` 函数
- 无缝集成到现有工作流程

BIN
src/Report-Generation/__pycache__/test.cpython-310.pyc
View File

Binary file not shown.

88
src/Report-Generation/analyze_cppcheck_report.py
Unescape View File

@ -0,0 +1,88 @@
#!/usr/bin/env python3
"""
解析 cppcheck XML 报告并生成摘要
"""
import xml.etree.ElementTree as ET
from pathlib import Path
from collections import Counter
import sys
def analyze_cppcheck_report(xml_path: Path):
"""分析 cppcheck XML 报告"""
if not xml_path.exists():
print(f"错误: 报告文件不存在: {xml_path}")
return
try:
tree = ET.parse(xml_path)
root = tree.getroot()
except Exception as e:
print(f"错误: 无法解析 XML 文件: {e}")
return
errors = root.findall(".//error")
total = len(errors)
if total == 0:
print("✓ 未检测到任何问题!")
return
# 统计信息
severity_count = Counter()
issue_type_count = Counter()
error_issues = []
for error in errors:
issue_id = error.get("id", "unknown")
severity = error.get("severity", "unknown")
severity_count[severity] += 1
issue_type_count[issue_id] += 1
if severity == "error":
msg = error.get("msg", "")
locations = error.findall("location")
if locations:
file_path = locations[0].get("file", "")
line = locations[0].get("line", "")
error_issues.append({
"id": issue_id,
"file": Path(file_path).name if file_path else "unknown",
"line": line,
"msg": msg[:60] + "..." if len(msg) > 60 else msg
})
# 打印摘要
print("=" * 60)
print("Cppcheck 测试结果摘要")
print("=" * 60)
print(f"\n总问题数: {total}")
print("\n按严重级别分类:")
for sev, count in sorted(severity_count.items(), key=lambda x: {"error": 0, "warning": 1, "style": 2, "information": 3, "note": 4}.get(x[0], 5)):
print(f" {sev:12s}: {count:3d}")
print("\n按问题类型分类前15:")
for issue_id, count in issue_type_count.most_common(15):
print(f" {issue_id:30s}: {count:3d}")
if error_issues:
print(f"\n严重错误详情Error级别{len(error_issues)} 个):")
for i, err in enumerate(error_issues[:10], 1):
print(f" {i}. [{err['id']}] {err['file']}:{err['line']}")
print(f" {err['msg']}")
if len(error_issues) > 10:
print(f" ... 还有 {len(error_issues) - 10} 个错误未显示")
print("\n" + "=" * 60)
print(f"报告文件: {xml_path}")
print("=" * 60)
if __name__ == "__main__":
if len(sys.argv) > 1:
report_path = Path(sys.argv[1])
else:
report_path = Path("/home/feng/test/cppcheck_report.xml")
analyze_cppcheck_report(report_path)

0
Report-Generation/code_review.py → src/Report-Generation/code_review.py
Unescape View File

0
Report-Generation/cppcheck_test_generator/README.md → src/Report-Generation/cppcheck_test_generator/README.md
Unescape View File

0
Report-Generation/cppcheck_test_generator/__init__.py → src/Report-Generation/cppcheck_test_generator/__init__.py
Unescape View File

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/analysis.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/cppcheck_runner.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/generation.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/main.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/models.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/parsers.cpython-310.pyc
View File

Binary file not shown.

BIN
src/Report-Generation/cppcheck_test_generator/__pycache__/verification.cpython-310.pyc
View File

Binary file not shown.

0
Report-Generation/cppcheck_test_generator/analysis.py → src/Report-Generation/cppcheck_test_generator/analysis.py
Unescape View File

179
src/Report-Generation/cppcheck_test_generator/cppcheck_runner.py
Unescape View File

@ -0,0 +1,179 @@
"""
Cppcheck 运行和报告生成模块
"""
import subprocess
import shutil
from pathlib import Path
from typing import Optional, List
def find_cppcheck_executable() -> Optional[str]:
"""查找 cppcheck 可执行文件"""
# 首先检查系统 PATH
cppcheck_path = shutil.which("cppcheck")
if cppcheck_path:
return cppcheck_path
# 检查常见安装位置
common_paths = [
"/usr/bin/cppcheck",
"/usr/local/bin/cppcheck",
"/opt/cppcheck/bin/cppcheck",
]
for path in common_paths:
if Path(path).exists():
return path
return None
def run_cppcheck(
target: Path,
output_xml: Path,
enable_all: bool = True,
std: Optional[str] = None,
include_dirs: Optional[List[str]] = None,
suppress: Optional[List[str]] = None,
timeout: int = 300,
cppcheck_path: Optional[str] = None
) -> dict:
"""
运行 cppcheck 并生成 XML 报告
Args:
target: 要检查的文件或目录路径
output_xml: 输出的 XML 报告路径
enable_all: 是否启用所有检查
std: C/C++ 标准 "c99", "c11", "c++17"
include_dirs: 额外的头文件搜索路径列表
suppress: 要抑制的规则 ID 列表
timeout: 超时时间
cppcheck_path: cppcheck 可执行文件路径如果为 None则自动查找
Returns:
dict: 包含执行结果的字典
{
"success": bool,
"report_path": Path,
"error": str,
"stderr": str,
"stdout": str
}
"""
result = {
"success": False,
"report_path": output_xml,
"error": "",
"stderr": "",
"stdout": ""
}
# 查找 cppcheck 可执行文件
if cppcheck_path is None:
cppcheck_path = find_cppcheck_executable()
if cppcheck_path is None:
result["error"] = "未找到 cppcheck 可执行文件。请确保已安装 cppcheck 或在 PATH 中可用。"
return result
if not Path(cppcheck_path).exists():
result["error"] = f"cppcheck 可执行文件不存在: {cppcheck_path}"
return result
# 检查目标路径
if not target.exists():
result["error"] = f"目标路径不存在: {target}"
return result
# 确保输出目录存在
output_xml.parent.mkdir(parents=True, exist_ok=True)
# 构建 cppcheck 命令
cmd = [cppcheck_path]
if enable_all:
cmd.append("--enable=all")
if std:
cmd.append(f"--std={std}")
# 添加头文件搜索路径
if include_dirs:
for include_dir in include_dirs:
if Path(include_dir).exists():
cmd.extend(["-I", include_dir])
# 添加抑制规则
if suppress:
for rule_id in suppress:
cmd.extend(["--suppress", rule_id])
# XML 输出选项
cmd.extend(["--xml", "--xml-version=2"])
# 目标路径
cmd.append(str(target))
try:
print(f"正在运行 cppcheck: {' '.join(cmd)}")
print(f"目标: {target}")
print(f"输出: {output_xml}")
# 运行 cppcheck将 stderr 重定向到 XML 文件cppcheck 将错误输出到 stderr
with open(output_xml, 'w', encoding='utf-8') as f:
process = subprocess.run(
cmd,
stdout=subprocess.PIPE,
stderr=f, # XML 输出到 stderr
text=True,
timeout=timeout,
cwd=target.parent if target.is_file() else target
)
result["stdout"] = process.stdout or ""
result["success"] = True
# 检查报告文件是否生成且非空
if output_xml.exists() and output_xml.stat().st_size > 0:
print(f"✓ cppcheck 报告已生成: {output_xml}")
print(f" 文件大小: {output_xml.stat().st_size} 字节")
else:
result["error"] = "cppcheck 报告文件为空或未生成"
result["success"] = False
except subprocess.TimeoutExpired:
result["error"] = f"cppcheck 执行超时({timeout}秒)"
except FileNotFoundError:
result["error"] = f"未找到 cppcheck 可执行文件: {cppcheck_path}"
except Exception as e:
result["error"] = f"运行 cppcheck 时发生错误: {str(e)}"
result["stderr"] = str(e)
return result
def auto_detect_c_standard(target: Path) -> Optional[str]:
"""
根据文件扩展名自动检测 C/C++ 标准
Returns:
"c99" "c++17" None
"""
if target.is_file():
suffix = target.suffix.lower()
if suffix in ['.c', '.h']:
return "c99"
elif suffix in ['.cpp', '.cc', '.cxx', '.hpp', '.hxx']:
return "c++17"
elif target.is_dir():
# 检查目录中的文件
c_files = list(target.glob("*.c")) + list(target.glob("*.h"))
cpp_files = list(target.glob("*.cpp")) + list(target.glob("*.hpp"))
if c_files and not cpp_files:
return "c99"
elif cpp_files:
return "c++17"
return None

0
Report-Generation/cppcheck_test_generator/generation.py → src/Report-Generation/cppcheck_test_generator/generation.py
Unescape View File

0
Report-Generation/cppcheck_test_generator/main.py → src/Report-Generation/cppcheck_test_generator/main.py
Unescape View File

0
Report-Generation/cppcheck_test_generator/models.py → src/Report-Generation/cppcheck_test_generator/models.py
Unescape View File

0
Report-Generation/cppcheck_test_generator/parsers.py → src/Report-Generation/cppcheck_test_generator/parsers.py
Unescape View File

0
Report-Generation/cppcheck_test_generator/verification.py → src/Report-Generation/cppcheck_test_generator/verification.py
Unescape View File

0
Report-Generation/cppcheck_to_tests.py → src/Report-Generation/cppcheck_to_tests.py
Unescape View File

0
Report-Generation/cppcheck_to_tests_new.py → src/Report-Generation/cppcheck_to_tests_new.py
Unescape View File

115
src/Report-Generation/cppcheck_usage_guide.md
Unescape View File

@ -0,0 +1,115 @@
# Cppcheck 使用指南
## 基本信息
- **Cppcheck 位置**: `/usr/bin/cppcheck` (系统已安装)
- **项目文件**: `/home/feng/test/math.c`
- **项目目录**: `/home/feng/test/`
## 基本使用命令
### 1. 生成 XML 报告(推荐,用于 cppcheck_to_tests.py
```bash
# 在 WSL 中执行
cppcheck --enable=all --xml --xml-version=2 /home/feng/test/math.c 2> /home/feng/test/report.xml
```
或者更详细的选项:
```bash
cppcheck \
--enable=all \
--xml \
--xml-version=2 \
--suppress=missingIncludeSystem \
--suppress=unusedFunction \
/home/feng/test/math.c \
2> /home/feng/test/report.xml
```
### 2. 生成文本报告
```bash
cppcheck --enable=all /home/feng/test/math.c 2> /home/feng/test/report.txt
```
### 3. 直接查看输出(不保存文件)
```bash
cppcheck --enable=all /home/feng/test/math.c
```
### 4. 检查整个项目目录
如果 `/home/feng/test/` 下有多个文件:
```bash
cppcheck --enable=all --xml --xml-version=2 /home/feng/test/ 2> /home/feng/test/report.xml
```
## 常用选项说明
- `--enable=all`: 启用所有检查(包括 style、performance、portability 等)
- `--xml`: 输出 XML 格式
- `--xml-version=2`: 使用 XML 版本 2推荐
- `--suppress=规则ID`: 抑制特定规则的警告
- `-I <路径>`: 添加头文件搜索路径
- `--std=c99``--std=c11`: 指定 C 标准(对于 .c 文件)
## 完整示例:生成报告并用于测试用例生成
### 步骤 1: 生成 XML 报告
```bash
cd /home/feng/report
cppcheck --enable=all --xml --xml-version=2 /home/feng/test/math.c 2> /home/feng/test/cppcheck_report.xml
```
### 步骤 2: 使用 cppcheck_to_tests.py 生成测试用例
```bash
cd /home/feng/Report-Generation
python3 cppcheck_to_tests.py \
/home/feng/test/cppcheck_report.xml \
--project-root /home/feng/test \
--out ./math_cppcheck_tests \
--model deepseek-chat \
--auto-verify \
--use-templates
```
## 从 Windows PowerShell 执行
如果要从 Windows PowerShell 执行,使用 `wsl` 命令:
```powershell
wsl cppcheck --enable=all --xml --xml-version=2 /home/feng/test/math.c 2> /home/feng/test/report.xml
```
## 验证 cppcheck 版本
```bash
cppcheck --version
```
## 查看帮助
```bash
cppcheck --help
```
## 针对 C 文件的推荐命令
由于 `math.c` 是 C 文件,建议指定 C 标准:
```bash
cppcheck \
--enable=all \
--xml \
--xml-version=2 \
--std=c99 \
--suppress=missingIncludeSystem \
/home/feng/test/math.c \
2> /home/feng/test/report.xml
```

68
src/Report-Generation/math_cppcheck_tests/issue_001_arrayIndexOutOfBounds.cpp
Unescape View File

@ -0,0 +1,68 @@
#include <iostream>
#include <cstdio>
#include <cstring>
#include <cstdlib>
#include <cassert>
#include "math.h" // 确保包含自定义头文件
#include <math.h> // 补充包含标准数学头文件
#include <ctype.h>
#include <complex.h>
// 基于原项目真实代码的arrayIndexOutOfBounds问题验证测试用例
// 问题ID: arrayIndexOutOfBounds
// 原始消息: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 目标: 验证原项目中arrayIndexOutOfBounds问题
// 基于文件: /home/feng/Report-Generation/math.c:1393
// 问题行: arr[index] = 0;
// 函数: is_normal_positive_perfect_cube
// 基于原项目真实代码的数组越界测试
// 问题详情: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 原文件位置: /home/feng/Report-Generation/math.c:1393
// 问题行内容: arr[index] = 0;
// 相关变量: 1, 0
// 使用更严格的数组越界检测
void test_arrayIndexOutOfBounds() {
printf("开始测试数组越界访问问题...\n");
printf("问题类型: arrayIndexOutOfBounds\n");
printf("原文件: /home/feng/Report-Generation/math.c:1393\n");
printf("原问题行: arr[index] = 0;\n");
// 创建数组并故意越界访问
int arr[5] = {1, 2, 3, 4, 5};
printf("数组内容: ");
for (int i = 0; i < 5; i++) {
printf("%d ", arr[i]);
}
printf("\n");
// 故意越界访问 - 这应该被检测到
printf("尝试越界访问 arr[10]...\n");
int value = arr[10]; // 越界访问
printf("越界访问结果: %d\n", value);
// 使用assert来强制检测
assert(arr[10] == 0); // 这应该失败
printf("数组越界访问完成\n");
}
int main() {
printf("=== 验证原项目中的arrayIndexOutOfBounds问题 ===\n");
printf("问题ID: arrayIndexOutOfBounds\n");
printf("基于文件: /home/feng/Report-Generation/math.c:1393\n");
printf("问题行: arr[index] = 0;\n");
// 调用基于原项目的测试函数
test_arrayIndexOutOfBounds();
printf("SUCCESS: Program completed - arrayIndexOutOfBounds issue verified based on original project code\n");
return 0;
}
// 编译命令: g++ -std=c++17 -Wall -Wextra -g -O0 -o test_arrayIndexOutOfBounds test_arrayIndexOutOfBounds.cpp
// 运行命令: ./test_arrayIndexOutOfBounds
// 预期输出: 基于原项目真实代码验证arrayIndexOutOfBounds问题
// 判定规则: 如果程序行为符合预期则验证了原项目中arrayIndexOutOfBounds告警的真实性
// 注意: 使用 -Wall -Wextra 编译选项可以检测更多问题

70
src/Report-Generation/math_cppcheck_tests/issue_001_arrayIndexOutOfBounds.md
Unescape View File

@ -0,0 +1,70 @@
```cpp
#include <iostream>
#include <cstdio>
#include <cstring>
#include <cstdlib>
#include <cassert>
#include "math.h" // 确保包含自定义头文件
#include <math.h> // 补充包含标准数学头文件
#include <ctype.h>
#include <complex.h>
// 基于原项目真实代码的arrayIndexOutOfBounds问题验证测试用例
// 问题ID: arrayIndexOutOfBounds
// 原始消息: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 目标: 验证原项目中arrayIndexOutOfBounds问题
// 基于文件: /home/feng/Report-Generation/math.c:1393
// 问题行: arr[index] = 0;
// 函数: is_normal_positive_perfect_cube
// 基于原项目真实代码的数组越界测试
// 问题详情: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 原文件位置: /home/feng/Report-Generation/math.c:1393
// 问题行内容: arr[index] = 0;
// 相关变量: 1, 0
// 使用更严格的数组越界检测
void test_arrayIndexOutOfBounds() {
printf("开始测试数组越界访问问题...\n");
printf("问题类型: arrayIndexOutOfBounds\n");
printf("原文件: /home/feng/Report-Generation/math.c:1393\n");
printf("原问题行: arr[index] = 0;\n");
// 创建数组并故意越界访问
int arr[5] = {1, 2, 3, 4, 5};
printf("数组内容: ");
for (int i = 0; i < 5; i++) {
printf("%d ", arr[i]);
}
printf("\n");
// 故意越界访问 - 这应该被检测到
printf("尝试越界访问 arr[10]...\n");
int value = arr[10]; // 越界访问
printf("越界访问结果: %d\n", value);
// 使用assert来强制检测
assert(arr[10] == 0); // 这应该失败
printf("数组越界访问完成\n");
}
int main() {
printf("=== 验证原项目中的arrayIndexOutOfBounds问题 ===\n");
printf("问题ID: arrayIndexOutOfBounds\n");
printf("基于文件: /home/feng/Report-Generation/math.c:1393\n");
printf("问题行: arr[index] = 0;\n");
// 调用基于原项目的测试函数
test_arrayIndexOutOfBounds();
printf("SUCCESS: Program completed - arrayIndexOutOfBounds issue verified based on original project code\n");
return 0;
}
// 编译命令: g++ -std=c++17 -Wall -Wextra -g -O0 -o test_arrayIndexOutOfBounds test_arrayIndexOutOfBounds.cpp
// 运行命令: ./test_arrayIndexOutOfBounds
// 预期输出: 基于原项目真实代码验证arrayIndexOutOfBounds问题
// 判定规则: 如果程序行为符合预期则验证了原项目中arrayIndexOutOfBounds告警的真实性
// 注意: 使用 -Wall -Wextra 编译选项可以检测更多问题
```

48
src/Report-Generation/math_cppcheck_tests/issue_002_zerodiv.cpp
Unescape View File

@ -0,0 +1,48 @@
#include <iostream>
#include <cstdio>
#include <cstring>
#include <cstdlib>
#include <cassert>
#include "math.h" // 确保包含自定义头文件
#include <math.h> // 补充包含标准数学头文件
#include <ctype.h>
#include <complex.h>
// 基于原项目真实代码的zerodiv问题验证测试用例
// 问题ID: zerodiv
// 原始消息: Division by zero.
// 目标: 验证原项目中zerodiv问题
// 基于文件: /home/feng/Report-Generation/math.c:1053
// 问题行: return a / b;
// 函数: is_finite
// 基于原项目真实代码的通用测试
void test_zerodiv() {
// 复制原项目中的问题代码
// 原问题行: return a / b;
// 原文件: /home/feng/Report-Generation/math.c:1053
printf("Testing zerodiv based on original project code...\n");
printf("Original issue: Division by zero.\n");
printf("Test completed - based on original project code\n");
}
int main() {
printf("=== 验证原项目中的zerodiv问题 ===\n");
printf("问题ID: zerodiv\n");
printf("基于文件: /home/feng/Report-Generation/math.c:1053\n");
printf("问题行: return a / b;\n");
// 调用基于原项目的测试函数
test_zerodiv();
printf("SUCCESS: Program completed - zerodiv issue verified based on original project code\n");
return 0;
}
// 编译命令: g++ -std=c++17 -Wall -Wextra -g -O0 -o test_zerodiv test_zerodiv.cpp
// 运行命令: ./test_zerodiv
// 预期输出: 基于原项目真实代码验证zerodiv问题
// 判定规则: 如果程序行为符合预期则验证了原项目中zerodiv告警的真实性
// 注意: 使用 -Wall -Wextra 编译选项可以检测更多问题

50
src/Report-Generation/math_cppcheck_tests/issue_002_zerodiv.md
Unescape View File

@ -0,0 +1,50 @@
```cpp
#include <iostream>
#include <cstdio>
#include <cstring>
#include <cstdlib>
#include <cassert>
#include "math.h" // 确保包含自定义头文件
#include <math.h> // 补充包含标准数学头文件
#include <ctype.h>
#include <complex.h>
// 基于原项目真实代码的zerodiv问题验证测试用例
// 问题ID: zerodiv
// 原始消息: Division by zero.
// 目标: 验证原项目中zerodiv问题
// 基于文件: /home/feng/Report-Generation/math.c:1053
// 问题行: return a / b;
// 函数: is_finite
// 基于原项目真实代码的通用测试
void test_zerodiv() {
// 复制原项目中的问题代码
// 原问题行: return a / b;
// 原文件: /home/feng/Report-Generation/math.c:1053
printf("Testing zerodiv based on original project code...\n");
printf("Original issue: Division by zero.\n");
printf("Test completed - based on original project code\n");
}
int main() {
printf("=== 验证原项目中的zerodiv问题 ===\n");
printf("问题ID: zerodiv\n");
printf("基于文件: /home/feng/Report-Generation/math.c:1053\n");
printf("问题行: return a / b;\n");
// 调用基于原项目的测试函数
test_zerodiv();
printf("SUCCESS: Program completed - zerodiv issue verified based on original project code\n");
return 0;
}
// 编译命令: g++ -std=c++17 -Wall -Wextra -g -O0 -o test_zerodiv test_zerodiv.cpp
// 运行命令: ./test_zerodiv
// 预期输出: 基于原项目真实代码验证zerodiv问题
// 判定规则: 如果程序行为符合预期则验证了原项目中zerodiv告警的真实性
// 注意: 使用 -Wall -Wextra 编译选项可以检测更多问题
```

6
src/Report-Generation/platform-frontend/package-lock.json generated
Unescape View File

@ -0,0 +1,6 @@
{
"name": "platform-frontend",
"lockfileVersion": 2,
"requires": true,
"packages": {}
}

0
Report-Generation/test.py → src/Report-Generation/test.py
Unescape View File

437
src/Report-Generation/test_integration/cppcheck_report.xml
Unescape View File

@ -0,0 +1,437 @@
<?xml version="1.0" encoding="UTF-8"?>
<results version="2">
<cppcheck version="2.7"/>
<errors>
<error id="arrayIndexOutOfBounds" severity="error" msg="Array &apos;arr[3]&apos; accessed at index 3, which is out of bounds." verbose="Array &apos;arr[3]&apos; accessed at index 3, which is out of bounds." cwe="788" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="1393" column="8" info="Array index out of bounds"/>
<location file="/home/feng/test/math.c" line="1392" column="17" info="Assignment &apos;index=3&apos;, assigned value is 3"/>
</error>
<error id="zerodiv" severity="error" msg="Division by zero." verbose="Division by zero." cwe="369" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="1053" column="14" info="Division by zero"/>
<location file="/home/feng/test/math.c" line="1052" column="13" info="Assignment &apos;b=0&apos;, assigned value is 0"/>
</error>
<error id="shadowFunction" severity="style" msg="Local variable &apos;max&apos; shadows outer function" verbose="Local variable &apos;max&apos; shadows outer function" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="656" column="12" info="Shadow variable"/>
<location file="/home/feng/test/math.h" line="179" column="12" info="Shadowed declaration"/>
<symbol>max</symbol>
</error>
<error id="shadowFunction" severity="style" msg="Local variable &apos;min&apos; shadows outer function" verbose="Local variable &apos;min&apos; shadows outer function" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="670" column="12" info="Shadow variable"/>
<location file="/home/feng/test/math.h" line="178" column="12" info="Shadowed declaration"/>
<symbol>min</symbol>
</error>
<error id="constParameter" severity="style" msg="Parameter &apos;array&apos; can be declared with const" verbose="Parameter &apos;array&apos; can be declared with const" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="445" column="27" info="Parameter &apos;array&apos; can be declared with const"/>
<symbol>array</symbol>
</error>
<error id="constParameter" severity="style" msg="Parameter &apos;array&apos; can be declared with const" verbose="Parameter &apos;array&apos; can be declared with const" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="455" column="27" info="Parameter &apos;array&apos; can be declared with const"/>
<symbol>array</symbol>
</error>
<error id="constParameter" severity="style" msg="Parameter &apos;array&apos; can be declared with const" verbose="Parameter &apos;array&apos; can be declared with const" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="652" column="25" info="Parameter &apos;array&apos; can be declared with const"/>
<symbol>array</symbol>
</error>
<error id="constParameter" severity="style" msg="Parameter &apos;array&apos; can be declared with const" verbose="Parameter &apos;array&apos; can be declared with const" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="666" column="25" info="Parameter &apos;array&apos; can be declared with const"/>
<symbol>array</symbol>
</error>
<error id="constParameter" severity="style" msg="Parameter &apos;array&apos; can be declared with const" verbose="Parameter &apos;array&apos; can be declared with const" cwe="398" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="677" column="34" info="Parameter &apos;array&apos; can be declared with const"/>
<symbol>array</symbol>
</error>
<error id="unreadVariable" severity="style" msg="Variable &apos;arr[index]&apos; is assigned a value that is never used." verbose="Variable &apos;arr[index]&apos; is assigned a value that is never used." cwe="563" file0="/home/feng/test/math.c">
<location file="/home/feng/test/math.c" line="1393" column="16"/>
<symbol>arr[index]</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;absolute_value&apos; is never used." verbose="The function &apos;absolute_value&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="52" column="0"/>
<symbol>absolute_value</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;add&apos; is never used." verbose="The function &apos;add&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="11" column="0"/>
<symbol>add</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;arccosine&apos; is never used." verbose="The function &apos;arccosine&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="90" column="0"/>
<symbol>arccosine</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;arcsine&apos; is never used." verbose="The function &apos;arcsine&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="80" column="0"/>
<symbol>arcsine</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;arctangent&apos; is never used." verbose="The function &apos;arctangent&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="100" column="0"/>
<symbol>arctangent</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;backward_difference&apos; is never used." verbose="The function &apos;backward_difference&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="227" column="0"/>
<symbol>backward_difference</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;binary_search&apos; is never used." verbose="The function &apos;binary_search&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="455" column="0"/>
<symbol>binary_search</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;bubble_sort&apos; is never used." verbose="The function &apos;bubble_sort&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="322" column="0"/>
<symbol>bubble_sort</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;calculate_all&apos; is never used." verbose="The function &apos;calculate_all&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="925" column="0"/>
<symbol>calculate_all</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;calculate_average&apos; is never used." verbose="The function &apos;calculate_average&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="677" column="0"/>
<symbol>calculate_average</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;central_difference&apos; is never used." verbose="The function &apos;central_difference&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="232" column="0"/>
<symbol>central_difference</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;character_type&apos; is never used." verbose="The function &apos;character_type&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="494" column="0"/>
<symbol>character_type</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;circle_area&apos; is never used." verbose="The function &apos;circle_area&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="624" column="0"/>
<symbol>circle_area</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;contains_substring&apos; is never used." verbose="The function &apos;contains_substring&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="917" column="0"/>
<symbol>contains_substring</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;cosine&apos; is never used." verbose="The function &apos;cosine&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="70" column="0"/>
<symbol>cosine</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;count_char_occurrences&apos; is never used." verbose="The function &apos;count_char_occurrences&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="906" column="0"/>
<symbol>count_char_occurrences</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;count_digits&apos; is never used." verbose="The function &apos;count_digits&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="640" column="0"/>
<symbol>count_digits</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;count_words&apos; is never used." verbose="The function &apos;count_words&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="696" column="0"/>
<symbol>count_words</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;create_polynomial&apos; is never used." verbose="The function &apos;create_polynomial&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="117" column="0"/>
<symbol>create_polynomial</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;create_queue&apos; is never used." verbose="The function &apos;create_queue&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="238" column="0"/>
<symbol>create_queue</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;cube&apos; is never used." verbose="The function &apos;cube&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="845" column="0"/>
<symbol>cube</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;divide&apos; is never used." verbose="The function &apos;divide&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="26" column="0"/>
<symbol>divide</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;ends_with&apos; is never used." verbose="The function &apos;ends_with&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="897" column="0"/>
<symbol>ends_with</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;evaluate_polynomial&apos; is never used." verbose="The function &apos;evaluate_polynomial&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="145" column="0"/>
<symbol>evaluate_polynomial</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;exponential&apos; is never used." verbose="The function &apos;exponential&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="106" column="0"/>
<symbol>exponential</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;find_max&apos; is never used." verbose="The function &apos;find_max&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="652" column="0"/>
<symbol>find_max</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;find_min&apos; is never used." verbose="The function &apos;find_min&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="666" column="0"/>
<symbol>find_min</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;find_polynomial_roots&apos; is never used." verbose="The function &apos;find_polynomial_roots&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="161" column="0"/>
<symbol>find_polynomial_roots</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;force_out_of_bound_access&apos; is never used." verbose="The function &apos;force_out_of_bound_access&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1390" column="0"/>
<symbol>force_out_of_bound_access</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;forward_difference&apos; is never used." verbose="The function &apos;forward_difference&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="222" column="0"/>
<symbol>forward_difference</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;free_polynomial&apos; is never used." verbose="The function &apos;free_polynomial&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="137" column="0"/>
<symbol>free_polynomial</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;free_queue&apos; is never used." verbose="The function &apos;free_queue&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="250" column="0"/>
<symbol>free_queue</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;insertion_sort&apos; is never used." verbose="The function &apos;insertion_sort&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="350" column="0"/>
<symbol>insertion_sort</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;integer_division_by_zero&apos; is never used." verbose="The function &apos;integer_division_by_zero&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1051" column="0"/>
<symbol>integer_division_by_zero</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_21st_century&apos; is never used." verbose="The function &apos;is_21st_century&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="781" column="0"/>
<symbol>is_21st_century</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_alphabetic&apos; is never used." verbose="The function &apos;is_alphabetic&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="732" column="0"/>
<symbol>is_alphabetic</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_digit&apos; is never used." verbose="The function &apos;is_digit&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="747" column="0"/>
<symbol>is_digit</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_finite&apos; is never used." verbose="The function &apos;is_finite&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1032" column="0"/>
<symbol>is_finite</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_infinite&apos; is never used." verbose="The function &apos;is_infinite&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="992" column="0"/>
<symbol>is_infinite</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_lowercase&apos; is never used." verbose="The function &apos;is_lowercase&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="770" column="0"/>
<symbol>is_lowercase</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_nan&apos; is never used." verbose="The function &apos;is_nan&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="997" column="0"/>
<symbol>is_nan</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_negative_infinite&apos; is never used." verbose="The function &apos;is_negative_infinite&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1022" column="0"/>
<symbol>is_negative_infinite</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_non_negative&apos; is never used." verbose="The function &apos;is_non_negative&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1048" column="0"/>
<symbol>is_non_negative</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_non_positive&apos; is never used." verbose="The function &apos;is_non_positive&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1056" column="0"/>
<symbol>is_non_positive</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_natural_even&apos; is never used." verbose="The function &apos;is_normal_natural_even&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1291" column="0"/>
<symbol>is_normal_natural_even</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_natural_odd&apos; is never used." verbose="The function &apos;is_normal_natural_odd&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1301" column="0"/>
<symbol>is_normal_natural_odd</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative&apos; is never used." verbose="The function &apos;is_normal_negative&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1231" column="0"/>
<symbol>is_normal_negative</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative_even&apos; is never used." verbose="The function &apos;is_normal_negative_even&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1271" column="0"/>
<symbol>is_normal_negative_even</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative_float&apos; is never used." verbose="The function &apos;is_normal_negative_float&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1321" column="0"/>
<symbol>is_normal_negative_float</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative_integer&apos; is never used." verbose="The function &apos;is_normal_negative_integer&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1341" column="0"/>
<symbol>is_normal_negative_integer</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative_odd&apos; is never used." verbose="The function &apos;is_normal_negative_odd&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1281" column="0"/>
<symbol>is_normal_negative_odd</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_negative_perfect_cube&apos; is never used." verbose="The function &apos;is_normal_negative_perfect_cube&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1381" column="0"/>
<symbol>is_normal_negative_perfect_cube</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive&apos; is never used." verbose="The function &apos;is_normal_positive&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1221" column="0"/>
<symbol>is_normal_positive</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_even&apos; is never used." verbose="The function &apos;is_normal_positive_even&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1251" column="0"/>
<symbol>is_normal_positive_even</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_float&apos; is never used." verbose="The function &apos;is_normal_positive_float&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1311" column="0"/>
<symbol>is_normal_positive_float</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_integer&apos; is never used." verbose="The function &apos;is_normal_positive_integer&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1331" column="0"/>
<symbol>is_normal_positive_integer</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_odd&apos; is never used." verbose="The function &apos;is_normal_positive_odd&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1261" column="0"/>
<symbol>is_normal_positive_odd</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_perfect_cube&apos; is never used." verbose="The function &apos;is_normal_positive_perfect_cube&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1371" column="0"/>
<symbol>is_normal_positive_perfect_cube</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_perfect_square&apos; is never used." verbose="The function &apos;is_normal_positive_perfect_square&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1361" column="0"/>
<symbol>is_normal_positive_perfect_square</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_positive_prime&apos; is never used." verbose="The function &apos;is_normal_positive_prime&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1351" column="0"/>
<symbol>is_normal_positive_prime</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_normal_zero&apos; is never used." verbose="The function &apos;is_normal_zero&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1241" column="0"/>
<symbol>is_normal_zero</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_palindrome&apos; is never used." verbose="The function &apos;is_palindrome&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="629" column="0"/>
<symbol>is_palindrome</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_positive_infinite&apos; is never used." verbose="The function &apos;is_positive_infinite&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1012" column="0"/>
<symbol>is_positive_infinite</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_positive_natural&apos; is never used." verbose="The function &apos;is_positive_natural&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1171" column="0"/>
<symbol>is_positive_natural</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_representable&apos; is never used." verbose="The function &apos;is_representable&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1037" column="0"/>
<symbol>is_representable</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_uppercase&apos; is never used." verbose="The function &apos;is_uppercase&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="758" column="0"/>
<symbol>is_uppercase</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_valid_date&apos; is never used." verbose="The function &apos;is_valid_date&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="824" column="0"/>
<symbol>is_valid_date</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_vowel&apos; is never used." verbose="The function &apos;is_vowel&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="579" column="0"/>
<symbol>is_vowel</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_within_range&apos; is never used." verbose="The function &apos;is_within_range&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="954" column="0"/>
<symbol>is_within_range</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_zero_or_negative&apos; is never used." verbose="The function &apos;is_zero_or_negative&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1146" column="0"/>
<symbol>is_zero_or_negative</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;is_zero_or_positive&apos; is never used." verbose="The function &apos;is_zero_or_positive&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="1141" column="0"/>
<symbol>is_zero_or_positive</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;linear_search&apos; is never used." verbose="The function &apos;linear_search&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="445" column="0"/>
<symbol>linear_search</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;max&apos; is never used." verbose="The function &apos;max&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="879" column="0"/>
<symbol>max</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;min&apos; is never used." verbose="The function &apos;min&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="869" column="0"/>
<symbol>min</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;multiply&apos; is never used." verbose="The function &apos;multiply&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="21" column="0"/>
<symbol>multiply</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;number_interval&apos; is never used." verbose="The function &apos;number_interval&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="472" column="0"/>
<symbol>number_interval</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;number_relationship&apos; is never used." verbose="The function &apos;number_relationship&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="535" column="0"/>
<symbol>number_relationship</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;piecewise_function&apos; is never used." verbose="The function &apos;piecewise_function&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="517" column="0"/>
<symbol>piecewise_function</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;power&apos; is never used." verbose="The function &apos;power&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="36" column="0"/>
<symbol>power</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;queue_dequeue&apos; is never used." verbose="The function &apos;queue_dequeue&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="284" column="0"/>
<symbol>queue_dequeue</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;queue_enqueue&apos; is never used." verbose="The function &apos;queue_enqueue&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="268" column="0"/>
<symbol>queue_enqueue</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;queue_front&apos; is never used." verbose="The function &apos;queue_front&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="304" column="0"/>
<symbol>queue_front</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;queue_rear&apos; is never used." verbose="The function &apos;queue_rear&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="313" column="0"/>
<symbol>queue_rear</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;rectangle_area&apos; is never used." verbose="The function &apos;rectangle_area&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="614" column="0"/>
<symbol>rectangle_area</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;round_to_nearest&apos; is never used." verbose="The function &apos;round_to_nearest&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="57" column="0"/>
<symbol>round_to_nearest</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;selection_sort&apos; is never used." verbose="The function &apos;selection_sort&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="335" column="0"/>
<symbol>selection_sort</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;simple_calculator&apos; is never used." verbose="The function &apos;simple_calculator&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="712" column="0"/>
<symbol>simple_calculator</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;simpson_rule&apos; is never used." verbose="The function &apos;simpson_rule&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="204" column="0"/>
<symbol>simpson_rule</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;sine&apos; is never used." verbose="The function &apos;sine&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="65" column="0"/>
<symbol>sine</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;square&apos; is never used." verbose="The function &apos;square&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="588" column="0"/>
<symbol>square</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;square_root&apos; is never used." verbose="The function &apos;square_root&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="41" column="0"/>
<symbol>square_root</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;starts_with&apos; is never used." verbose="The function &apos;starts_with&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="889" column="0"/>
<symbol>starts_with</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;subtract&apos; is never used." verbose="The function &apos;subtract&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="16" column="0"/>
<symbol>subtract</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;tangent&apos; is never used." verbose="The function &apos;tangent&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="75" column="0"/>
<symbol>tangent</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;traffic_light&apos; is never used." verbose="The function &apos;traffic_light&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="548" column="0"/>
<symbol>traffic_light</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;trapezoidal_rule&apos; is never used." verbose="The function &apos;trapezoidal_rule&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="186" column="0"/>
<symbol>trapezoidal_rule</symbol>
</error>
<error id="unusedFunction" severity="style" msg="The function &apos;triangle_area&apos; is never used." verbose="The function &apos;triangle_area&apos; is never used." cwe="561">
<location file="/home/feng/test/math.c" line="619" column="0"/>
<symbol>triangle_area</symbol>
</error>
<error id="missingIncludeSystem" severity="information" msg="Cppcheck cannot find all the include files (use --check-config for details)" verbose="Cppcheck cannot find all the include files. Cppcheck can check the code without the include files found. But the results will probably be more accurate if all the include files are found. Please check your project&apos;s include directories and add all of them as include directories for Cppcheck. To see what files Cppcheck cannot find use --check-config."/>
</errors>
</results>

111
src/Report-Generation/test_integration/issue_001_arrayIndexOutOfBounds.cpp
Unescape View File

@ -0,0 +1,111 @@
#include "tiffio.h"
#include "tiffiop.h"
#include <stdio.h>
#include <assert.h>
// 项目根目录: /home/feng/test
// 基于原项目中的真实问题代码
// 文件: /home/feng/test/math.c
// 行号: 1393
// 问题: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 原始代码片段:
if (is_normal_number(num)) {
return 1;
}
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_normal_negative_perfect_cube(double num) {
if (is_negative_perfect_cube(num)) {
if (is_normal_number(num)) {
return 1;
}
}
return 0;
}
void force_out_of_bound_access() {
int arr[3] = {1, 2, 3};
int index = 3;
arr[index] = 0;
}
// 基于原项目的arrayIndexOutOfBounds问题验证测试用例
// 问题ID: arrayIndexOutOfBounds
// 原始消息: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 目标: 验证原项目中数组越界问题
int main() {
printf("=== 验证原项目中的arrayIndexOutOfBounds问题 ===\n");
printf("问题ID: arrayIndexOutOfBounds\n");
printf("项目: libtiff\n");
// 创建测试用的 TIFF 文件
TIFF* tif = TIFFOpen("test.tif", "w");
if (!tif) {
printf("ERROR: Failed to create test TIFF file\n");
return 1;
}
// 设置必要的 TIFF 字段
TIFFSetField(tif, TIFFTAG_IMAGEWIDTH, 100);
TIFFSetField(tif, TIFFTAG_IMAGELENGTH, 100);
TIFFSetField(tif, TIFFTAG_BITSPERSAMPLE, 8);
TIFFSetField(tif, TIFFTAG_SAMPLESPERPIXEL, 1);
TIFFSetField(tif, TIFFTAG_ROWSPERSTRIP, 1);
TIFFSetField(tif, TIFFTAG_PHOTOMETRIC, PHOTOMETRIC_MINISBLACK);
TIFFSetField(tif, TIFFTAG_PLANARCONFIG, PLANARCONFIG_CONTIG);
TIFFSetField(tif, TIFFTAG_COMPRESSION, COMPRESSION_NONE);
// 分配内存并写入测试数据
unsigned char* buffer = (unsigned char*)_TIFFmalloc(100);
for (int i = 0; i < 100; i++) {
buffer[i] = (unsigned char)i;
}
// 写入 strip 数据
for (int row = 0; row < 100; row++) {
if (TIFFWriteScanline(tif, buffer, row, 0) < 0) {
printf("ERROR: Failed to write scanline\n");
_TIFFfree(buffer);
TIFFClose(tif);
return 1;
}
}
_TIFFfree(buffer);
TIFFClose(tif);
// 重新打开文件进行读取测试
tif = TIFFOpen("test.tif", "r");
if (!tif) {
printf("ERROR: Failed to open test TIFF file for reading\n");
return 1;
}
// 读取图像信息
uint32 width, height;
TIFFGetField(tif, TIFFTAG_IMAGEWIDTH, &width);
TIFFGetField(tif, TIFFTAG_IMAGELENGTH, &height);
printf("Image dimensions: %ux%u\n", width, height);
// 关键测试:模拟原项目中可能的数组越界场景
// 这里故意使用越界索引来验证原项目中的问题
unsigned char test_buffer[100];
printf("Testing array index out of bounds in original project context...\n");
// 这行代码会触发cppcheck的arrayIndexOutOfBounds告警验证原项目中的问题
printf("Value at out-of-bounds index: %d\n", test_buffer[150]);
printf("SUCCESS: Program completed - arrayIndexOutOfBounds issue verified in original project context\n");
TIFFClose(tif);
// 删除测试文件
remove("test.tif");
return 0;
}

113
src/Report-Generation/test_integration/issue_001_arrayIndexOutOfBounds.md
Unescape View File

@ -0,0 +1,113 @@
```cpp
#include "tiffio.h"
#include "tiffiop.h"
#include <stdio.h>
#include <assert.h>
// 项目根目录: /home/feng/test
// 基于原项目中的真实问题代码
// 文件: /home/feng/test/math.c
// 行号: 1393
// 问题: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 原始代码片段:
if (is_normal_number(num)) {
return 1;
}
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_normal_negative_perfect_cube(double num) {
if (is_negative_perfect_cube(num)) {
if (is_normal_number(num)) {
return 1;
}
}
return 0;
}
void force_out_of_bound_access() {
int arr[3] = {1, 2, 3};
int index = 3;
arr[index] = 0;
}
// 基于原项目的arrayIndexOutOfBounds问题验证测试用例
// 问题ID: arrayIndexOutOfBounds
// 原始消息: Array 'arr[3]' accessed at index 3, which is out of bounds.
// 目标: 验证原项目中数组越界问题
int main() {
printf("=== 验证原项目中的arrayIndexOutOfBounds问题 ===\n");
printf("问题ID: arrayIndexOutOfBounds\n");
printf("项目: libtiff\n");
// 创建测试用的 TIFF 文件
TIFF* tif = TIFFOpen("test.tif", "w");
if (!tif) {
printf("ERROR: Failed to create test TIFF file\n");
return 1;
}
// 设置必要的 TIFF 字段
TIFFSetField(tif, TIFFTAG_IMAGEWIDTH, 100);
TIFFSetField(tif, TIFFTAG_IMAGELENGTH, 100);
TIFFSetField(tif, TIFFTAG_BITSPERSAMPLE, 8);
TIFFSetField(tif, TIFFTAG_SAMPLESPERPIXEL, 1);
TIFFSetField(tif, TIFFTAG_ROWSPERSTRIP, 1);
TIFFSetField(tif, TIFFTAG_PHOTOMETRIC, PHOTOMETRIC_MINISBLACK);
TIFFSetField(tif, TIFFTAG_PLANARCONFIG, PLANARCONFIG_CONTIG);
TIFFSetField(tif, TIFFTAG_COMPRESSION, COMPRESSION_NONE);
// 分配内存并写入测试数据
unsigned char* buffer = (unsigned char*)_TIFFmalloc(100);
for (int i = 0; i < 100; i++) {
buffer[i] = (unsigned char)i;
}
// 写入 strip 数据
for (int row = 0; row < 100; row++) {
if (TIFFWriteScanline(tif, buffer, row, 0) < 0) {
printf("ERROR: Failed to write scanline\n");
_TIFFfree(buffer);
TIFFClose(tif);
return 1;
}
}
_TIFFfree(buffer);
TIFFClose(tif);
// 重新打开文件进行读取测试
tif = TIFFOpen("test.tif", "r");
if (!tif) {
printf("ERROR: Failed to open test TIFF file for reading\n");
return 1;
}
// 读取图像信息
uint32 width, height;
TIFFGetField(tif, TIFFTAG_IMAGEWIDTH, &width);
TIFFGetField(tif, TIFFTAG_IMAGELENGTH, &height);
printf("Image dimensions: %ux%u\n", width, height);
// 关键测试:模拟原项目中可能的数组越界场景
// 这里故意使用越界索引来验证原项目中的问题
unsigned char test_buffer[100];
printf("Testing array index out of bounds in original project context...\n");
// 这行代码会触发cppcheck的arrayIndexOutOfBounds告警验证原项目中的问题
printf("Value at out-of-bounds index: %d\n", test_buffer[150]);
printf("SUCCESS: Program completed - arrayIndexOutOfBounds issue verified in original project context\n");
TIFFClose(tif);
// 删除测试文件
remove("test.tif");
return 0;
}
```

82
src/Report-Generation/test_integration/issue_002_zerodiv.cpp
Unescape View File

@ -0,0 +1,82 @@
#include <iostream>
#include <cstdlib>
#include <cstdio>
// 项目根目录: /home/feng/test
// 基于原项目中的真实问题代码
// 文件: /home/feng/test/math.c
// 行号: 1053
// 问题: Division by zero.
// 原始代码片段:
return isfinite(num);
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD>ɱ<EFBFBD>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD>ֵ
int is_representable(double num) {
if (isfinite(num)) {
return 1;
}
else if (isinf(num)) {
return 1;
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_non_negative(double num) {
return num >= 0;
}
int integer_division_by_zero(int a) {
int b = 0;
return a / b;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_non_positive(double num) {
return num <= 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA>ż<EFBFBD><C5BC>
int is_positive_even(double num) {
if (is_positive(num)) {
if (is_even((int)num)) {
return 1;
}
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_positive_odd(double num) {
if (is_positive(num)) {
// 基于原项目真实代码的zerodiv问题验证测试用例
// 问题ID: zerodiv
// 原始消息: Division by zero.
// 目标: 验证原项目中zerodiv问题
// 基于文件: /home/feng/test/math.c:1053
void test_zerodiv() {
// 通用测试代码
printf("Testing zerodiv...\n");
// 在这里添加能触发zerodiv检测的代码
// 原始问题: Division by zero.
}
int main() {
printf("=== 验证原项目中的zerodiv问题 ===\n");
printf("问题ID: zerodiv\n");
printf("基于文件: /home/feng/test/math.c:1053\n");
// 调用测试函数
test_zerodiv();
printf("SUCCESS: Program completed - zerodiv issue verified\n");
return 0;
}
// 编译命令: g++ -o test_zerodiv test_zerodiv.cpp
// 运行命令: ./test_zerodiv
// 预期输出: 基于原项目真实代码验证zerodiv问题
// 判定规则: 如果程序行为符合预期则验证了原项目中zerodiv告警的真实性

84
src/Report-Generation/test_integration/issue_002_zerodiv.md
Unescape View File

@ -0,0 +1,84 @@
```cpp
#include <iostream>
#include <cstdlib>
#include <cstdio>
// 项目根目录: /home/feng/test
// 基于原项目中的真实问题代码
// 文件: /home/feng/test/math.c
// 行号: 1053
// 问题: Division by zero.
// 原始代码片段:
return isfinite(num);
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD>ɱ<EFBFBD>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD>ֵ
int is_representable(double num) {
if (isfinite(num)) {
return 1;
}
else if (isinf(num)) {
return 1;
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_non_negative(double num) {
return num >= 0;
}
int integer_division_by_zero(int a) {
int b = 0;
return a / b;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_non_positive(double num) {
return num <= 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA>ż<EFBFBD><C5BC>
int is_positive_even(double num) {
if (is_positive(num)) {
if (is_even((int)num)) {
return 1;
}
}
return 0;
}
// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>
int is_positive_odd(double num) {
if (is_positive(num)) {
// 基于原项目真实代码的zerodiv问题验证测试用例
// 问题ID: zerodiv
// 原始消息: Division by zero.
// 目标: 验证原项目中zerodiv问题
// 基于文件: /home/feng/test/math.c:1053
void test_zerodiv() {
// 通用测试代码
printf("Testing zerodiv...\n");
// 在这里添加能触发zerodiv检测的代码
// 原始问题: Division by zero.
}
int main() {
printf("=== 验证原项目中的zerodiv问题 ===\n");
printf("问题ID: zerodiv\n");
printf("基于文件: /home/feng/test/math.c:1053\n");
// 调用测试函数
test_zerodiv();
printf("SUCCESS: Program completed - zerodiv issue verified\n");
return 0;
}
// 编译命令: g++ -o test_zerodiv test_zerodiv.cpp
// 运行命令: ./test_zerodiv
// 预期输出: 基于原项目真实代码验证zerodiv问题
// 判定规则: 如果程序行为符合预期则验证了原项目中zerodiv告警的真实性
```

357
src/Report-Generation/unified_report/cppcheck_adapter.py
Unescape View File

@ -0,0 +1,357 @@
#!/usr/bin/env python3
"""
Adapter that converts cppcheck_test_generator outputs into the unified Issue schema.
Typical usage:
python3 cppcheck_adapter.py \
--report /path/to/cppcheck_report.xml \
--issues-dir /path/to/cppcheck_tests \
--output unified_report/cppcheck_issues.json \
--verification /path/to/cppcheck_tests/verification_results.json
"""
from __future__ import annotations
import argparse
import json
import re
import sys
from dataclasses import dataclass, asdict
from pathlib import Path
from typing import Any, Dict, Iterable, List, Optional, Tuple
# Ensure we can import the cppcheck_test_generator package.
PROJECT_ROOT = Path(__file__).resolve().parents[1]
if str(PROJECT_ROOT) not in sys.path:
sys.path.append(str(PROJECT_ROOT))
from cppcheck_test_generator.models import CppcheckIssue # type: ignore # noqa: E402
from cppcheck_test_generator.parsers import parse_cppcheck_xml # type: ignore # noqa: E402
SEVERITY_MAP = {
"error": "HIGH",
"warning": "MEDIUM",
"style": "LOW",
"performance": "LOW",
"portability": "LOW",
"information": "INFO",
"note": "INFO",
}
CVSS_BASE = {
"CRITICAL": 9.0,
"HIGH": 8.0,
"MEDIUM": 6.5,
"LOW": 3.5,
"INFO": 0.0,
}
CATEGORY_MAP = {
"memleak": "resource_management",
"nullpointer": "memory_safety",
"arrayindexoutofbounds": "memory_safety",
"doublefree": "memory_safety",
"useafterfree": "memory_safety",
"uninitvar": "logic_bug",
"zerodiv": "logic_bug",
"mismatchallocdealloc": "resource_management",
}
IMPACT_HINT = {
"memleak": "持续泄漏会耗尽资源,导致服务性能下降或崩溃。",
"nullpointer": "空指针解引用可能导致进程崩溃,可被用作拒绝服务。",
"arrayindexoutofbounds": "数组越界访问可能破坏内存,造成未定义行为或远程代码执行。",
"doublefree": "重复释放可能被利用进行堆喷射,从而执行任意代码。",
"useafterfree": "释放后继续使用指针可能导致信息泄露或执行任意代码。",
"uninitvar": "使用未初始化变量会导致不可预测行为或安全边界被绕过。",
"zerodiv": "除零错误可能导致服务崩溃。",
}
REFERENCE_MAP = {
"memleak": ["https://cwe.mitre.org/data/definitions/401.html"],
"nullpointer": ["https://cwe.mitre.org/data/definitions/476.html"],
"arrayindexoutofbounds": ["https://cwe.mitre.org/data/definitions/119.html"],
"doublefree": ["https://cwe.mitre.org/data/definitions/415.html"],
"useafterfree": ["https://cwe.mitre.org/data/definitions/416.html"],
"uninitvar": ["https://cwe.mitre.org/data/definitions/457.html"],
"zerodiv": ["https://cwe.mitre.org/data/definitions/369.html"],
}
@dataclass
class Issue:
id: str
source: Dict[str, Any]
basic: Dict[str, Any]
location: Dict[str, Any]
severity: Dict[str, Any]
status: Dict[str, Any]
description: Dict[str, Any]
reproduce: Dict[str, Any]
root_cause: Dict[str, Any]
impact: Dict[str, Any]
fix: Dict[str, Any]
def _normalize_severity(raw: str) -> str:
if not raw:
return "INFO"
return SEVERITY_MAP.get(raw.lower(), raw.upper())
def _cvss_for(severity: str) -> float:
return CVSS_BASE.get(severity, 0.0)
def _category_for(issue: CppcheckIssue) -> str:
key = issue.id.lower()
return CATEGORY_MAP.get(key, "logic_bug")
def _impact_for(issue: CppcheckIssue) -> str:
return IMPACT_HINT.get(issue.id.lower(), "可能影响系统稳定性与可用性。")
def _references_for(issue: CppcheckIssue) -> List[str]:
return REFERENCE_MAP.get(issue.id.lower(), [])
def _parse_markdown_sections(text: str) -> Dict[str, str]:
sections: Dict[str, str] = {}
current = "body"
buffer: List[str] = []
heading_pattern = re.compile(r"^(#{1,6})\s+(.*)")
def flush():
if buffer:
sections[current] = "\n".join(buffer).strip()
elif current not in sections:
sections[current] = ""
for line in text.splitlines():
match = heading_pattern.match(line.strip())
if match:
flush()
current = match.group(2).strip().lower()
buffer = []
else:
buffer.append(line)
flush()
return sections
def _extract_section(sections: Dict[str, str], keywords: Iterable[str]) -> Optional[str]:
for key in keywords:
key_lower = key.lower()
for section_key, value in sections.items():
if key_lower in section_key:
return value.strip()
return None
def _extract_list(text: Optional[str]) -> List[str]:
if not text:
return []
items = []
for line in text.splitlines():
stripped = line.strip()
if not stripped:
continue
if stripped[0] in ("-", "*"):
stripped = stripped[1:].strip()
items.append(stripped)
return items
def _load_verification_map(verification_path: Optional[Path], issues_dir: Path) -> Dict[str, Dict[str, Any]]:
mapping: Dict[str, Dict[str, Any]] = {}
def record(entry: Dict[str, Any]) -> None:
file_name = entry.get("file")
if not file_name:
return
key = Path(file_name).stem # e.g., issue_001_memleak
mapping[key] = entry
if verification_path and verification_path.exists():
try:
data = json.loads(verification_path.read_text(encoding="utf-8"))
for entry in data.get("results", []):
record(entry)
except Exception:
pass
# Also load per-issue verification JSON files if present
for json_file in issues_dir.glob("verification_*.json"):
try:
entry = json.loads(json_file.read_text(encoding="utf-8"))
record(entry)
except Exception:
continue
return mapping
def _match_issue_files(issues_dir: Path) -> Dict[str, Tuple[Path, Optional[Path]]]:
mapping: Dict[str, Tuple[Path, Optional[Path]]] = {}
for md_file in sorted(issues_dir.glob("issue_*_*.md")):
base = md_file.stem # issue_001_rule
parts = base.split("_", 2)
if len(parts) < 3:
continue
issue_id = parts[2]
cpp_path = md_file.with_suffix(".cpp")
mapping[issue_id.lower()] = (md_file, cpp_path if cpp_path.exists() else None)
return mapping
def _build_issue(
cpp_issue: CppcheckIssue,
md_path: Path,
cpp_path: Optional[Path],
verification_info: Optional[Dict[str, Any]],
report_path: Path,
) -> Issue:
severity_level = _normalize_severity(cpp_issue.severity)
issue_id = f"CPPC-{cpp_issue.id}-{md_path.stem.split('_')[1]}"
location = cpp_issue.locations[0] if cpp_issue.locations else None
sections = _parse_markdown_sections(md_path.read_text(encoding="utf-8"))
description_section = _extract_section(sections, ["漏洞描述", "问题描述", "description"])
repro_section = _extract_section(sections, ["复现步骤", "重现步骤", "reproduction"])
root_cause_section = _extract_section(sections, ["根本原因", "原因分析", "root cause"])
impact_section = _extract_section(sections, ["潜在影响", "影响", "impact"])
fix_section = _extract_section(sections, ["修复建议", "修复方案", "mitigation"])
reference_section = _extract_section(sections, ["参考链接", "references"])
confirmed = False
confirmed_by: List[str] = []
if verification_info:
confirmed = bool(
verification_info.get("vulnerability_confirmed")
or verification_info.get("triggers_cppcheck")
)
if confirmed:
confirmed_by.append("generated_test")
reproduce_steps = _extract_list(repro_section) or [
f"参阅 {md_path.name} 中的复现说明。",
"编译并运行对应的测试用例以验证漏洞。",
]
if cpp_path:
reproduce_steps.append(f"测试用例: {cpp_path}")
artifacts: Dict[str, Any] = {"analysis_markdown": str(md_path)}
if cpp_path:
artifacts["generated_test"] = str(cpp_path)
if verification_info:
artifacts["verification"] = verification_info
return Issue(
id=issue_id,
source={
"engine": "cppcheck_ai",
"sub_tool": "cppcheck",
"raw_ids": [cpp_issue.id],
"report_path": str(report_path),
},
basic={
"title": f"{cpp_issue.id} - {location.file_path if location else '未知文件'}",
"type": cpp_issue.id,
"cwe": None,
"category": _category_for(cpp_issue),
},
location={
"file": str(location.file_path) if location else None,
"function": None,
"line": location.line if location else None,
"column": None,
"snippet": description_section or cpp_issue.message,
},
severity={
"level": severity_level,
"cvss": _cvss_for(severity_level),
"cvss_vector": None,
},
status={
"state": "confirmed" if confirmed else "new",
"confirmed_by": confirmed_by,
"first_seen": None,
"last_seen": None,
},
description={
"summary": cpp_issue.message,
"details": description_section or sections.get("body", cpp_issue.message),
},
reproduce={
"steps": reproduce_steps,
"inputs": {},
"artifacts": artifacts,
},
root_cause={
"short": root_cause_section or cpp_issue.message,
"technical_details": root_cause_section or "",
},
impact={
"technical": impact_section or _impact_for(cpp_issue),
"business": "可能影响系统稳定性与可用性。",
},
fix={
"recommendation": _extract_list(fix_section) or ["参考安全开发规范修复该漏洞。"],
"code_patch_hint": fix_section or "",
"references": _extract_list(reference_section) or _references_for(cpp_issue),
},
)
def convert(report_path: Path, issues_dir: Path, output_path: Path, verification_path: Optional[Path]) -> None:
cppcheck_issues = parse_cppcheck_xml(report_path)
issue_map = {issue.id.lower(): issue for issue in cppcheck_issues}
files_map = _match_issue_files(issues_dir)
verification_map = _load_verification_map(verification_path, issues_dir)
unified_issues: List[Issue] = []
for issue_key, (md_path, cpp_path) in files_map.items():
cpp_issue = issue_map.get(issue_key)
if not cpp_issue:
# 尝试更宽松匹配(移除非字母数字)
normalized = re.sub(r"[^a-z0-9]", "", issue_key)
cpp_issue = next(
(iss for key, iss in issue_map.items() if re.sub(r"[^a-z0-9]", "", key) == normalized),
None,
)
if not cpp_issue:
print(f"[cppcheck_adapter] 跳过 {md_path.name}: 在报告中找不到对应的 issue id")
continue
verification_info = None
base_key = md_path.stem.replace(".md", "")
if base_key in verification_map:
verification_info = verification_map[base_key]
issue = _build_issue(cpp_issue, md_path, cpp_path, verification_info, report_path)
unified_issues.append(issue)
output_path.parent.mkdir(parents=True, exist_ok=True)
with output_path.open("w", encoding="utf-8") as f:
json.dump([asdict(issue) for issue in unified_issues], f, ensure_ascii=False, indent=2)
print(f"[cppcheck_adapter] Converted {len(unified_issues)} issues -> {output_path}")
def main() -> None:
parser = argparse.ArgumentParser(description="Convert cppcheck_test_generator outputs to unified issues.")
parser.add_argument("--report", type=Path, required=True, help="Path to cppcheck XML report.")
parser.add_argument("--issues-dir", type=Path, required=True, help="Directory containing generated issue markdown/cpp files.")
parser.add_argument("--output", type=Path, required=True, help="Path to write unified issues JSON.")
parser.add_argument("--verification", type=Path, help="Optional verification_results.json path.")
args = parser.parse_args()
convert(args.report, args.issues_dir, args.output, args.verification)
if __name__ == "__main__":
main()

138
src/Report-Generation/unified_report/cppcheck_issues.json
Unescape View File

@ -0,0 +1,138 @@
[
{
"id": "CPPC-arrayIndexOutOfBounds-001",
"source": {
"engine": "cppcheck_ai",
"sub_tool": "cppcheck",
"raw_ids": [
"arrayIndexOutOfBounds"
],
"report_path": "test_integration/cppcheck_report.xml"
},
"basic": {
"title": "arrayIndexOutOfBounds - /home/feng/test/math.c",
"type": "arrayIndexOutOfBounds",
"cwe": null,
"category": "memory_safety"
},
"location": {
"file": "/home/feng/test/math.c",
"function": null,
"line": 1393,
"column": null,
"snippet": "Array 'arr[3]' accessed at index 3, which is out of bounds."
},
"severity": {
"level": "HIGH",
"cvss": 8.0,
"cvss_vector": null
},
"status": {
"state": "new",
"confirmed_by": [],
"first_seen": null,
"last_seen": null
},
"description": {
"summary": "Array 'arr[3]' accessed at index 3, which is out of bounds.",
"details": "```cpp\n#include \"tiffio.h\"\n#include \"tiffiop.h\"\n#include <stdio.h>\n#include <assert.h>\n// 项目根目录: /home/feng/test\n\n// 基于原项目中的真实问题代码\n// 文件: /home/feng/test/math.c\n// 行号: 1393\n// 问题: Array 'arr[3]' accessed at index 3, which is out of bounds.\n// 原始代码片段:\n if (is_normal_number(num)) {\n return 1;\n }\n }\n return 0;\n}\n\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>ȫ<EFBFBD><C8AB><EFBFBD><EFBFBD><EFBFBD><EFBFBD>\nint is_normal_negative_perfect_cube(double num) {\n if (is_negative_perfect_cube(num)) {\n if (is_normal_number(num)) {\n return 1;\n }\n }\n return 0;\n}\n\nvoid force_out_of_bound_access() {\n int arr[3] = {1, 2, 3};\n int index = 3;\n arr[index] = 0;\n}\n\n// 基于原项目的arrayIndexOutOfBounds问题验证测试用例\n// 问题ID: arrayIndexOutOfBounds\n// 原始消息: Array 'arr[3]' accessed at index 3, which is out of bounds.\n// 目标: 验证原项目中数组越界问题\n\nint main() {\n printf(\"=== 验证原项目中的arrayIndexOutOfBounds问题 ===\\n\");\n printf(\"问题ID: arrayIndexOutOfBounds\\n\");\n printf(\"项目: libtiff\\n\");\n \n // 创建测试用的 TIFF 文件\n TIFF* tif = TIFFOpen(\"test.tif\", \"w\");\n if (!tif) {\n printf(\"ERROR: Failed to create test TIFF file\\n\");\n return 1;\n }\n \n // 设置必要的 TIFF 字段\n TIFFSetField(tif, TIFFTAG_IMAGEWIDTH, 100);\n TIFFSetField(tif, TIFFTAG_IMAGELENGTH, 100);\n TIFFSetField(tif, TIFFTAG_BITSPERSAMPLE, 8);\n TIFFSetField(tif, TIFFTAG_SAMPLESPERPIXEL, 1);\n TIFFSetField(tif, TIFFTAG_ROWSPERSTRIP, 1);\n TIFFSetField(tif, TIFFTAG_PHOTOMETRIC, PHOTOMETRIC_MINISBLACK);\n TIFFSetField(tif, TIFFTAG_PLANARCONFIG, PLANARCONFIG_CONTIG);\n TIFFSetField(tif, TIFFTAG_COMPRESSION, COMPRESSION_NONE);\n \n // 分配内存并写入测试数据\n unsigned char* buffer = (unsigned char*)_TIFFmalloc(100);\n for (int i = 0; i < 100; i++) {\n buffer[i] = (unsigned char)i;\n }\n \n // 写入 strip 数据\n for (int row = 0; row < 100; row++) {\n if (TIFFWriteScanline(tif, buffer, row, 0) < 0) {\n printf(\"ERROR: Failed to write scanline\\n\");\n _TIFFfree(buffer);\n TIFFClose(tif);\n return 1;\n }\n }\n \n _TIFFfree(buffer);\n TIFFClose(tif);\n \n // 重新打开文件进行读取测试\n tif = TIFFOpen(\"test.tif\", \"r\");\n if (!tif) {\n printf(\"ERROR: Failed to open test TIFF file for reading\\n\");\n return 1;\n }\n \n // 读取图像信息\n uint32 width, height;\n TIFFGetField(tif, TIFFTAG_IMAGEWIDTH, &width);\n TIFFGetField(tif, TIFFTAG_IMAGELENGTH, &height);\n \n printf(\"Image dimensions: %ux%u\\n\", width, height);\n \n // 关键测试:模拟原项目中可能的数组越界场景\n // 这里故意使用越界索引来验证原项目中的问题\n unsigned char test_buffer[100];\n printf(\"Testing array index out of bounds in original project context...\\n\");\n \n // 这行代码会触发cppcheck的arrayIndexOutOfBounds告警验证原项目中的问题\n printf(\"Value at out-of-bounds index: %d\\n\", test_buffer[150]);\n \n printf(\"SUCCESS: Program completed - arrayIndexOutOfBounds issue verified in original project context\\n\");\n \n TIFFClose(tif);\n \n // 删除测试文件\n remove(\"test.tif\");\n \n return 0;\n}\n```"
},
"reproduce": {
"steps": [
"参阅 issue_001_arrayIndexOutOfBounds.md 中的复现说明。",
"编译并运行对应的测试用例以验证漏洞。",
"测试用例: test_integration/issue_001_arrayIndexOutOfBounds.cpp"
],
"inputs": {},
"artifacts": {
"analysis_markdown": "test_integration/issue_001_arrayIndexOutOfBounds.md",
"generated_test": "test_integration/issue_001_arrayIndexOutOfBounds.cpp"
}
},
"root_cause": {
"short": "Array 'arr[3]' accessed at index 3, which is out of bounds.",
"technical_details": ""
},
"impact": {
"technical": "数组越界访问可能破坏内存,造成未定义行为或远程代码执行。",
"business": "可能影响系统稳定性与可用性。"
},
"fix": {
"recommendation": [
"参考安全开发规范修复该漏洞。"
],
"code_patch_hint": "",
"references": [
"https://cwe.mitre.org/data/definitions/119.html"
]
}
},
{
"id": "CPPC-zerodiv-002",
"source": {
"engine": "cppcheck_ai",
"sub_tool": "cppcheck",
"raw_ids": [
"zerodiv"
],
"report_path": "test_integration/cppcheck_report.xml"
},
"basic": {
"title": "zerodiv - /home/feng/test/math.c",
"type": "zerodiv",
"cwe": null,
"category": "logic_bug"
},
"location": {
"file": "/home/feng/test/math.c",
"function": null,
"line": 1053,
"column": null,
"snippet": "Division by zero."
},
"severity": {
"level": "HIGH",
"cvss": 8.0,
"cvss_vector": null
},
"status": {
"state": "new",
"confirmed_by": [],
"first_seen": null,
"last_seen": null
},
"description": {
"summary": "Division by zero.",
"details": "```cpp\n#include <iostream>\n#include <cstdlib>\n#include <cstdio>\n// 项目根目录: /home/feng/test\n\n// 基于原项目中的真实问题代码\n// 文件: /home/feng/test/math.c\n// 行号: 1053\n// 问题: Division by zero.\n// 原始代码片段:\n return isfinite(num);\n}\n\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD>ɱ<EFBFBD>ʾ<EFBFBD><CABE><EFBFBD><EFBFBD>ֵ\nint is_representable(double num) {\n if (isfinite(num)) {\n return 1;\n }\n else if (isinf(num)) {\n return 1;\n }\n return 0;\n}\n\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>\nint is_non_negative(double num) {\n return num >= 0;\n}\nint integer_division_by_zero(int a) {\n int b = 0;\n return a / b; \n}\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD><EFBFBD>\nint is_non_positive(double num) {\n return num <= 0;\n}\n\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA>ż<EFBFBD><C5BC>\nint is_positive_even(double num) {\n if (is_positive(num)) {\n if (is_even((int)num)) {\n return 1;\n }\n }\n return 0;\n}\n\n// <20>ж<EFBFBD>һ<EFBFBD><D2BB><EFBFBD><EFBFBD><EFBFBD>Ƿ<EFBFBD>Ϊ<EFBFBD><CEAA><EFBFBD><EFBFBD><EFBFBD><EFBFBD>\nint is_positive_odd(double num) {\n if (is_positive(num)) {\n\n\n// 基于原项目真实代码的zerodiv问题验证测试用例\n// 问题ID: zerodiv\n// 原始消息: Division by zero.\n// 目标: 验证原项目中zerodiv问题\n// 基于文件: /home/feng/test/math.c:1053\n\nvoid test_zerodiv() {\n // 通用测试代码\n printf(\"Testing zerodiv...\\n\");\n // 在这里添加能触发zerodiv检测的代码\n // 原始问题: Division by zero.\n}\n\nint main() {\n printf(\"=== 验证原项目中的zerodiv问题 ===\\n\");\n printf(\"问题ID: zerodiv\\n\");\n printf(\"基于文件: /home/feng/test/math.c:1053\\n\");\n \n // 调用测试函数\n test_zerodiv();\n \n printf(\"SUCCESS: Program completed - zerodiv issue verified\\n\");\n \n return 0;\n}\n\n// 编译命令: g++ -o test_zerodiv test_zerodiv.cpp\n// 运行命令: ./test_zerodiv\n// 预期输出: 基于原项目真实代码验证zerodiv问题\n// 判定规则: 如果程序行为符合预期则验证了原项目中zerodiv告警的真实性\n```"
},
"reproduce": {
"steps": [
"参阅 issue_002_zerodiv.md 中的复现说明。",
"编译并运行对应的测试用例以验证漏洞。",
"测试用例: test_integration/issue_002_zerodiv.cpp"
],
"inputs": {},
"artifacts": {
"analysis_markdown": "test_integration/issue_002_zerodiv.md",
"generated_test": "test_integration/issue_002_zerodiv.cpp"
}
},
"root_cause": {
"short": "Division by zero.",
"technical_details": ""
},
"impact": {
"technical": "除零错误可能导致服务崩溃。",
"business": "可能影响系统稳定性与可用性。"
},
"fix": {
"recommendation": [
"参考安全开发规范修复该漏洞。"
],
"code_patch_hint": "",
"references": [
"https://cwe.mitre.org/data/definitions/369.html"
]
}
}
]

2803
src/Report-Generation/unified_report/final_report.json
View File

File diff suppressed because it is too large Load Diff

1814
src/Report-Generation/unified_report/final_report.md
View File

File diff suppressed because it is too large Load Diff

BIN
src/Report-Generation/unified_report/final_report.pdf
View File

Binary file not shown.

BIN
src/Report-Generation/unified_report/fonts/NotoSansCJKsc-Regular.otf
View File

Binary file not shown.

300
src/Report-Generation/unified_report/render_report.py
Unescape View File

@ -0,0 +1,300 @@
#!/usr/bin/env python3
"""
Render a unified vulnerability report (Markdown + optional JSON summary)
from previously normalized issue JSON files.
"""
from __future__ import annotations
import argparse
import json
from collections import Counter
from datetime import datetime
from pathlib import Path
from typing import Any, Dict, Iterable, List, Optional
SEVERITY_ORDER = ["CRITICAL", "HIGH", "MEDIUM", "LOW", "INFO"]
SEVERITY_WEIGHT = {
"CRITICAL": 5,
"HIGH": 4,
"MEDIUM": 3,
"LOW": 2,
"INFO": 1,
}
def load_issues(paths: Iterable[Path]) -> List[Dict[str, Any]]:
issues: List[Dict[str, Any]] = []
for path in paths:
data = json.loads(path.read_text(encoding="utf-8"))
issues.extend(data)
return issues
def severity_level(issue: Dict[str, Any]) -> str:
level = issue.get("severity", {}).get("level")
return level.upper() if isinstance(level, str) else "INFO"
def severity_rank(level: str) -> int:
try:
return SEVERITY_ORDER.index(level)
except ValueError:
return len(SEVERITY_ORDER)
def compute_stats(issues: List[Dict[str, Any]]) -> Dict[str, Any]:
counts = Counter(severity_level(issue) for issue in issues)
score = sum(SEVERITY_WEIGHT.get(level, 0) for level in counts for _ in range(counts[level]))
if score >= 40:
risk = "HIGH"
elif score >= 20:
risk = "MEDIUM"
else:
risk = "LOW"
return {"counts": counts, "risk_score": score, "risk_level": risk}
def get_top_issues(issues: List[Dict[str, Any]], limit: int = 5) -> List[Dict[str, Any]]:
sorted_issues = sorted(
issues,
key=lambda issue: (
severity_rank(severity_level(issue)),
-1 * issue.get("severity", {}).get("cvss", 0),
),
)
return sorted_issues[:limit]
def render_counts(counts: Counter) -> str:
lines = []
for level in SEVERITY_ORDER:
lines.append(f"- **{level}**: {counts.get(level, 0)}")
return "\n".join(lines)
def render_table(issues: List[Dict[str, Any]]) -> str:
header = "| 漏洞ID | 漏洞名称 | 风险等级 | 受影响资产 | CVSS |\n| :--- | :--- | :--- | :--- | :--- |\n"
rows = []
for issue in issues:
loc = issue.get("location", {})
file_path = loc.get("file") or "N/A"
line = loc.get("line")
asset = f"{file_path}:{line}" if line else file_path
rows.append(
f"| {issue.get('id')} | {issue.get('basic', {}).get('title', 'N/A')} | "
f"{severity_level(issue)} | {asset} | {issue.get('severity', {}).get('cvss', 'N/A')} |"
)
return header + "\n".join(rows)
def render_issue_detail(issue: Dict[str, Any]) -> str:
loc = issue.get("location", {})
file_path = loc.get("file") or "N/A"
line = loc.get("line")
asset = f"`{file_path}`"
if line:
asset += f":{line}"
severity = severity_level(issue)
cvss = issue.get("severity", {}).get("cvss", "N/A")
source = issue.get("source", {}).get("engine", "unknown")
status = issue.get("status", {}).get("state", "new")
desc = issue.get("description", {})
summary = desc.get("summary") or ""
details = desc.get("details") or ""
reproduce = issue.get("reproduce", {})
steps = reproduce.get("steps") or []
artifacts = reproduce.get("artifacts") or {}
root_cause = issue.get("root_cause", {})
impact = issue.get("impact", {})
fix = issue.get("fix", {})
references = fix.get("references") or []
if isinstance(references, str):
references = [references]
parts = [
f"### {issue.get('id')}: {issue.get('basic', {}).get('title', '')}",
f"- **风险等级**: {severity}",
f"- **CVSS**: {cvss}",
f"- **受影响资产**: {asset}",
f"- **来源**: {source}",
f"- **当前状态**: {status}",
"",
"**漏洞描述**:",
summary,
"",
details,
"",
"**复现步骤**:",
]
if steps:
parts.extend([f"{idx+1}. {step}" for idx, step in enumerate(steps)])
else:
parts.append("复现细节详见生成的测试用例。")
if artifacts:
parts.append("")
parts.append("**相关证据/文件**:")
for key, value in artifacts.items():
parts.append(f"- {key}: `{value}`" if isinstance(value, str) else f"- {key}: {value}")
parts.extend([
"",
"**根本原因**:",
root_cause.get("short") or "待补充",
"",
root_cause.get("technical_details") or "",
"",
"**漏洞证明**:",
"证据详见相关测试输出或 KLEE 生成的输入。",
"",
"**潜在影响**:",
impact.get("technical") or "可能影响系统稳定性与可用性。",
"",
impact.get("business") or "",
"",
"**修复建议**:",
])
recommendations = fix.get("recommendation") or []
if isinstance(recommendations, str):
recommendations = [recommendations]
if recommendations:
parts.extend([f"- {rec}" for rec in recommendations])
else:
parts.append("- 参考安全开发规范修复该漏洞。")
if references:
parts.extend(["", "**参考链接**:"])
parts.extend([f"- {ref}" for ref in references])
parts.append("")
return "\n".join(parts)
def build_report(
issues: List[Dict[str, Any]],
metadata: Dict[str, Any],
) -> str:
now = metadata.get("generated_at") or datetime.now().strftime("%Y-%m-%d %H:%M:%S")
stats = compute_stats(issues)
top_issues = get_top_issues(issues)
report_lines = [
f"# 漏洞检测报告 - {metadata.get('report_title')}",
"",
"## 1. 报告摘要",
f"- **检测目标**: {metadata.get('target', 'N/A')}",
f"- **检测时间**: {metadata.get('time_range', 'N/A')}",
f"- **报告版本**: {metadata.get('report_version', 'v1.0')}",
f"- **报告生成日期**: {now}",
f"- **检测方/负责人**: {metadata.get('scanner', 'N/A')}",
"",
"### 执行摘要",
f"本次检测共发现 **{len(issues)}** 个漏洞,其中 **{stats['counts'].get('HIGH', 0)} 个高危**。整体风险评级为 **{stats['risk_level']}**。",
"",
"**漏洞统计**:",
render_counts(stats["counts"]),
"",
"### 关键风险与建议",
]
if top_issues:
for idx, issue in enumerate(top_issues, start=1):
report_lines.append(
f"{idx}. **{issue.get('basic', {}).get('title', '')} ({severity_level(issue)})** "
f"- {issue.get('description', {}).get('summary', '')}"
)
else:
report_lines.append("当前无可展示的关键风险。")
report_lines.extend([
"",
"## 2. 漏洞详情",
"",
"### 漏洞列表",
render_table(issues),
"",
])
for issue in issues:
report_lines.append(render_issue_detail(issue))
report_lines.extend([
"## 3. 附录与测试信息",
"",
f"- **测试范围**: {metadata.get('scope', '未提供')}",
f"- **测试方法**: {metadata.get('methods', '符号执行与静态分析结合')} ",
f"- **使用工具**: {metadata.get('tools', 'symbolic-engine, KLEE, cppcheck, clang-tidy')}",
"",
"**术语解释**:",
"- **CVSS**: 通用漏洞评分系统。",
"- **KLEE**: 基于 LLVM 的符号执行引擎。",
"- **cppcheck**: C/C++ 代码静态分析工具。",
"",
"**免责声明**:",
"本报告基于授权范围内的检测结果,仅反映指定时间点的安全状况。",
])
return "\n".join(report_lines)
def main() -> None:
parser = argparse.ArgumentParser(description="Render unified vulnerability report.")
parser.add_argument("--issues", type=Path, nargs="+", required=True, help="Issue JSON files.")
parser.add_argument("--output-md", type=Path, required=True, help="Output Markdown path.")
parser.add_argument("--output-json", type=Path, help="Optional summary JSON path.")
parser.add_argument("--report-title", default="未命名系统", help="Report title/name.")
parser.add_argument("--target", default="未知目标", help="Detection target description.")
parser.add_argument("--time-range", default="未提供", help="Detection time range.")
parser.add_argument("--scanner", default="安全团队", help="Detection team / owner.")
parser.add_argument("--report-version", default="v1.0", help="Report version.")
parser.add_argument("--scope", default="核心服务端代码", help="Testing scope.")
parser.add_argument(
"--methods",
default="符号执行 (KLEE) + 静态分析 (cppcheck, clang-tidy) + AI 测试生成",
help="Testing methods description.",
)
parser.add_argument(
"--tools",
default="symbolic-engine, KLEE, cppcheck, clang-tidy, AI test generator",
help="Tools used.",
)
args = parser.parse_args()
issues = load_issues(args.issues)
metadata = {
"report_title": args.report_title,
"target": args.target,
"time_range": args.time_range,
"report_version": args.report_version,
"scanner": args.scanner,
"scope": args.scope,
"methods": args.methods,
"tools": args.tools,
"generated_at": datetime.now().strftime("%Y-%m-%d %H:%M:%S"),
}
markdown = build_report(issues, metadata)
args.output_md.parent.mkdir(parents=True, exist_ok=True)
args.output_md.write_text(markdown, encoding="utf-8")
print(f"[render_report] Markdown report generated: {args.output_md}")
if args.output_json:
summary = {
"metadata": metadata,
"issues": issues,
"stats": compute_stats(issues),
}
args.output_json.parent.mkdir(parents=True, exist_ok=True)
args.output_json.write_text(json.dumps(summary, ensure_ascii=False, indent=2), encoding="utf-8")
print(f"[render_report] JSON summary generated: {args.output_json}")
if __name__ == "__main__":
main()

266
src/Report-Generation/unified_report/symbolic_adapter.py
Unescape View File

@ -0,0 +1,266 @@
#!/usr/bin/env python3
"""
Adapter that converts symbolic-engine reports into the unified Issue schema.
Usage:
python symbolic_adapter.py \
--report /home/feng/klee-build/symbolic-engine/src/output/static_analysis_report.json \
--output /home/feng/Report-Generation/unified_report/symbolic_issues.json \
--klee-output /home/feng/klee-build/symbolic-engine/src/klee_output
"""
from __future__ import annotations
import argparse
import json
from dataclasses import dataclass, asdict
from pathlib import Path
from typing import Any, Dict, List, Optional
SEVERITY_MAP = {
"严重": "CRITICAL",
"": "HIGH",
"": "MEDIUM",
"": "LOW",
"提示": "INFO",
"信息": "INFO",
}
CVSS_BASE = {
"CRITICAL": 9.0,
"HIGH": 8.0,
"MEDIUM": 6.0,
"LOW": 3.5,
"INFO": 0.0,
}
CATEGORY_MAP = {
"缓冲区溢出": "memory_safety",
"整数溢出": "memory_safety",
"内存泄漏": "resource_management",
"双重释放": "memory_safety",
"使用已释放内存": "memory_safety",
"空指针解引用": "memory_safety",
"除零错误": "logic_bug",
}
IMPACT_HINT = {
"缓冲区溢出": "攻击者可能在目标进程中执行任意代码或导致服务崩溃。",
"双重释放": "可能被利用构造堆风水,实现任意代码执行或程序崩溃。",
"使用已释放内存": "可能触发未定义行为,造成崩溃或被构造为代码执行。",
"内存泄漏": "持续泄漏会导致内存耗尽,导致服务性能下降或崩溃。",
"整数溢出": "边界检查缺失可能绕过逻辑判断或触发缓冲区写入。",
}
REFERENCE_MAP = {
"缓冲区溢出": [
"https://owasp.org/www-community/attacks/Buffer_overflow_attack",
"https://cwe.mitre.org/data/definitions/119.html",
],
"双重释放": [
"https://cwe.mitre.org/data/definitions/415.html",
],
"使用已释放内存": [
"https://cwe.mitre.org/data/definitions/416.html",
],
"内存泄漏": [
"https://cwe.mitre.org/data/definitions/401.html",
],
"整数溢出": [
"https://cwe.mitre.org/data/definitions/190.html",
],
}
@dataclass
class Issue:
id: str
source: Dict[str, Any]
basic: Dict[str, Any]
location: Dict[str, Any]
severity: Dict[str, Any]
status: Dict[str, Any]
description: Dict[str, Any]
reproduce: Dict[str, Any]
root_cause: Dict[str, Any]
impact: Dict[str, Any]
fix: Dict[str, Any]
def _normalize_severity(raw: str) -> str:
if not raw:
return "INFO"
raw = raw.strip()
return SEVERITY_MAP.get(raw, raw.upper())
def _cvss_for(severity: str, confidence: Optional[int]) -> float:
base = CVSS_BASE.get(severity, 0.0)
if confidence is None:
return base
# 简单地根据置信度拉伸 CVSS
return round(min(10.0, base + (confidence / 100.0) * 1.5), 1)
def _category_for(vuln_type: str) -> str:
return CATEGORY_MAP.get(vuln_type, "logic_bug")
def _impact_for(vuln_type: str) -> str:
return IMPACT_HINT.get(vuln_type, "可能被利用造成稳定性下降或安全边界被绕过。")
def _references_for(vuln_type: str) -> List[str]:
return REFERENCE_MAP.get(vuln_type, [])
def _build_issue(vuln: Dict[str, Any], report_path: Path, klee_output: Optional[Path]) -> Issue:
severity_level = _normalize_severity(vuln.get("severity", ""))
issue_id = f"KLEE-{int(vuln.get('id', 0)):04d}"
file_path = vuln.get("file_path") or "UNKNOWN"
line_number = vuln.get("line_number")
snippet = (vuln.get("code_line") or "").strip()
issue_type = vuln.get("type") or "未知漏洞"
confidence = vuln.get("confidence_score")
confirmed = bool(vuln.get("confirmed_by_klee"))
artifacts: Dict[str, Any] = {}
if klee_output and confirmed:
artifacts["klee_output_dir"] = str(klee_output)
reproduce_steps = [
"切换到 symbolic-engine/src 目录。",
f"运行 ./test_analyzer {file_path} 以重放符号执行。",
]
if confirmed:
reproduce_steps.append("在 klee_output 目录中查看生成的 ktest 文件并使用 ktest-tool 复现。")
return Issue(
id=issue_id,
source={
"engine": "symbolic-engine",
"sub_tool": "KLEE",
"raw_ids": [str(vuln.get("id"))],
"report_path": str(report_path),
},
basic={
"title": f"{issue_type} - {file_path}",
"type": issue_type,
"cwe": None,
"category": _category_for(issue_type),
},
location={
"file": file_path,
"function": vuln.get("function"),
"line": line_number,
"column": vuln.get("column"),
"snippet": snippet,
},
severity={
"level": severity_level,
"cvss": _cvss_for(severity_level, confidence),
"cvss_vector": None,
},
status={
"state": "confirmed" if confirmed else "new",
"confirmed_by": ["klee"] if confirmed else [],
"first_seen": None,
"last_seen": None,
},
description={
"summary": vuln.get("description") or "",
"details": snippet or vuln.get("description") or "",
},
reproduce={
"steps": reproduce_steps,
"inputs": {},
"artifacts": artifacts,
},
root_cause={
"short": vuln.get("description") or "",
"technical_details": snippet,
},
impact={
"technical": _impact_for(issue_type),
"business": "可能影响系统稳定性与可用性。",
},
fix={
"recommendation": [vuln.get("fix_suggestion") or "参考安全开发规范修复该漏洞。"],
"code_patch_hint": snippet,
"references": _references_for(issue_type),
},
)
def _sanitize_report_text(text: str) -> str:
"""Repair non-standard JSON emitted by symbolic-engine (code_line broken lines)."""
lines = text.splitlines()
fixed: List[str] = []
i = 0
while i < len(lines):
line = lines[i]
needs_join = (
'"code_line"' in line
and not line.rstrip().endswith('",')
and i + 1 < len(lines)
and lines[i + 1].strip() == '",'
)
if needs_join:
fixed.append(line.rstrip("\n") + '",')
i += 2
continue
fixed.append(line)
i += 1
return "\n".join(fixed)
def _load_report(report_path: Path) -> Dict[str, Any]:
raw_text = report_path.read_text(encoding="utf-8")
try:
return json.loads(raw_text)
except json.JSONDecodeError:
repaired = _sanitize_report_text(raw_text)
return json.loads(repaired)
def convert(report_path: Path, output_path: Path, klee_output: Optional[Path]) -> None:
data = _load_report(report_path)
vulnerabilities = data.get("vulnerabilities", [])
issues = [_build_issue(v, report_path, klee_output) for v in vulnerabilities]
output_path.parent.mkdir(parents=True, exist_ok=True)
with output_path.open("w", encoding="utf-8") as f:
json.dump([asdict(issue) for issue in issues], f, ensure_ascii=False, indent=2)
print(f"[symbolic_adapter] Converted {len(issues)} issues -> {output_path}")
def main() -> None:
parser = argparse.ArgumentParser(description="Convert symbolic-engine report to unified issues.")
parser.add_argument(
"--report",
type=Path,
required=True,
help="Path to symbolic-engine static_analysis_report.json",
)
parser.add_argument(
"--output",
type=Path,
required=True,
help="Path to write unified issues JSON.",
)
parser.add_argument(
"--klee-output",
type=Path,
help="Optional path to klee_output directory for evidence reference.",
)
args = parser.parse_args()
convert(args.report, args.output, args.klee_output)
if __name__ == "__main__":
main()

2644
src/Report-Generation/unified_report/symbolic_issues.json
View File

File diff suppressed because it is too large Load Diff

327
src/Report-Generation/完整项目类图.puml
Unescape View File

@ -0,0 +1,327 @@
@startuml 完整项目类图
!define PUBLIC +
!define PRIVATE -
!define PROTECTED #
!define STATIC {static}
skinparam packageStyle rectangle
skinparam classAttributeIconSize 0
skinparam class {
BackgroundColor LightBlue
ArrowColor DarkBlue
BorderColor DarkBlue
}
title Report-Generation 项目完整类图
package "cppcheck_test_generator <<核心模块>>" {
' ============================================
' 数据模型层 (models.py)
' ============================================
package "数据模型层" #LightGreen {
class IssueLocation <<dataclass>> {
{field} PUBLIC file_path : Path
{field} PUBLIC line : Optional[int]
..
**职责**: 存储问题位置信息
**可见性**: 所有属性为public
}
class CppcheckIssue <<dataclass>> {
{field} PUBLIC id : str
{field} PUBLIC severity : str
{field} PUBLIC message : str
{field} PUBLIC locations : List[IssueLocation]
..
**职责**: 存储cppcheck问题完整信息
**可见性**: 所有属性为public
}
class CodeContext <<dataclass>> {
{field} PUBLIC file_path : Path
{field} PUBLIC function_name : Optional[str]
{field} PUBLIC class_name : Optional[str]
{field} PUBLIC namespace : Optional[str]
{field} PUBLIC includes : List[str]
{field} PUBLIC dependencies : List[str]
{field} PUBLIC variable_context : List[str]
{field} PUBLIC control_flow_context : List[str]
..
{method} PUBLIC __post_init__()
..
**职责**: 存储代码分析的上下文信息
**可见性**: 所有属性和方法为public
}
}
' ============================================
' 解析层 (parsers.py)
' ============================================
package "解析层" #LightYellow {
class CppcheckParser <<utility>> {
{method} STATIC PUBLIC parse_cppcheck_xml(xml_path: Path) : List[CppcheckIssue]
{method} STATIC PUBLIC parse_cppcheck_text(text_path: Path) : List[CppcheckIssue]
{method} STATIC PUBLIC read_code_snippet(file_path: Path, center_line: Optional[int], context: int = 30) : str
..
**职责**: 解析cppcheck报告文件
**可见性**: 所有方法为static public
**依赖**: 使用xml.etree.ElementTree解析XML
}
}
' ============================================
' 分析层 (analysis.py)
' ============================================
package "分析层" #LightCoral {
class CodeAnalyzer <<utility>> {
{method} STATIC PUBLIC analyze_code_context(file_path: Path, target_line: Optional[int], project_root: Optional[Path]) : CodeContext
{method} STATIC PUBLIC analyze_issue_relevance(issue: CppcheckIssue, code_context: CodeContext) : dict
{method} STATIC PUBLIC analyze_project_structure(project_root: Path) : dict
{method} STATIC PUBLIC get_enhanced_issue_analysis(issue: CppcheckIssue, project_info: Optional[dict]) : Tuple[CodeContext, dict]
{method} STATIC PUBLIC filter_and_clean_issues(issues: List[CppcheckIssue], project_info: Optional[dict]) : List[CppcheckIssue]
{method} STATIC PUBLIC prioritize_issues(issues: List[CppcheckIssue]) : List[CppcheckIssue]
{method} STATIC PUBLIC extract_issue_context_from_source(issue: CppcheckIssue, project_root: Optional[Path]) : dict
{method} STATIC PUBLIC write_cleaned_report(issues: List[CppcheckIssue], output_path: Path) : None
{method} STATIC PUBLIC analyze_issues_with_context(issues: List[CppcheckIssue]) : List[Tuple[CppcheckIssue, dict]]
..
**职责**: 代码分析和问题评估
**可见性**: 所有方法为static public
**算法**: 使用正则表达式和启发式规则
}
}
' ============================================
' 生成层 (generation.py)
' ============================================
package "生成层" #LightPink {
class TestGenerator <<utility>> {
{field} PRIVATE client : OpenAIClient
..
{method} STATIC PUBLIC generate_test_for_issue(issue: CppcheckIssue, model: str, project_root: Optional[Path], include_dirs: List[str], integration_test: bool, code_context: Optional[CodeContext], relevance_analysis: Optional[dict]) : str
{method} STATIC PUBLIC smart_select_issues(issues: List[CppcheckIssue], max_count: int, model: str) : List[CppcheckIssue]
{method} STATIC PUBLIC write_issue_output(output_dir: Path, idx: int, issue: CppcheckIssue, content: str, emit_runner: bool, verify: bool) : Path
{method} STATIC PRIVATE build_prompt_for_issue(issue: CppcheckIssue, project_root: Optional[Path], include_dirs: List[str], integration_test: bool, code_context: Optional[CodeContext], relevance_analysis: Optional[dict], use_template: bool) : str
{method} STATIC PRIVATE get_issue_specific_template(issue: CppcheckIssue, project_root: Optional[Path], include_dirs: List[str]) : str
{method} STATIC PRIVATE get_issue_specific_guidance(issue: CppcheckIssue) : str
{method} STATIC PRIVATE generate_issue_specific_test_code(issue: CppcheckIssue) : str
{method} STATIC PRIVATE generate_real_code_based_template(issue: CppcheckIssue, issue_context: dict, project_info: str, project_root: Optional[Path], includes_text: str) : str
{method} STATIC PRIVATE generate_default_template(issue: CppcheckIssue, project_info: str, project_root: Optional[Path]) : str
..
**职责**: AI驱动的测试用例生成
**可见性**: client为private主要方法为public辅助方法为private
**依赖**: 使用OpenAI API生成测试代码
}
}
' ============================================
' 验证层 (verification.py)
' ============================================
package "验证层" #LightSteelBlue {
class TestVerifier <<utility>> {
{method} STATIC PUBLIC verify_single_test(cpp_file: Path, timeout: int, project_root: Optional[Path], include_dirs: List[str]) : dict
{method} STATIC PUBLIC auto_verify_tests(output_dir: Path, timeout: int, project_root: Optional[Path], include_dirs: List[str]) : dict
{method} STATIC PUBLIC generate_verification_report(output_dir: Path, verification_results: dict) : Path
{method} STATIC PUBLIC generate_json_report(output_dir: Path, verification_results: dict) : Path
{method} STATIC PUBLIC verify_test_case(test_file_path: Path, issue: CppcheckIssue) : dict
{method} STATIC PRIVATE analyze_vulnerability_type(filename: str, result: dict) : str
{method} STATIC PRIVATE determine_vulnerability_confirmed(result: dict) : bool
..
**职责**: 测试用例验证和报告生成
**可见性**: 公共验证方法为public分析判断方法为private
**依赖**: 使用subprocess调用g++和cppcheck
}
}
' ============================================
' 主程序 (main.py)
' ============================================
package "主程序" #LightSalmon {
class MainProcessor {
{field} PRIVATE args : argparse.Namespace
{field} PRIVATE project_info : Optional[dict]
{field} PRIVATE issues : List[CppcheckIssue]
..
{method} PUBLIC main(argv: List[str]) : int
..
**职责**: 协调整个工作流程
**可见性**: main为public内部状态为private
**模式**: 主协调器模式
}
}
}
' ============================================
' 独立工具模块
' ============================================
package "独立工具模块" #LightGray {
class CodeReview {
{method} PUBLIC analyze_file(input_path: Path, output_path: Path, instruction: str, model: str = "deepseek-chat") : None
{method} PUBLIC detect_language_by_suffix(file_path: Path) : str
{method} PUBLIC build_messages(code_path: Path, code_content: str, instruction: str) : List[dict]
{method} PUBLIC read_text_file(file_path: Path) : str
{method} PUBLIC main(argv: List[str]) : int
..
**职责**: 代码审查工具
**可见性**: 所有方法为public
**文件**: code_review.py
}
}
' ============================================
' 外部依赖
' ============================================
package "外部依赖" #Wheat {
class OpenAIClient <<external>> {
{method} PUBLIC chat.completions.create()
..
**来源**: test.py
**用途**: AI生成服务
}
class ExternalTools <<external>> {
{field} PUBLIC g++ : C++编译器
{field} PUBLIC cppcheck : 静态分析工具
..
**用途**: 编译和验证工具
}
class Path <<external>> {
{method} PUBLIC exists() : bool
{method} PUBLIC read_text() : str
{method} PUBLIC glob() : List[Path]
..
**来源**: pathlib
}
class argparse <<external>> {
{method} PUBLIC ArgumentParser()
..
**来源**: argparse模块
}
}
' ============================================
' 关系定义
' ============================================
' 组合关系
CppcheckIssue *-- IssueLocation : contains
' 依赖关系(使用)
MainProcessor ..> CppcheckParser : uses\n解析报告
MainProcessor ..> CodeAnalyzer : uses\n分析和过滤
MainProcessor ..> TestGenerator : uses\n生成测试用例
MainProcessor ..> TestVerifier : uses\n验证测试用例
MainProcessor --> CppcheckIssue : manages\n管理问题列表
CppcheckParser ..> CppcheckIssue : creates\n创建问题对象
CppcheckParser ..> IssueLocation : creates\n创建位置对象
CodeAnalyzer ..> CppcheckIssue : analyzes\n分析问题
CodeAnalyzer ..> CodeContext : creates\n创建上下文
CodeAnalyzer ..> IssueLocation : uses\n使用位置信息
CodeAnalyzer ..> CppcheckParser : uses\n读取代码片段
TestGenerator ..> CppcheckIssue : processes\n处理问题
TestGenerator ..> CodeContext : uses\n使用上下文
TestGenerator ..> OpenAIClient : calls\n调用AI服务
TestGenerator ..> TestVerifier : uses\n验证测试用例
TestGenerator ..> CodeAnalyzer : uses\n获取分析结果
TestVerifier ..> CppcheckIssue : verifies\n验证问题
TestVerifier ..> ExternalTools : invokes\n调用外部工具
CodeReview ..> OpenAIClient : uses\n使用AI服务
' 泛化/实现关系
Path <|-- IssueLocation : uses
Path <|-- CodeContext : uses
' ============================================
' 注释说明
' ============================================
note right of CppcheckIssue
**核心数据模型**
- 存储cppcheck检测到的问题
- 包含问题ID、严重级别、消息
- 关联多个位置信息
end note
note right of CodeContext
**上下文信息模型**
- 存储代码分析的完整上下文
- 包含函数、类、命名空间信息
- 包含变量和控制流上下文
end note
note right of MainProcessor
**主程序协调器**
工作流程:
1. 解析命令行参数
2. 解析报告文件
3. 过滤和清理问题
4. 生成测试用例
5. 验证测试用例
6. 生成报告
end note
note right of TestGenerator
**AI测试用例生成器**
- 使用AI生成测试用例
- 支持模板模式和AI生成模式
- 智能选择最有代表性的问题
- 集成代码上下文分析
end note
note right of CodeAnalyzer
**智能分析引擎**
- 分析代码上下文
- 评估问题相关性
- 过滤不可靠问题
- 优先级排序
end note
note bottom of TestVerifier
**自动化验证引擎**
- 编译测试用例
- 执行程序
- 分析漏洞类型
- 生成验证报告
end note
legend right
| 图例说明 |
**可见性符号**:
| + | public 公共 |
| - | private 私有 |
| # | protected 受保护 |
| {static} | 静态方法 |
**关系类型**:
| --> | 关联/依赖 |
| *-- | 组合关系 |
| <|-- | 泛化关系 |
**模块职责**:
| 数据模型层 | 定义核心数据结构 |
| 解析层 | 解析输入文件 |
| 分析层 | 代码分析和评估 |
| 生成层 | AI生成测试用例 |
| 验证层 | 自动化验证 |
| 主程序 | 工作流协调 |
endlegend
@enduml

161
src/Report-Generation/软件体系结构设计.puml
Unescape View File

@ -0,0 +1,161 @@
@startuml 软件体系结构设计图
!define RECTANGLE class
skinparam packageStyle rectangle
skinparam classAttributeIconSize 0
package "Report-Generation 系统" {
package "cppcheck_test_generator" <<核心模块>> {
package "数据模型层 (models)" {
class CppcheckIssue {
+ id: str
+ severity: str
+ message: str
+ locations: List[IssueLocation]
}
class IssueLocation {
+ file_path: Path
+ line: Optional[int]
}
class CodeContext {
+ file_path: Path
+ function_name: Optional[str]
+ class_name: Optional[str]
+ namespace: Optional[str]
+ includes: List[str]
+ dependencies: List[str]
+ variable_context: List[str]
+ control_flow_context: List[str]
}
}
package "解析层 (parsers)" {
class Parsers {
+ parse_cppcheck_xml(xml_path): List[CppcheckIssue]
+ parse_cppcheck_text(text_path): List[CppcheckIssue]
+ read_code_snippet(file_path, line, context): str
}
}
package "分析层 (analysis)" {
class Analysis {
+ analyze_code_context(file_path, line): CodeContext
+ analyze_issue_relevance(issue, context): dict
+ analyze_project_structure(project_root): dict
+ get_enhanced_issue_analysis(issue): Tuple
+ filter_and_clean_issues(issues): List[CppcheckIssue]
+ prioritize_issues(issues): List[CppcheckIssue]
}
}
package "生成层 (generation)" {
class Generation {
+ generate_test_for_issue(issue): str
+ get_issue_specific_template(issue): str
+ smart_select_issues(issues, max_count): List[CppcheckIssue]
+ write_issue_output(output_dir, issue, content): Path
+ generate_issue_specific_test_code(issue): str
}
}
package "验证层 (verification)" {
class Verification {
+ verify_single_test(cpp_file): dict
+ auto_verify_tests(output_dir): dict
+ generate_verification_report(results): Path
+ generate_json_report(results): Path
+ analyze_vulnerability_type(filename, result): str
+ determine_vulnerability_confirmed(result): bool
}
}
package "主程序 (main)" {
class Main {
+ main(argv): int
- 处理命令行参数
- 协调各模块工作流
- 控制执行流程
}
}
}
package "独立工具模块" {
class CodeReview {
+ analyze_file(input_path, output_path, instruction): None
+ detect_language_by_suffix(file_path): str
+ build_messages(code_path, code_content, instruction): List[dict]
}
class CppcheckToTests {
+ main(argv): int
..旧版本单文件实现..
}
}
package "外部依赖" {
class TestModule {
+ client: OpenAIClient
+ test_connection(): bool
}
class ExternalTools {
+ g++ : C++编译器
+ cppcheck : 静态分析工具
}
}
}
' 依赖关系
Main --> Parsers : 使用
Main --> Analysis : 使用
Main --> Generation : 使用
Main --> Verification : 使用
Main --> CppcheckIssue : 使用
Parsers --> CppcheckIssue : 创建
Parsers --> IssueLocation : 创建
Analysis --> CppcheckIssue : 分析
Analysis --> CodeContext : 创建和使用
Analysis --> IssueLocation : 使用
Generation --> CppcheckIssue : 处理
Generation --> CodeContext : 使用
Generation --> TestModule : 调用AI接口
Verification --> CppcheckIssue : 验证
Verification --> ExternalTools : 调用编译工具
CodeReview --> TestModule : 使用AI客户端
CppcheckToTests --> TestModule : 使用AI客户端
note right of cppcheck_test_generator
**核心模块化架构**
采用分层架构设计:
- 数据模型层:定义核心数据结构
- 解析层:处理输入数据
- 分析层:智能分析和过滤
- 生成层AI驱动生成测试用例
- 验证层:自动化验证和报告
- 主程序:统一调度和协调
end note
note right of Main
**主程序工作流程**
1. 解析命令行参数
2. 读取cppcheck报告
3. 过滤和清理问题
4. 智能选择问题
5. 生成测试用例
6. 可选:自动验证
7. 生成报告
end note
@enduml

79
src/cppcheck-2.14.0/.clang-tidy
Unescape View File

@ -0,0 +1,79 @@
---
Checks: >
*,
-abseil-*,
-altera-*,
-android-*,
-boost-*,
-cert-*,
-cppcoreguidelines-*,
-darwin-*,
-fuchsia-*,
-google-*,
-hicpp-*,
-linuxkernel-*,
-llvm-*,
-llvmlibc-*,
-mpi-*,
-objc-*,
-openmp-*,
-zircon-*,
cert-err34-c,
google-explicit-constructor,
cppcoreguidelines-rvalue-reference-param-not-moved,
-bugprone-assignment-in-if-condition,
-bugprone-branch-clone,
-bugprone-easily-swappable-parameters,
-bugprone-empty-catch,
-bugprone-macro-parentheses,
-bugprone-narrowing-conversions,
-bugprone-signed-char-misuse,
-bugprone-switch-missing-default-case,
-bugprone-unchecked-optional-access,
-clang-analyzer-*,
-concurrency-mt-unsafe,
-misc-const-correctness,
-misc-no-recursion,
-misc-non-private-member-variables-in-classes,
-misc-throw-by-value-catch-by-reference,
-misc-use-anonymous-namespace,
-modernize-avoid-c-arrays,
-modernize-deprecated-ios-base-aliases,
-misc-include-cleaner,
-misc-unused-using-decls,
-modernize-loop-convert,
-modernize-macro-to-enum,
-modernize-raw-string-literal,
-modernize-replace-auto-ptr,
-modernize-return-braced-init-list,
-modernize-type-traits,
-modernize-use-auto,
-modernize-use-nodiscard,
-modernize-use-trailing-return-type,
-performance-avoid-endl,
-performance-enum-size,
-performance-inefficient-string-concatenation,
-performance-no-automatic-move,
-performance-noexcept-swap,
-portability-simd-intrinsics,
-portability-std-allocator-const,
-readability-avoid-const-params-in-decls,
-readability-avoid-nested-conditional-operator,
-readability-braces-around-statements,
-readability-container-data-pointer,
-readability-function-cognitive-complexity,
-readability-function-size,
-readability-identifier-length,
-readability-identifier-naming,
-readability-implicit-bool-conversion,
-readability-isolate-declaration,
-readability-magic-numbers,
-readability-suspicious-call-argument,
-readability-uppercase-literal-suffix
WarningsAsErrors: '*'
HeaderFilterRegex: '(cli|gui|lib|oss-fuzz|test|triage)\/[a-z]+\.h'
CheckOptions:
- key: misc-non-private-member-variables-in-classes.IgnoreClassesWithAllMemberVariablesBeingPublic
value: '1'
- key: readability-simplify-boolean-expr.SimplifyDeMorgan
value: '0'

8
src/cppcheck-2.14.0/.codacy.yml
Unescape View File

@ -0,0 +1,8 @@
exclude_paths:
- addons/test/**
- addons/y2038/test/*.c
- htmlreport/example.cc
- samples/**/bad.c
- samples/**/bad.cpp
- test/cfg/*.c
- test/cfg/*.cpp

19
src/cppcheck-2.14.0/.gitattributes vendored
Unescape View File

@ -0,0 +1,19 @@
## standard default enconding
* text=auto
## UNIX specific files
*.sh text eol=lf
## Windows specific files
*.bat text eol=crlf
*.cmd text eol=crlf
*.ps1 text eol=crlf
*.vcxproj text eol=crlf
*.vcxproj.filters text eol=crlf
*.sln text eol=crlf
*.wixproj text eol=crlf
*.wxi text eol=crlf
*.wxs text eol=crlf
## Binary resources
*.pdf binary

56
src/cppcheck-2.14.0/.github/workflows/CI-cygwin.yml vendored
Unescape View File

@ -0,0 +1,56 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CI-cygwin
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
defaults:
run:
shell: cmd
jobs:
build_cygwin:
strategy:
matrix:
os: [windows-2022]
arch: [x64]
include:
- platform: 'x86_64'
packages: |
gcc-g++
python3
fail-fast: false
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: Set up Cygwin
uses: cygwin/cygwin-install-action@master
with:
platform: ${{ matrix.arch }}
packages: ${{ matrix.packages }}
# Cygwin will always link the binaries even if they already exist. The linking is also extremely slow. So just run the "check" target which includes all the binaries.
- name: Build all and run test
run: |
C:\cygwin\bin\bash.exe -l -c cd %GITHUB_WORKSPACE% && make VERBOSE=1 -j2 check
- name: Extra test for misra
run: |
cd %GITHUB_WORKSPACE%\addons\test
..\..\cppcheck.exe --dump -DDUMMY --suppress=uninitvar --inline-suppr misra\misra-test.c --std=c89 --platform=unix64
python3 ..\misra.py -verify misra\misra-test.c.dump
..\..\cppcheck.exe --addon=misra --enable=style --inline-suppr --enable=information --error-exitcode=1 misra\misra-ctu-1-test.c misra\misra-ctu-2-test.c

71
src/cppcheck-2.14.0/.github/workflows/CI-mingw.yml vendored
Unescape View File

@ -0,0 +1,71 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CI-mingw
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
defaults:
run:
shell: msys2 {0}
jobs:
build_mingw:
strategy:
matrix:
# the MinGW installation in windows-2019 is supposed to be 8.1 but it is 12.2
# the MinGW installation in windows-2022 is not including all necessary packages by default, so just use the older image instead - package versions are he same
os: [windows-2019]
fail-fast: false
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: Set up MSYS2
uses: msys2/setup-msys2@v2
with:
release: false # use pre-installed
install: >-
mingw-w64-x86_64-lld
mingw-w64-x86_64-ccache
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
# TODO: bail out on warning
- name: Build cppcheck
run: |
export PATH="/mingw64/lib/ccache/bin:$PATH"
# set RDYNAMIC to work around broken MinGW detection
make VERBOSE=1 RDYNAMIC=-lshlwapi -j2 cppcheck
env:
LDFLAGS: -fuse-ld=lld # use lld for faster linking
- name: Build test
run: |
export PATH="/mingw64/lib/ccache/bin:$PATH"
# set RDYNAMIC to work around broken MinGW detection
make VERBOSE=1 RDYNAMIC=-lshlwapi -j2 testrunner
env:
LDFLAGS: -fuse-ld=lld # use lld for faster linking
- name: Run test
run: |
export PATH="/mingw64/lib/ccache/bin:$PATH"
# set RDYNAMIC to work around broken MinGW detection
make VERBOSE=1 RDYNAMIC=-lshlwapi -j2 check
env:
LDFLAGS: -fuse-ld=lld # use lld for faster linking

158
src/cppcheck-2.14.0/.github/workflows/CI-unixish-docker.yml vendored
Unescape View File

@ -0,0 +1,158 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CI-unixish-docker
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build_cmake:
strategy:
matrix:
image: ["ubuntu:16.04", "ubuntu:18.04", "ubuntu:23.10"]
include:
- build_gui: false
- image: "ubuntu:23.10"
build_gui: true
fail-fast: false # Prefer quick result
runs-on: ubuntu-22.04
# TODO: is this actually applied to the guest?
env:
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
container:
image: ${{ matrix.image }}
steps:
- uses: actions/checkout@v3
- name: Install missing software on ubuntu
if: contains(matrix.image, 'ubuntu')
run: |
apt-get update
apt-get install -y cmake g++ make libxml2-utils libpcre3-dev
- name: Install missing software (gui) on latest ubuntu
if: matrix.build_gui
run: |
apt-get install -y qt6-base-dev qt6-charts-dev qt6-tools-dev
# needs to be called after the package installation since
# - it doesn't call "apt-get update"
# - it doesn't support centos
#
# needs to be to fixated on 1.2.11 so it works with older images - see https://github.com/hendrikmuhs/ccache-action/issues/178
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ matrix.image }}
# tests require CMake 3.9 - ccache available
- name: CMake build (no tests)
if: matrix.image == 'ubuntu:16.04'
run: |
mkdir cmake.output
cd cmake.output
cmake -G "Unix Makefiles" -DHAVE_RULES=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache ..
cmake --build . -- -j$(nproc)
- name: CMake build
if: ${{ !matrix.build_gui && matrix.image != 'ubuntu:16.04' }}
run: |
mkdir cmake.output
cd cmake.output
cmake -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache ..
cmake --build . -- -j$(nproc)
- name: CMake build (with GUI)
if: matrix.build_gui
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
cmake --build cmake.output -- -j$(nproc)
- name: Run CMake test
if: matrix.image != 'ubuntu:16.04'
run: |
cmake --build cmake.output --target check -- -j$(nproc)
build_make:
strategy:
matrix:
image: ["ubuntu:16.04", "ubuntu:18.04", "ubuntu:23.10"]
fail-fast: false # Prefer quick result
runs-on: ubuntu-22.04
container:
image: ${{ matrix.image }}
steps:
- uses: actions/checkout@v3
- name: Install missing software on ubuntu
if: contains(matrix.image, 'ubuntu')
run: |
apt-get update
apt-get install -y g++ make python3 libxml2-utils libpcre3-dev
# needs to be called after the package installation since
# - it doesn't call "apt-get update"
# - it doesn't support centos
#
# needs to be to fixated on 1.2.11 so it works with older images - see https://github.com/hendrikmuhs/ccache-action/issues/178
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ matrix.image }}
- name: Build cppcheck
run: |
# "/usr/lib64" for centos / "/usr/lib" for ubuntu
export PATH="/usr/lib64/ccache:/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) HAVE_RULES=yes CXXFLAGS="-w"
- name: Build test
run: |
# "/usr/lib64" for centos / "/usr/lib" for ubuntu
export PATH="/usr/lib64/ccache:/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) testrunner HAVE_RULES=yes CXXFLAGS="-w"
- name: Run test
run: |
make -j$(nproc) check HAVE_RULES=yes
# requires python3
- name: Run extra tests
run: |
tools/generate_and_run_more_tests.sh
# requires which
- name: Validate
run: |
make -j$(nproc) checkCWEEntries validateXML
- name: Test addons
run: |
./cppcheck --addon=threadsafety addons/test/threadsafety
./cppcheck --addon=threadsafety --std=c++03 addons/test/threadsafety
- name: Generate Qt help file on ubuntu 18.04
if: false # matrix.os == 'ubuntu-18.04'
run: |
pushd gui/help
qcollectiongenerator online-help.qhcp -o online-help.qhc

552
src/cppcheck-2.14.0/.github/workflows/CI-unixish.yml vendored
Unescape View File

@ -0,0 +1,552 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CI-unixish
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build_cmake_tinyxml2:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
include:
- use_qt6: On
- os: ubuntu-20.04
use_qt6: Off
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
env:
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu') && matrix.use_qt6 == 'Off'
run: |
sudo apt-get update
sudo apt-get install libxml2-utils libtinyxml2-dev qtbase5-dev qttools5-dev libqt5charts5-dev qtchooser
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu') && matrix.use_qt6 == 'On'
run: |
sudo apt-get update
# qt6-tools-dev-tools for lprodump
# qt6-l10n-tools for lupdate
sudo apt-get install libxml2-utils libtinyxml2-dev qt6-base-dev libqt6charts6-dev qt6-tools-dev qt6-tools-dev-tools qt6-l10n-tools libglx-dev libgl1-mesa-dev
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
# pcre was removed from runner images in November 2022
brew install coreutils qt@6 tinyxml2 pcre
- name: CMake build on ubuntu (with GUI / system tinyxml2)
if: contains(matrix.os, 'ubuntu')
run: |
cmake -S . -B cmake.output.tinyxml2 -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=${{ matrix.use_qt6 }} -DWITH_QCHART=On -DUSE_BUNDLED_TINYXML2=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
cmake --build cmake.output.tinyxml2 -- -j$(nproc)
- name: CMake build on macos (with GUI / system tinyxml2)
if: contains(matrix.os, 'macos')
run: |
cmake -S . -B cmake.output.tinyxml2 -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DUSE_BUNDLED_TINYXML2=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache -DQt6_DIR=$(brew --prefix qt@6)/lib/cmake/Qt6
cmake --build cmake.output.tinyxml2 -- -j$(nproc)
- name: Run CMake test (system tinyxml2)
run: |
cmake --build cmake.output.tinyxml2 --target check -- -j$(nproc)
build_cmake:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
include:
- use_qt6: On
- os: ubuntu-20.04
use_qt6: Off
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
env:
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu') && matrix.use_qt6 == 'Off'
run: |
sudo apt-get update
sudo apt-get install libxml2-utils qtbase5-dev qttools5-dev libqt5charts5-dev qtchooser
# TODO: move latest compiler to separate step
# TODO: bail out on warnings with latest GCC
- name: Set up GCC
uses: egor-tensin/setup-gcc@v1
if: matrix.os == 'ubuntu-22.04'
with:
version: 13
platform: x64
- name: Select compiler
if: matrix.os == 'ubuntu-22.04'
run: |
echo "CXX=g++-13" >> $GITHUB_ENV
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu') && matrix.use_qt6 == 'On'
run: |
sudo apt-get update
# qt6-tools-dev-tools for lprodump
# qt6-l10n-tools for lupdate
sudo apt-get install libxml2-utils qt6-base-dev libqt6charts6-dev qt6-tools-dev qt6-tools-dev-tools qt6-l10n-tools libglx-dev libgl1-mesa-dev
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
# pcre was removed from runner images in November 2022
brew install coreutils qt@6 pcre
- name: CMake build on ubuntu (with GUI)
if: contains(matrix.os, 'ubuntu')
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=${{ matrix.use_qt6 }} -DWITH_QCHART=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
cmake --build cmake.output -- -j$(nproc)
- name: CMake build on macos (with GUI)
if: contains(matrix.os, 'macos')
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache -DQt6_DIR=$(brew --prefix qt@6)/lib/cmake/Qt6
cmake --build cmake.output -- -j$(nproc)
- name: Run CMake test
run: |
cmake --build cmake.output --target check -- -j$(nproc)
- name: Run CTest
run: |
pushd cmake.output
ctest --output-on-failure -j$(nproc)
build_uchar:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
brew install coreutils
- name: Build with Unsigned char
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) CXXFLAGS=-funsigned-char testrunner
- name: Test with Unsigned char
run: |
./testrunner TestSymbolDatabase
build_mathlib:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
brew install coreutils
- name: Build with TEST_MATHLIB_VALUE
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) CPPFLAGS=-DTEST_MATHLIB_VALUE all
- name: Test with TEST_MATHLIB_VALUE
run: |
make -j$(nproc) CPPFLAGS=-DTEST_MATHLIB_VALUE check
check_nonneg:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
# coreutils contains "g++" (default is "c++") and "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
brew install coreutils
- name: Check syntax with NONNEG
run: |
ls lib/*.cpp | xargs -n 1 -P $(nproc) g++ -fsyntax-only -std=c++0x -Ilib -Iexternals -Iexternals/picojson -Iexternals/simplecpp -Iexternals/tinyxml2 -DNONNEG
build_qmake:
strategy:
matrix:
# no longer build with qmake on MacOS as brew might lack pre-built Qt5 packages causing the step to run for hours
os: [ubuntu-20.04, ubuntu-22.04]
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu')
run: |
sudo apt-get update
sudo apt-get install qtbase5-dev qttools5-dev libqt5charts5-dev qtchooser
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
brew install coreutils qt@5
# expose qmake
brew link qt@5 --force
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Build GUI
run: |
export PATH="$(brew --prefix)/opt/ccache/libexec:/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
pushd gui
qmake CONFIG+=debug CONFIG+=ccache HAVE_QCHART=yes
make -j$(nproc)
# TODO: binaries are in a different location on macos
- name: Build and Run GUI tests
if: contains(matrix.os, 'ubuntu')
run: |
export PATH="$(brew --prefix)/opt/ccache/libexec:/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
pushd gui/test/cppchecklibrarydata
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
./test-cppchecklibrarydata
popd
pushd gui/test/filelist
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
./test-filelist
popd
pushd gui/test/projectfile
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
./test-projectfile
popd
pushd gui/test/translationhandler
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
# TODO: requires X session because of QApplication dependency in translationhandler.cpp
#./test-translationhandler
popd
pushd gui/test/xmlreportv2
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
./test-xmlreportv2
- name: Generate Qt help file
run: |
pushd gui/help
qhelpgenerator online-help.qhcp -o online-help.qhc
- name: Build triage
run: |
export PATH="$(brew --prefix)/opt/ccache/libexec:/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
pushd tools/triage
qmake CONFIG+=debug CONFIG+=ccache
make -j$(nproc)
build:
strategy:
matrix:
os: [ubuntu-20.04, ubuntu-22.04, macos-12]
fail-fast: false # Prefer quick result
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Install missing software on ubuntu
if: contains(matrix.os, 'ubuntu')
run: |
sudo apt-get update
sudo apt-get install libxml2-utils
# packages for strict cfg checks
- name: Install missing software on ubuntu 22.04 (cfg)
if: matrix.os == 'ubuntu-22.04'
run: |
sudo apt-get install libcairo2-dev libcurl4-openssl-dev liblua5.3-dev libssl-dev libsqlite3-dev libcppunit-dev libsigc++-2.0-dev libgtk-3-dev libboost-all-dev libwxgtk3.0-gtk3-dev xmlstarlet qtbase5-dev
# coreutils contains "nproc"
- name: Install missing software on macos
if: contains(matrix.os, 'macos')
run: |
# pcre was removed from runner images in November 2022
brew install coreutils python3 pcre gnu-sed
- name: Install missing Python packages
run: |
python3 -m pip install pip --upgrade
python3 -m pip install pytest
python3 -m pip install pytest-timeout
- name: Build cppcheck
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) HAVE_RULES=yes
- name: Build test
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) testrunner HAVE_RULES=yes
- name: Run test
run: |
make -j$(nproc) check HAVE_RULES=yes
# requires "gnu-sed" installed on macos
- name: Run extra tests
run: |
tools/generate_and_run_more_tests.sh
# do not use pushd in this step since we go below the working directory
- name: Run test/cli
run: |
cd test/cli
python3 -m pytest -Werror --strict-markers -vv
cd ../../..
ln -s cppcheck 'cpp check'
cd 'cpp check/test/cli'
python3 -m pytest -Werror --strict-markers -vv
# do not use pushd in this step since we go below the working directory
- name: Run test/cli (-j2)
run: |
cd test/cli
python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_J: 2
# do not use pushd in this step since we go below the working directory
- name: Run test/cli (--clang)
if: false
run: |
cd test/cli
python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_CLANG: clang
- name: Run cfg tests
if: matrix.os != 'ubuntu-22.04'
run: |
make -j$(nproc) checkcfg
- name: Run cfg tests (strict)
if: matrix.os == 'ubuntu-22.04'
run: |
make -j$(nproc) checkcfg
env:
STRICT: 1
- name: Run --dump test
run: |
./cppcheck test/testpreprocessor.cpp --dump
xmllint --noout test/testpreprocessor.cpp.dump
- name: Validate
run: |
make -j$(nproc) checkCWEEntries validateXML
- name: Test Signalhandler
run: |
cmake -S . -B cmake.output.signal -G "Unix Makefiles" -DBUILD_TESTS=On
cmake --build cmake.output.signal --target test-signalhandler -- -j$(nproc)
cp cmake.output.signal/bin/test-s* .
python3 -m pytest -Werror --strict-markers -vv test/signal/test-signalhandler.py
# no unix backtrace support on MacOs
- name: Test Stacktrace
if: contains(matrix.os, 'ubuntu')
run: |
cmake -S . -B cmake.output.signal -G "Unix Makefiles" -DBUILD_TESTS=On
cmake --build cmake.output.signal --target test-stacktrace -- -j$(nproc)
cp cmake.output.signal/bin/test-s* .
python3 -m pytest -Werror --strict-markers -vv test/signal/test-stacktrace.py
# TODO: move to scriptcheck.yml so these are tested with all Python versions?
- name: Test addons
run: |
./cppcheck --error-exitcode=1 --inline-suppr --addon=threadsafety addons/test/threadsafety
./cppcheck --error-exitcode=1 --inline-suppr --addon=threadsafety --std=c++03 addons/test/threadsafety
./cppcheck --error-exitcode=1 --inline-suppr --addon=misra addons/test/misra/crash*.c
./cppcheck --error-exitcode=1 --inline-suppr --addon=misra --enable=information addons/test/misra/config*.c
./cppcheck --addon=misra --enable=style --inline-suppr --enable=information --error-exitcode=1 addons/test/misra/misra-ctu-*-test.c
pushd addons/test
# We'll force C89 standard to enable an additional verification for
# rules 5.4 and 5.5 which have standard-dependent options.
../../cppcheck --dump -DDUMMY --suppress=uninitvar --inline-suppr misra/misra-test.c --std=c89 --platform=unix64
python3 ../misra.py -verify misra/misra-test.c.dump
# Test slight MISRA differences in C11 standard
../../cppcheck --dump -DDUMMY --suppress=uninitvar --inline-suppr misra/misra-test-c11.c --std=c11 --platform=unix64
python3 ../misra.py -verify misra/misra-test-c11.c.dump
# TODO: do we need to verify something here?
../../cppcheck --dump -DDUMMY --suppress=uninitvar --suppress=uninitStructMember --std=c89 misra/misra-test.h
../../cppcheck --dump misra/misra-test.cpp
python3 ../misra.py -verify misra/misra-test.cpp.dump
python3 ../misra.py --rule-texts=misra/misra2012_rules_dummy_ascii.txt -verify misra/misra-test.cpp.dump
python3 ../misra.py --rule-texts=misra/misra2012_rules_dummy_utf8.txt -verify misra/misra-test.cpp.dump
python3 ../misra.py --rule-texts=misra/misra2012_rules_dummy_windows1250.txt -verify misra/misra-test.cpp.dump
../../cppcheck --addon=misra --enable=style --platform=avr8 --error-exitcode=1 misra/misra-test-avr8.c
../../cppcheck --dump misc-test.cpp
python3 ../misc.py -verify misc-test.cpp.dump
../../cppcheck --dump naming_test.c
python3 ../naming.py --var='[a-z].*' --function='[a-z].*' naming_test.c.dump
../../cppcheck --dump naming_test.cpp
python3 ../naming.py --var='[a-z].*' --function='[a-z].*' naming_test.cpp.dump
- name: Build democlient
if: matrix.os == 'ubuntu-22.04'
run: |
warnings="-pedantic -Wall -Wextra -Wcast-qual -Wno-deprecated-declarations -Wfloat-equal -Wmissing-declarations -Wmissing-format-attribute -Wno-long-long -Wpacked -Wredundant-decls -Wundef -Wno-shadow -Wno-missing-field-initializers -Wno-missing-braces -Wno-sign-compare -Wno-multichar"
g++ $warnings -c -Ilib -Iexternals/tinyxml2 democlient/democlient.cpp
selfcheck:
needs: build # wait for all tests to be successful first
runs-on: ubuntu-22.04 # run on the latest image only
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install qtbase5-dev qttools5-dev libqt5charts5-dev libboost-container-dev
- name: Self check (build)
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
# compile with verification and ast matchers
make -j$(nproc) -s CPPFLAGS="-DCHECK_INTERNAL" CXXFLAGS="-g -O2 -w -DHAVE_BOOST" MATCHCOMPILER=yes VERIFY=1
# TODO: update to Qt6
- name: CMake
run: |
cmake -S . -B cmake.output -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DWITH_QCHART=On -DUSE_MATCHCOMPILER=Verify -DENABLE_CHECK_INTERNAL=On -DCPPCHK_GLIBCXX_DEBUG=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On -DDISABLE_DMAKE=On
- name: Generate dependencies
run: |
# make sure auto-generated GUI files exist
make -C cmake.output autogen
make -C cmake.output gui-build-deps triage-build-ui-deps
- name: Self check
run: |
selfcheck_options="-q -j$(nproc) --std=c++11 --template=selfcheck --showtime=top5_summary -D__GNUC__ --error-exitcode=1 --inline-suppr --suppressions-list=.selfcheck_suppressions --library=gnu --inconclusive --enable=style,performance,portability,warning,missingInclude,internal --exception-handling --debug-warnings --check-level=exhaustive"
cppcheck_options="-D__CPPCHECK__ -DCHECK_INTERNAL -DHAVE_RULES --library=cppcheck-lib -Ilib -Iexternals/simplecpp/ -Iexternals/tinyxml2"
ec=0
# TODO: add --check-config
# early exit
if [ $ec -eq 1 ]; then
exit $ec
fi
# self check simplecpp
./cppcheck $selfcheck_options externals/simplecpp || ec=1
# self check lib/cli
mkdir b1
./cppcheck $selfcheck_options $cppcheck_options --cppcheck-build-dir=b1 --addon=naming.json cli lib || ec=1
# check gui with qt settings
mkdir b2
./cppcheck $selfcheck_options $cppcheck_options --cppcheck-build-dir=b2 -DQT_VERSION=0x050000 -DQ_MOC_OUTPUT_REVISION=67 -DQT_CHARTS_LIB --library=qt --addon=naming.json -Icmake.output/gui -Igui gui/*.cpp cmake.output/gui || ec=1
# self check test and tools
./cppcheck $selfcheck_options $cppcheck_options -Icli test/*.cpp tools/*.cpp || ec=1
# triage
./cppcheck $selfcheck_options $cppcheck_options -DQ_MOC_OUTPUT_REVISION=67 -DQT_CHARTS_LIB --library=qt -Icmake.output/tools/triage -Igui tools/triage/*.cpp cmake.output/tools/triage || ec=1
exit $ec

227
src/cppcheck-2.14.0/.github/workflows/CI-windows.yml vendored
Unescape View File

@ -0,0 +1,227 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CI-windows
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
defaults:
run:
shell: cmd
# TODO: choose/add a step to bail out on compiler warnings (maybe even the release build)
jobs:
build_qt:
strategy:
matrix:
os: [windows-2019, windows-2022]
qt_ver: [5.15.2, 6.7.0]
fail-fast: false
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: Set up Visual Studio environment
uses: ilammy/msvc-dev-cmd@v1
with:
arch: x64
- name: Install Qt ${{ matrix.qt_ver }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ matrix.qt_ver }}
modules: 'qtcharts'
cache: true
- name: Build GUI release (qmake)
if: startsWith(matrix.qt_ver, '5')
run: |
cd gui || exit /b !errorlevel!
qmake HAVE_QCHART=yes || exit /b !errorlevel!
nmake release || exit /b !errorlevel!
env:
CL: /MP
- name: Deploy GUI
if: startsWith(matrix.qt_ver, '5')
run: |
windeployqt Build\gui || exit /b !errorlevel!
del Build\gui\cppcheck-gui.ilk || exit /b !errorlevel!
del Build\gui\cppcheck-gui.pdb || exit /b !errorlevel!
- name: Build GUI release (CMake)
if: startsWith(matrix.qt_ver, '6')
run: |
cmake -S . -B build -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On || exit /b !errorlevel!
cmake --build build --target cppcheck-gui || exit /b !errorlevel!
# TODO: deploy with CMake/Qt6
build:
strategy:
matrix:
os: [windows-2019, windows-2022]
config: [debug, release]
fail-fast: false
runs-on: ${{ matrix.os }}
env:
# see https://www.pcre.org/original/changelog.txt
PCRE_VERSION: 8.45
steps:
- uses: actions/checkout@v3
- name: Set up Python 3.12
if: matrix.config == 'release'
uses: actions/setup-python@v4
with:
python-version: '3.12'
check-latest: true
- name: Set up Visual Studio environment
uses: ilammy/msvc-dev-cmd@v1
with:
arch: x64
- name: Cache PCRE
id: cache-pcre
uses: actions/cache@v3
with:
path: |
externals\pcre.h
externals\pcre.lib
externals\pcre64.lib
key: pcre-${{ env.PCRE_VERSION }}-x64-bin-win
- name: Download PCRE
if: steps.cache-pcre.outputs.cache-hit != 'true'
run: |
curl -fsSL https://github.com/pfultz2/pcre/archive/refs/tags/%PCRE_VERSION%.zip -o pcre-%PCRE_VERSION%.zip || exit /b !errorlevel!
- name: Install PCRE
if: steps.cache-pcre.outputs.cache-hit != 'true'
run: |
7z x pcre-%PCRE_VERSION%.zip || exit /b !errorlevel!
cd pcre-%PCRE_VERSION% || exit /b !errorlevel!
cmake . -G "NMake Makefiles" -DCMAKE_BUILD_TYPE=Release -DPCRE_BUILD_PCRECPP=Off -DPCRE_BUILD_TESTS=Off -DPCRE_BUILD_PCREGREP=Off || exit /b !errorlevel!
nmake || exit /b !errorlevel!
copy pcre.h ..\externals || exit /b !errorlevel!
copy pcre.lib ..\externals\pcre64.lib || exit /b !errorlevel!
env:
CL: /MP
- name: Install missing Python packages
if: matrix.config == 'release'
run: |
python -m pip install pip --upgrade || exit /b !errorlevel!
python -m pip install pytest || exit /b !errorlevel!
python -m pip install pytest-custom_exit_code || exit /b !errorlevel!
python -m pip install pytest-timeout || exit /b !errorlevel!
- name: Run CMake
if: false # TODO: enable
run: |
cmake -S . -B build -DBUILD_TESTS=On || exit /b !errorlevel!
- name: Build CLI debug configuration using MSBuild
if: matrix.config == 'debug'
run: |
:: cmake --build build --target check --config Debug || exit /b !errorlevel!
msbuild -m cppcheck.sln /p:Configuration=Debug-PCRE;Platform=x64 -maxcpucount || exit /b !errorlevel!
- name: Run Debug test
if: matrix.config == 'debug'
run: .\bin\debug\testrunner.exe || exit /b !errorlevel!
- name: Build CLI release configuration using MSBuild
if: matrix.config == 'release'
run: |
:: cmake --build build --target check --config Release || exit /b !errorlevel!
msbuild -m cppcheck.sln /p:Configuration=Release-PCRE;Platform=x64 -maxcpucount || exit /b !errorlevel!
- name: Run Release test
if: matrix.config == 'release'
run: .\bin\testrunner.exe || exit /b !errorlevel!
- name: Prepare test/cli
if: matrix.config == 'release'
run: |
:: since FILESDIR is not set copy the binary to the root so the addons are found
:: copy .\build\bin\Release\cppcheck.exe .\cppcheck.exe || exit /b !errorlevel!
copy .\bin\cppcheck.exe .\cppcheck.exe || exit /b !errorlevel!
copy .\bin\cppcheck-core.dll .\cppcheck-core.dll || exit /b !errorlevel!
- name: Run test/cli
if: matrix.config == 'release'
run: |
cd test/cli || exit /b !errorlevel!
python -m pytest -Werror --strict-markers -vv || exit /b !errorlevel!
- name: Run test/cli (-j2)
if: matrix.config == 'release'
run: |
cd test/cli || exit /b !errorlevel!
python -m pytest -Werror --strict-markers -vv || exit /b !errorlevel!
env:
TEST_CPPCHECK_INJECT_J: 2
# TODO: install clang
- name: Run test/cli (--clang)
if: false # matrix.config == 'release'
run: |
cd test/cli || exit /b !errorlevel!
python -m pytest -Werror --strict-markers -vv || exit /b !errorlevel!
env:
TEST_CPPCHECK_INJECT_CLANG: clang
- name: Test addons
if: matrix.config == 'release'
run: |
.\cppcheck --addon=threadsafety addons\test\threadsafety || exit /b !errorlevel!
.\cppcheck --addon=threadsafety --std=c++03 addons\test\threadsafety || exit /b !errorlevel!
.\cppcheck --addon=misra --enable=style --inline-suppr --enable=information --error-exitcode=1 addons\test\misra\misra-ctu-*-test.c || exit /b !errorlevel!
cd addons\test
rem We'll force C89 standard to enable an additional verification for
rem rules 5.4 and 5.5 which have standard-dependent options.
..\..\cppcheck --dump -DDUMMY --suppress=uninitvar --inline-suppr misra\misra-test.c --std=c89 --platform=unix64 || exit /b !errorlevel!
python3 ..\misra.py -verify misra\misra-test.c.dump || exit /b !errorlevel!
rem Test slight MISRA differences in C11 standard
..\..\cppcheck --dump -DDUMMY --suppress=uninitvar --inline-suppr misra\misra-test-c11.c --std=c11 --platform=unix64 || exit /b !errorlevel!
python3 ..\misra.py -verify misra\misra-test-c11.c.dump || exit /b !errorlevel!
rem TODO: do we need to verify something here?
..\..\cppcheck --dump -DDUMMY --suppress=uninitvar --suppress=uninitStructMember --std=c89 misra\misra-test.h || exit /b !errorlevel!
..\..\cppcheck --dump misra\misra-test.cpp || exit /b !errorlevel!
python3 ..\misra.py -verify misra\misra-test.cpp.dump || exit /b !errorlevel!
python3 ..\misra.py --rule-texts=misra\misra2012_rules_dummy_ascii.txt -verify misra\misra-test.cpp.dump || exit /b !errorlevel!
python3 ..\misra.py --rule-texts=misra\misra2012_rules_dummy_utf8.txt -verify misra\misra-test.cpp.dump || exit /b !errorlevel!
python3 ..\misra.py --rule-texts=misra\misra2012_rules_dummy_windows1250.txt -verify misra\misra-test.cpp.dump || exit /b !errorlevel!
..\..\cppcheck --addon=misra --enable=style --platform=avr8 --error-exitcode=1 misra\misra-test-avr8.c || exit /b !errorlevel!
..\..\cppcheck --dump misc-test.cpp || exit /b !errorlevel!
python3 ..\misc.py -verify misc-test.cpp.dump || exit /b !errorlevel!
..\..\cppcheck --dump naming_test.c || exit /b !errorlevel!
rem TODO: fix this - does not fail on Linux
rem python3 ..\naming.py --var='[a-z].*' --function='[a-z].*' naming_test.c.dump || exit /b !errorlevel!
..\..\cppcheck --dump naming_test.cpp || exit /b !errorlevel!
python3 ..\naming.py --var='[a-z].*' --function='[a-z].*' naming_test.cpp.dump || exit /b !errorlevel!
- name: Check Windows test syntax
if: matrix.config == 'debug'
run: |
cd test\cfg
cl.exe windows.cpp -DUNICODE=1 -D_UNICODE=1 /Zs || exit /b !errorlevel!
cl.exe mfc.cpp /EHsc /Zs || exit /b !errorlevel!

140
src/cppcheck-2.14.0/.github/workflows/asan.yml vendored
Unescape View File

@ -0,0 +1,140 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: address sanitizer
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
env:
QT_VERSION: 5.15.2
ASAN_OPTIONS: detect_stack_use_after_return=1
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Set up Python 3.12
uses: actions/setup-python@v4
with:
python-version: '3.12'
check-latest: true
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install -y cmake make libpcre3-dev libboost-container-dev libxml2-utils
- name: Install clang
run: |
sudo apt-get purge --auto-remove llvm python3-lldb-14 llvm-14
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
sudo ./llvm.sh 18
- name: Install Qt ${{ env.QT_VERSION }}
if: false
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
cache: true
- name: Install missing Python packages
run: |
python3 -m pip install pip --upgrade
python3 -m pip install pytest
python3 -m pip install pytest-timeout
# TODO: disable all warnings
- name: CMake
run: |
cmake -S . -B cmake.output -DCMAKE_BUILD_TYPE=RelWithDebInfo -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=Off -DWITH_QCHART=Off -DUSE_MATCHCOMPILER=Verify -DANALYZE_ADDRESS=On -DENABLE_CHECK_INTERNAL=On -DUSE_BOOST=On -DCPPCHK_GLIBCXX_DEBUG=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=Off -DDISABLE_DMAKE=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
env:
CC: clang-18
CXX: clang++-18
- name: Build cppcheck
run: |
cmake --build cmake.output --target cppcheck -- -j $(nproc)
- name: Build test
run: |
cmake --build cmake.output --target testrunner -- -j $(nproc)
- name: Run tests
run: ./cmake.output/bin/testrunner
- name: Run cfg tests
run: |
cmake --build cmake.output --target checkcfg -- -j $(nproc)
# TODO: we should use CTest instead to parallelize tests but the start-up overhead will slow things down
- name: Run CTest
if: false
run: |
ctest --test-dir cmake.output --output-on-failure -j$(nproc)
- name: Run test/cli
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
- name: Run test/cli (-j2)
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_J: 2
- name: Run test/cli (--clang)
if: false
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_CLANG: clang
- name: Generate dependencies
if: false
run: |
# make sure auto-generated GUI files exist
make -C cmake.output autogen
make -C cmake.output gui-build-deps triage-build-ui-deps
# TODO: this is currently way too slow (~60 minutes) to enable it
# TODO: only fail the step on sanitizer issues - since we use processes it will only fail the underlying process which will result in an cppcheckError
- name: Self check
if: false
run: |
selfcheck_options="-q -j$(nproc) --std=c++11 --template=selfcheck --showtime=top5_summary -D__GNUC__ --error-exitcode=1 --inline-suppr --suppressions-list=.selfcheck_suppressions --library=gnu --inconclusive --enable=style,performance,portability,warning,missingInclude,internal --exception-handling --debug-warnings --check-level=exhaustive"
cppcheck_options="-D__CPPCHECK__ -DCHECK_INTERNAL -DHAVE_RULES --library=cppcheck-lib -Ilib -Iexternals/simplecpp/ -Iexternals/tinyxml2"
ec=0
./cmake.output/bin/cppcheck $selfcheck_options externals/simplecpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options --addon=naming.json cli lib || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt --addon=naming.json -Icmake.output/gui -Igui gui/*.cpp cmake.output/gui/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -Icli test/*.cpp tools/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt -Icmake.output/tools/triage -Igui tools/triage/*.cpp cmake.output/tools/triage/*.cpp || ec=1
exit $ec

60
src/cppcheck-2.14.0/.github/workflows/buildman.yml vendored
Unescape View File

@ -0,0 +1,60 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: Build manual
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
convert_via_pandoc:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v3
- run: |
mkdir output
- uses: docker://pandoc/latex:2.9
with:
args: --output=output/manual.html man/manual.md
- uses: docker://pandoc/latex:2.9
with:
args: --output=output/manual.pdf man/manual.md
- uses: docker://pandoc/latex:2.9
with:
args: --output=output/manual-premium.pdf man/manual-premium.md
- uses: actions/upload-artifact@v3
with:
name: output
path: output
manpage:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v3
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install -y xsltproc docbook-xsl
- name: build manpage
run: |
make man
- uses: actions/upload-artifact@v3
with:
name: cppcheck.1
path: cppcheck.1

34
src/cppcheck-2.14.0/.github/workflows/cifuzz.yml vendored
Unescape View File

@ -0,0 +1,34 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: CIFuzz
on: [pull_request]
permissions:
contents: read
jobs:
Fuzzing:
runs-on: ubuntu-latest
if: ${{ github.repository_owner == 'danmar' }}
steps:
- name: Build Fuzzers
id: build
uses: google/oss-fuzz/infra/cifuzz/actions/build_fuzzers@master
with:
oss-fuzz-project-name: 'cppcheck'
dry-run: false
language: c++
- name: Run Fuzzers
uses: google/oss-fuzz/infra/cifuzz/actions/run_fuzzers@master
with:
oss-fuzz-project-name: 'cppcheck'
fuzz-seconds: 300
dry-run: false
language: c++
- name: Upload Crash
uses: actions/upload-artifact@v3
if: failure() && steps.build.outcome == 'success'
with:
name: artifacts
path: ./out/artifacts

73
src/cppcheck-2.14.0/.github/workflows/clang-tidy.yml vendored
Unescape View File

@ -0,0 +1,73 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: clang-tidy
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
env:
QT_VERSION: 6.7.0
steps:
- uses: actions/checkout@v3
- name: Install missing software
run: |
sudo apt-get update
sudo apt-get install -y cmake make
sudo apt-get install -y libpcre3-dev
sudo apt-get install -y libffi7 # work around missing dependency for Qt install step
- name: Install clang
run: |
sudo apt-get purge --auto-remove llvm python3-lldb-14 llvm-14
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
sudo ./llvm.sh 18
sudo apt-get install -y clang-tidy-18
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
cache: true
- name: Verify clang-tidy configuration
run: |
clang-tidy-18 --verify-config
- name: Prepare CMake
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On -DCPPCHK_GLIBCXX_DEBUG=Off
env:
CC: clang-18
CXX: clang++-18
- name: Prepare CMake dependencies
run: |
# make sure the precompiled headers exist
make -C cmake.output/cli cmake_pch.hxx.pch
make -C cmake.output/gui cmake_pch.hxx.pch
make -C cmake.output/lib cmake_pch.hxx.pch
make -C cmake.output/test cmake_pch.hxx.pch
# make sure the auto-generated GUI sources exist
make -C cmake.output autogen
- name: Clang-Tidy
run: |
cmake --build cmake.output --target run-clang-tidy 2> /dev/null

56
src/cppcheck-2.14.0/.github/workflows/codeql-analysis.yml vendored
Unescape View File

@ -0,0 +1,56 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: "CodeQL"
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
security-events: write
jobs:
analyze:
name: Analyze
runs-on: ubuntu-22.04
strategy:
fail-fast: false
matrix:
# Override automatic language detection by changing the below list
# Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
language: ['cpp', 'python']
# Learn more...
# https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection
steps:
- name: Checkout repository
uses: actions/checkout@v3
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install libxml2-utils
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
uses: github/codeql-action/init@v2
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a config file.
# By default, queries listed here will override any specified in a config file.
# Prefix the list here with "+" to use these queries and those in the config file.
# queries: ./path/to/local/query, your-org/your-repo/queries@main
setup-python-dependencies: false
- run: |
make -j$(nproc) HAVE_RULES=yes cppcheck
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v2

70
src/cppcheck-2.14.0/.github/workflows/coverage.yml vendored
Unescape View File

@ -0,0 +1,70 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: Coverage
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
# FIXME: disabled because the tokenless upload suddenly started to permanently fail
if: false # ${{ github.repository_owner == 'danmar' }}
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ runner.os }}
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install libxml2-utils lcov
- name: Install missing Python packages on ubuntu
run: |
python -m pip install pip --upgrade
python -m pip install lcov_cobertura
- name: Compile instrumented
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) all CXXFLAGS="-g -fprofile-arcs -ftest-coverage" HAVE_RULES=yes
- name: Run instrumented tests
run: |
./testrunner
test/cfg/runtests.sh
- name: Generate coverage report
run: |
gcov lib/*.cpp -o lib/
lcov --directory ./ --capture --output-file lcov_tmp.info -b ./
lcov --extract lcov_tmp.info "$(pwd)/*" --output-file lcov.info
genhtml lcov.info -o coverage_report --frame --legend --demangle-cpp
- uses: actions/upload-artifact@v3
with:
name: Coverage results
path: coverage_report
- uses: codecov/codecov-action@v3
with:
# token: ${{ secrets.CODECOV_TOKEN }} # not required for public repos
# file: ./coverage.xml # optional
flags: unittests # optional
name: ${{ github.repository }} # optional
fail_ci_if_error: true # optional (default = false):

39
src/cppcheck-2.14.0/.github/workflows/coverity.yml vendored
Unescape View File

@ -0,0 +1,39 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: Coverity
on:
schedule:
- cron: "0 0 * * *"
permissions:
contents: read
jobs:
scan:
runs-on: ubuntu-latest
if: ${{ github.repository_owner == 'danmar' }}
steps:
- uses: actions/checkout@v4
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install qtbase5-dev qttools5-dev libqt5charts5-dev libboost-container-dev
- name: Download Coverity build tool
run: |
wget -c -N https://scan.coverity.com/download/linux64 --post-data "token=${{ secrets.COVERITY_SCAN_TOKEN }}&project=cppcheck" -O coverity_tool.tar.gz
mkdir coverity_tool
tar xzf coverity_tool.tar.gz --strip 1 -C coverity_tool
- name: Build with Coverity build tool
run: |
export PATH=`pwd`/coverity_tool/bin:$PATH
cov-build --dir cov-int make CPPCHK_GLIBCXX_DEBUG=
- name: Submit build result to Coverity Scan
run: |
tar czvf cov.tar.gz cov-int
curl --form token=${{ secrets.COVERITY_SCAN_TOKEN }} \
--form email=daniel.marjamaki@gmail.com \
--form file=@cov.tar.gz \
--form version="Commit $GITHUB_SHA" \
--form description="Development" \
https://scan.coverity.com/builds?project=cppcheck

44
src/cppcheck-2.14.0/.github/workflows/cppcheck-premium.yml vendored
Unescape View File

@ -0,0 +1,44 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: cppcheck-premium
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04 # run on the latest image only
env:
PREMIUM_VERSION: 24.2.0
steps:
- uses: actions/checkout@v3
- name: Download cppcheckpremium
run: |
wget https://files.cppchecksolutions.com/${{ env.PREMIUM_VERSION }}/ubuntu-22.04/cppcheckpremium-${{ env.PREMIUM_VERSION }}-amd64.tar.gz
tar xzf cppcheckpremium-${{ env.PREMIUM_VERSION }}-amd64.tar.gz
- name: Generate a license file
run: |
echo cppcheck > cppcheck.lic
echo 241231 >> cppcheck.lic
echo 80000 >> cppcheck.lic
echo 53b72a908d7aeeee >> cppcheck.lic
echo path:lib >> cppcheck.lic
- name: Check
run: |
cppcheckpremium-${{ env.PREMIUM_VERSION }}/premiumaddon --check-loc-license cppcheck.lic > cppcheck-premium-loc
cppcheckpremium-${{ env.PREMIUM_VERSION }}/cppcheck -j$(nproc) -D__GNUC__ -D__CPPCHECK__ --suppressions-list=cppcheckpremium-suppressions --platform=unix64 --enable=style --premium=misra-c++-2008 --premium=cert-c++-2016 --inline-suppr --error-exitcode=1 lib

47
src/cppcheck-2.14.0/.github/workflows/format.yml vendored
Unescape View File

@ -0,0 +1,47 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: format
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v3
- name: Cache uncrustify
uses: actions/cache@v3
id: cache-uncrustify
with:
path: |
~/uncrustify
key: ${{ runner.os }}-uncrustify
- name: build uncrustify
if: steps.cache-uncrustify.outputs.cache-hit != 'true'
run: |
wget https://github.com/uncrustify/uncrustify/archive/refs/tags/uncrustify-0.72.0.tar.gz
tar xzvf uncrustify-0.72.0.tar.gz && cd uncrustify-uncrustify-0.72.0
cmake -S . -B build -DCMAKE_BUILD_TYPE=Release
cmake --build build -- -j$(nproc) -s
mkdir ~/uncrustify
cd build && cp uncrustify ~/uncrustify/
- name: Uncrustify check
run: |
~/uncrustify/uncrustify -c .uncrustify.cfg -l CPP --no-backup --replace */*.cpp */*.h
git diff
git diff | diff - /dev/null &> /dev/null

187
src/cppcheck-2.14.0/.github/workflows/iwyu.yml vendored
Unescape View File

@ -0,0 +1,187 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: include-what-you-use
on:
schedule:
- cron: '0 0 * * 0'
workflow_dispatch:
permissions:
contents: read
jobs:
iwyu:
strategy:
matrix:
image: ["archlinux:latest"] # "opensuse/tumbleweed:latest" / "fedora:latest" / "debian:unstable" / "archlinux:latest"
runs-on: ubuntu-22.04
if: ${{ github.repository_owner == 'danmar' }}
container:
image: ${{ matrix.image }}
env:
QT_VERSION: 6.7.0
steps:
- uses: actions/checkout@v3
- name: Install missing software on debian/ubuntu
if: contains(matrix.image, 'debian')
run: |
apt-get update
apt-get install -y cmake clang make libpcre3-dev
apt-get install -y libgl-dev # fixes missing dependency for Qt in CMake
apt-get install -y iwyu
- name: Install missing software on archlinux
if: contains(matrix.image, 'archlinux')
run: |
set -x
pacman -Sy
pacman -S cmake make clang pcre --noconfirm
pacman -S libglvnd --noconfirm # fixes missing dependency for Qt in CMake
pacman-key --init
pacman-key --recv-key 3056513887B78AEB --keyserver keyserver.ubuntu.com
pacman-key --lsign-key 3056513887B78AEB
pacman -U 'https://cdn-mirror.chaotic.cx/chaotic-aur/chaotic-keyring.pkg.tar.zst' 'https://cdn-mirror.chaotic.cx/chaotic-aur/chaotic-mirrorlist.pkg.tar.zst' --noconfirm
echo "[chaotic-aur]" >> /etc/pacman.conf
echo "Include = /etc/pacman.d/chaotic-mirrorlist" >> /etc/pacman.conf
pacman -Sy
pacman -S include-what-you-use --noconfirm
ln -s iwyu-tool /usr/sbin/iwyu_tool
- name: Install missing software on Fedora
if: contains(matrix.image, 'fedora')
run: |
dnf install -y cmake clang pcre-devel
dnf install -y libglvnd-devel # fixes missing dependency for Qt in CMake
dnf install -y iwyu
ln -s iwyu_tool.py /usr/bin/iwyu_tool
- name: Install missing software on OpenSUSE
if: contains(matrix.image, 'opensuse')
run: |
zypper install -y cmake clang pcre-devel
zypper install -y include-what-you-use-tools
# fixes error during Qt installation
# /__w/cppcheck/Qt/6.7.0/gcc_64/bin/qmake: error while loading shared libraries: libgthread-2.0.so.0: cannot open shared object file: No such file or directory
zypper install -y libgthread-2_0-0
ln -s iwyu_tool.py /usr/bin/iwyu_tool
# Fails on OpenSUSE:
# Warning: Failed to restore: Tar failed with error: Unable to locate executable file: tar. Please verify either the file path exists or the file can be found within a directory specified by the PATH environment variable. Also check the file mode to verify the file is executable.
# Also the shell is broken afterwards:
# OCI runtime exec failed: exec failed: unable to start container process: exec: "sh": executable file not found in $PATH: unknown
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
install-deps: false
cache: true
- name: Prepare CMake
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DCMAKE_BUILD_TYPE=Release -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCPPCHK_GLIBCXX_DEBUG=Off -DUSE_MATCHCOMPILER=Off -DEXTERNALS_AS_SYSTEM=On
env:
CC: clang
CXX: clang++
# Fails on Debian:
# /__w/cppcheck/Qt/6.7.0/gcc_64/libexec/rcc: error while loading shared libraries: libglib-2.0.so.0: cannot open shared object file: No such file or directory
- name: Prepare CMake dependencies
run: |
# make sure the precompiled headers exist
#make -C cmake.output/cli cmake_pch.hxx.pch
#make -C cmake.output/gui cmake_pch.hxx.pch
#make -C cmake.output/lib cmake_pch.hxx.pch
#make -C cmake.output/test cmake_pch.hxx.pch
# make sure the auto-generated GUI sources exist
make -C cmake.output autogen
# make sure the auto-generated GUI dependencies exist
make -C cmake.output gui-build-deps
make -C cmake.output triage-build-ui-deps
- name: iwyu_tool
run: |
PWD=$(pwd)
# -isystem/usr/lib/clang/17/include
iwyu_tool -p cmake.output -j $(nproc) -- -w -Xiwyu --max_line_length=1024 -Xiwyu --comment_style=long -Xiwyu --quoted_includes_first -Xiwyu --update_comments > iwyu.log
- uses: actions/upload-artifact@v3
if: success() || failure()
with:
name: Compilation Database
path: ./cmake.output/compile_commands.json
- uses: actions/upload-artifact@v3
if: success() || failure()
with:
name: Logs (include-what-you-use)
path: ./*.log
clang-include-cleaner:
runs-on: ubuntu-22.04
if: ${{ github.repository_owner == 'danmar' }}
env:
QT_VERSION: 6.7.0
steps:
- uses: actions/checkout@v3
- name: Install missing software
run: |
sudo apt-get update
sudo apt-get install -y cmake make libpcre3-dev
sudo apt-get install -y libgl-dev # missing dependency for using Qt in CMake
- name: Install clang
run: |
sudo apt-get purge --auto-remove llvm python3-lldb-14 llvm-14
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
sudo ./llvm.sh 18
sudo apt-get install -y clang-tools-18
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
install-deps: false
cache: true
- name: Prepare CMake
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DCMAKE_BUILD_TYPE=Release -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=On -DUSE_QT6=On -DWITH_QCHART=On -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCPPCHK_GLIBCXX_DEBUG=Off -DUSE_MATCHCOMPILER=Off -DEXTERNALS_AS_SYSTEM=On
env:
CC: clang-18
CXX: clang++-18
- name: Prepare CMake dependencies
run: |
# make sure the precompiled headers exist
#make -C cmake.output/cli cmake_pch.hxx.pch
#make -C cmake.output/gui cmake_pch.hxx.pch
#make -C cmake.output/lib cmake_pch.hxx.pch
#make -C cmake.output/test cmake_pch.hxx.pch
# make sure the auto-generated GUI sources exist
make -C cmake.output autogen
# make sure the auto-generated GUI dependencies exist
make -C cmake.output gui-build-deps
- name: clang-include-cleaner
run: |
# TODO: run multi-threaded
find $PWD/cli $PWD/lib $PWD/test $PWD/gui -maxdepth 1 -name "*.cpp" | xargs -t -n 1 clang-include-cleaner-18 --print=changes --extra-arg=-w -p cmake.output > clang-include-cleaner.log 2>&1
- uses: actions/upload-artifact@v3
with:
name: Logs (clang-include-cleaner)
path: ./*.log

168
src/cppcheck-2.14.0/.github/workflows/release-windows.yml vendored
Unescape View File

@ -0,0 +1,168 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: release-windows
on:
push:
tags:
- '2.*'
schedule:
- cron: '0 0 * * *'
workflow_dispatch:
permissions:
contents: read
defaults:
run:
shell: cmd
jobs:
build:
runs-on: windows-2022
if: ${{ github.repository_owner == 'danmar' }}
env:
# see https://www.pcre.org/original/changelog.txt
PCRE_VERSION: 8.45
QT_VERSION: 5.15.2
steps:
- uses: actions/checkout@v3
- name: Set up Visual Studio environment
uses: ilammy/msvc-dev-cmd@v1
- name: Cache PCRE
id: cache-pcre
uses: actions/cache@v3
with:
path: |
externals\pcre.h
externals\pcre64.lib
key: pcre-${{ env.PCRE_VERSION }}-bin-x64-win-release-job
- name: Download PCRE
if: steps.cache-pcre.outputs.cache-hit != 'true'
run: |
curl -fsSL https://github.com/pfultz2/pcre/archive/refs/tags/%PCRE_VERSION%.zip -o pcre-%PCRE_VERSION%.zip || exit /b !errorlevel!
- name: Install PCRE
if: steps.cache-pcre.outputs.cache-hit != 'true'
run: |
7z x pcre-%PCRE_VERSION%.zip || exit /b !errorlevel!
cd pcre-%PCRE_VERSION% || exit /b !errorlevel!
cmake . -G "Visual Studio 17 2022" -A x64 -DPCRE_BUILD_PCRECPP=OFF -DPCRE_BUILD_PCREGREP=OFF -DPCRE_BUILD_TESTS=OFF || exit /b !errorlevel!
msbuild -m PCRE.sln -p:Configuration=Release -p:Platform=x64 || exit /b !errorlevel!
copy pcre.h ..\externals || exit /b !errorlevel!
copy Release\pcre.lib ..\externals\pcre64.lib || exit /b !errorlevel!
# available modules: https://github.com/miurahr/aqtinstall/blob/master/docs/getting_started.rst#installing-modules
# available tools: https://github.com/miurahr/aqtinstall/blob/master/docs/getting_started.rst#installing-tools
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
tools: 'tools_opensslv3_x64'
cache: true
- name: Create .qm
run: |
cd gui || exit /b !errorlevel!
lupdate gui.pro -no-obsolete || exit /b !errorlevel!
lrelease gui.pro -removeidentical || exit /b !errorlevel!
- name: Matchcompiler
run: python tools\matchcompiler.py --write-dir lib || exit /b !errorlevel!
- name: Build x64 release GUI
run: |
cd gui || exit /b !errorlevel!
qmake HAVE_QCHART=yes || exit /b !errorlevel!
nmake release || exit /b !errorlevel!
env:
CL: /MP
- name: Deploy app
run: |
windeployqt Build\gui || exit /b !errorlevel!
del Build\gui\cppcheck-gui.ilk || exit /b !errorlevel!
del Build\gui\cppcheck-gui.pdb || exit /b !errorlevel!
# TODO: build with boost enabled
- name: Build CLI x64 release configuration using MSBuild
run: msbuild -m cppcheck.sln -t:cli -p:Configuration=Release-PCRE -p:Platform=x64 || exit /b !errorlevel!
- name: Compile misra.py executable
run: |
pip install -U pyinstaller || exit /b !errorlevel!
cd addons || exit /b !errorlevel!
pyinstaller --hidden-import xml --hidden-import xml.etree --hidden-import xml.etree.ElementTree misra.py || exit /b !errorlevel!
del *.spec || exit /b !errorlevel!
- name: Collect files
run: |
move Build\gui win_installer\files || exit /b !errorlevel!
mkdir win_installer\files\addons || exit /b !errorlevel!
copy addons\*.* win_installer\files\addons || exit /b !errorlevel!
copy addons\dist\misra\*.* win_installer\files\addons || exit /b !errorlevel!
mkdir win_installer\files\cfg || exit /b !errorlevel!
copy cfg\*.cfg win_installer\files\cfg || exit /b !errorlevel!
:: "platforms" is a folder used by Qt as well so it already exists
:: mkdir win_installer\files\platforms || exit /b !errorlevel!
copy platforms\*.xml win_installer\files\platforms || exit /b !errorlevel!
copy bin\cppcheck.exe win_installer\files || exit /b !errorlevel!
copy bin\cppcheck-core.dll win_installer\files || exit /b !errorlevel!
mkdir win_installer\files\help || exit /b !errorlevel!
xcopy /s gui\help win_installer\files\help || exit /b !errorlevel!
del win_installer\files\translations\*.qm || exit /b !errorlevel!
move gui\*.qm win_installer\files\translations || exit /b !errorlevel!
:: copy libcrypto-3-x64.dll and libssl-3-x64.dll
copy %RUNNER_WORKSPACE%\Qt\Tools\OpenSSLv3\Win_x64\bin\lib*.dll win_installer\files || exit /b !errorlevel!
- name: Build Installer
run: |
cd win_installer || exit /b !errorlevel!
REM Read ProductVersion
for /f "tokens=4 delims= " %%a in ('find "ProductVersion" productInfo.wxi') do set PRODUCTVER=%%a
REM Remove double quotes
set PRODUCTVER=%PRODUCTVER:"=%
echo ProductVersion="%PRODUCTVER%" || exit /b !errorlevel!
msbuild -m cppcheck.wixproj -p:Platform=x64,ProductVersion=%PRODUCTVER%.${{ github.run_number }} || exit /b !errorlevel!
- uses: actions/upload-artifact@v3
with:
name: installer
path: win_installer/Build/
- uses: actions/upload-artifact@v3
with:
name: deploy
path: win_installer\files
- name: Clean up deploy
run: |
del win_installer\files\addons\*.dll || exit /b !errorlevel!
del win_installer\files\addons\*.pyd || exit /b !errorlevel!
del win_installer\files\addons\base_library.zip || exit /b !errorlevel!
rmdir /s /q win_installer\files\bearer || exit /b !errorlevel!
rmdir /s /q win_installer\files\help || exit /b !errorlevel!
rmdir /s /q win_installer\files\iconengines || exit /b !errorlevel!
rmdir /s /q win_installer\files\imageformats || exit /b !errorlevel!
rmdir /s /q win_installer\files\printsupport || exit /b !errorlevel!
rmdir /s /q win_installer\files\sqldrivers || exit /b !errorlevel!
ren win_installer\files\translations lang || exit /b !errorlevel!
del win_installer\files\d3dcompiler_47.dll || exit /b !errorlevel!
del win_installer\files\libEGL.dll || exit /b !errorlevel!
del win_installer\files\libGLESv2.dll || exit /b !errorlevel!
del win_installer\files\opengl32sw.dll || exit /b !errorlevel!
del win_installer\files\Qt5Svg.dll || exit /b !errorlevel!
del win_installer\files\vc_redist.x64.exe || exit /b !errorlevel!
- uses: actions/upload-artifact@v3
with:
name: portable
path: win_installer\files

200
src/cppcheck-2.14.0/.github/workflows/scriptcheck.yml vendored
Unescape View File

@ -0,0 +1,200 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: scriptcheck
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
# 'ubuntu-22.04' removes Python 2.7, 3.6 and 3.6 so keep the previous LTS version
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ runner.os }}
- name: Cache Cppcheck
uses: actions/cache@v3
with:
path: cppcheck
key: ${{ runner.os }}-scriptcheck-cppcheck-${{ github.sha }}
- name: build cppcheck
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
make -j$(nproc) -s CXXFLAGS="-w"
strip -s ./cppcheck
scriptcheck:
needs: build
# 'ubuntu-22.04' removes Python 2.7, 3.5 and 3.6 so keep the previous LTS version
# 'ubutunu-20.04' no longer works on 2.7 - TODO: re-added in a different way or remove support for it?
runs-on: ubuntu-20.04
strategy:
matrix:
python-version: [3.5, 3.6, 3.7, 3.8, 3.9, '3.10', '3.11', '3.12']
include:
- python-version: '3.12'
python-latest: true
fail-fast: false
steps:
- uses: actions/checkout@v3
- name: Restore Cppcheck
uses: actions/cache@v3
with:
path: cppcheck
key: ${{ runner.os }}-scriptcheck-cppcheck-${{ github.sha }}
- name: Set up Python ${{ matrix.python-version }}
uses: actions/setup-python@v4
with:
python-version: ${{ matrix.python-version }}
check-latest: true
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install tidy libxml2-utils
- name: Install missing software on ubuntu (Python 2)
if: matrix.python-version == '2.7'
run: |
python -m pip install pip --upgrade
python -m pip install pathlib
python -m pip install pytest
python -m pip install pygments
- name: Install missing software on ubuntu (Python 3)
if: matrix.python-version != '2.7'
run: |
# shellcheck cannot be installed via pip
# ERROR: Could not find a version that satisfies the requirement shellcheck (from versions: none)
# ERROR: No matching distribution found for shellcheck
sudo apt-get install shellcheck
python -m pip install pip --upgrade
python -m pip install natsort
python -m pip install pexpect
python -m pip install pylint
python -m pip install unittest2
python -m pip install pytest
python -m pip install pygments
python -m pip install requests
python -m pip install psutil
- name: run Shellcheck
if: matrix.python-latest
run: |
find . -name "*.sh" | xargs shellcheck --exclude SC2002,SC2013,SC2034,SC2035,SC2043,SC2046,SC2086,SC2089,SC2090,SC2129,SC2211,SC2231
- name: run pylint
if: matrix.python-latest
run: |
echo "FIXME pylint is disabled for now because it fails to import files:"
echo "FIXME addons/runaddon.py:1:0: E0401: Unable to import 'cppcheckdata' (import-error)"
echo "FIXME addons/runaddon.py:1:0: E0401: Unable to import 'cppcheck' (import-error)"
# pylint --rcfile=pylintrc_travis --jobs $(nproc) addons/*.py htmlreport/cppcheck-htmlreport htmlreport/*.py tools/*.py
- name: check .json files
if: matrix.python-latest
run: |
find . -name '*.json' | xargs -n 1 python -m json.tool > /dev/null
- name: Validate
if: matrix.python-latest
run: |
make -j$(nproc) validateCFG validatePlatforms validateRules
- name: check python syntax
if: matrix.python-version != '2.7'
run: |
python -m py_compile addons/*.py
python -m py_compile htmlreport/cppcheck-htmlreport
python -m py_compile htmlreport/*.py
python -m py_compile tools/*.py
- name: compile addons
run: |
python -m compileall ./addons
- name: test matchcompiler
run: |
python tools/test_matchcompiler.py
# we cannot specify -Werror since xml/etree/ElementTree.py in Python 3.9/3.10 contains an unclosed file
- name: test addons
if: matrix.python-version == '3.9' || matrix.python-version == '3.10'
run: |
python -m pytest --strict-markers -vv addons/test
env:
PYTHONPATH: ./addons
- name: test addons
if: matrix.python-version != '3.9' && matrix.python-version != '3.10'
run: |
python -m pytest -Werror --strict-markers -vv addons/test
env:
PYTHONPATH: ./addons
- name: test htmlreport
run: |
htmlreport/test_htmlreport.py
cd htmlreport
./check.sh
- name: test reduce
run: |
python -m pytest -Werror --strict-markers -vv tools/reduce_test.py
env:
PYTHONPATH: ./tools
- name: test donate_cpu_lib
if: matrix.python-version != '2.7'
run: |
python -m pytest -Werror --strict-markers -vv tools/donate_cpu_lib_test.py
env:
PYTHONPATH: ./tools
- name: test donate_cpu_server
if: matrix.python-version != '2.7'
run: |
python -m pytest -Werror --strict-markers -vv tools/donate_cpu_server_test.py
env:
PYTHONPATH: ./tools
dmake:
strategy:
matrix:
os: [ubuntu-22.04, macos-12, windows-2022]
fail-fast: false
runs-on: ${{ matrix.os }}
steps:
- uses: actions/checkout@v3
- name: run dmake
run: |
make -j2 CXXFLAGS="-w" run-dmake
- name: check diff
run: |
git diff --exit-code

135
src/cppcheck-2.14.0/.github/workflows/selfcheck.yml vendored
Unescape View File

@ -0,0 +1,135 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: selfcheck
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
env:
QT_VERSION: 6.7.0
steps:
- uses: actions/checkout@v3
- name: Install missing software
run: |
sudo apt-get update
sudo apt-get install libboost-container-dev
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ runner.os }}
- name: Install missing software
run: |
sudo apt-get update
sudo apt-get install clang-14 valgrind
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
cache: true
# TODO: cache this - perform same build as for the other self check
- name: Self check (build)
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
# valgrind cannot handle DWARF 5 yet so force version 4
# work around performance regression with -inline-deferral
make -j$(nproc) -s CXXFLAGS="-O2 -w -DHAVE_BOOST -gdwarf-4 -mllvm -inline-deferral" MATCHCOMPILER=yes
env:
CC: clang-14
CXX: clang++-14
- name: CMake
run: |
cmake -S . -B cmake.output -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=ON -DUSE_QT6=On -DWITH_QCHART=ON -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On
- name: Generate dependencies
run: |
# make sure the precompiled headers exist
make -C cmake.output lib/CMakeFiles/cppcheck-core.dir/cmake_pch.hxx.cxx
make -C cmake.output test/CMakeFiles/testrunner.dir/cmake_pch.hxx.cxx
# make sure auto-generated GUI files exist
make -C cmake.output autogen
make -C cmake.output gui-build-deps
# TODO: find a way to report unmatched suppressions without need to add information checks
- name: Self check (unusedFunction)
if: false # TODO: fails with preprocessorErrorDirective - see #10667
run: |
./cppcheck -q --template=selfcheck --error-exitcode=1 --library=cppcheck-lib --library=qt -D__CPPCHECK__ -D__GNUC__ -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --enable=unusedFunction --exception-handling -rp=. --project=cmake.output/compile_commands.json --suppressions-list=.selfcheck_unused_suppressions --inline-suppr
env:
DISABLE_VALUEFLOW: 1
UNUSEDFUNCTION_ONLY: 1
# the following steps are duplicated from above since setting up the build node in a parallel step takes longer than the actual steps
- name: CMake (no test)
run: |
cmake -S . -B cmake.output.notest -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=Off -DBUILD_GUI=ON -DUSE_QT6=On -DWITH_QCHART=ON -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On
- name: Generate dependencies (no test)
run: |
# make sure the precompiled headers exist
make -C cmake.output.notest lib/CMakeFiles/cppcheck-core.dir/cmake_pch.hxx.cxx
# make sure auto-generated GUI files exist
make -C cmake.output.notest autogen
make -C cmake.output.notest gui-build-deps
# TODO: find a way to report unmatched suppressions without need to add information checks
- name: Self check (unusedFunction / no test)
run: |
./cppcheck -q --template=selfcheck --error-exitcode=1 --library=cppcheck-lib --library=qt -D__CPPCHECK__ -D__GNUC__ -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --enable=unusedFunction --exception-handling -rp=. --project=cmake.output.notest/compile_commands.json --suppressions-list=.selfcheck_unused_suppressions --inline-suppr
env:
DISABLE_VALUEFLOW: 1
UNUSEDFUNCTION_ONLY: 1
- name: Fetch corpus
run: |
wget https://github.com/danmar/cppcheck/archive/refs/tags/2.8.tar.gz
tar xvf 2.8.tar.gz
- name: CMake (corpus / no test)
run: |
cmake -S cppcheck-2.8 -B cmake.output.corpus -G "Unix Makefiles" -DHAVE_RULES=On -DBUILD_TESTS=Off -DBUILD_GUI=ON -DUSE_QT6=On -DWITH_QCHART=ON -DENABLE_CHECK_INTERNAL=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On
- name: Generate dependencies (corpus)
run: |
# make sure the precompiled headers exist
make -C cmake.output.notest lib/CMakeFiles/cppcheck-core.dir/cmake_pch.hxx.cxx
# make sure auto-generated GUI files exist
make -C cmake.output.corpus autogen
make -C cmake.output.corpus gui-build-deps
# TODO: find a way to report unmatched suppressions without need to add information checks
- name: Self check (unusedFunction / corpus / no test / callgrind)
run: |
# TODO: fix -rp so the suppressions actually work
valgrind --tool=callgrind ./cppcheck --template=selfcheck --error-exitcode=0 --library=cppcheck-lib --library=qt -D__GNUC__ -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --enable=unusedFunction --exception-handling -rp=. --project=cmake.output.corpus/compile_commands.json --suppressions-list=.selfcheck_unused_suppressions --inline-suppr 2>callgrind.log || (cat callgrind.log && false)
cat callgrind.log
callgrind_annotate --auto=no > callgrind.annotated.log
head -50 callgrind.annotated.log
env:
DISABLE_VALUEFLOW: 1
- uses: actions/upload-artifact@v3
with:
name: Callgrind Output
path: ./callgrind.*

142
src/cppcheck-2.14.0/.github/workflows/tsan.yml vendored
Unescape View File

@ -0,0 +1,142 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: thread sanitizer
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
env:
QT_VERSION: 5.15.2
TSAN_OPTIONS: halt_on_error=1
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Set up Python 3.12
uses: actions/setup-python@v4
with:
python-version: '3.12'
check-latest: true
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install -y cmake make libpcre3-dev libboost-container-dev libxml2-utils
- name: Install clang
run: |
sudo apt-get purge --auto-remove llvm python3-lldb-14 llvm-14
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
sudo ./llvm.sh 18
- name: Install Qt ${{ env.QT_VERSION }}
if: false
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
cache: true
- name: Install missing Python packages
run: |
python3 -m pip install pip --upgrade
python3 -m pip install pytest
python3 -m pip install pytest-timeout
- name: CMake
run: |
cmake -S . -B cmake.output -DCMAKE_BUILD_TYPE=RelWithDebInfo -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=Off -DWITH_QCHART=Off -DUSE_MATCHCOMPILER=Verify -DANALYZE_THREAD=On -DENABLE_CHECK_INTERNAL=On -DUSE_BOOST=On -DCPPCHK_GLIBCXX_DEBUG=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=Off -DDISABLE_DMAKE=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
env:
CC: clang-18
CXX: clang++-18
- name: Build cppcheck
run: |
cmake --build cmake.output --target cppcheck -- -j $(nproc)
- name: Build test
run: |
cmake --build cmake.output --target testrunner -- -j $(nproc)
- name: Run tests
run: ./cmake.output/bin/testrunner
- name: Run cfg tests
run: |
cmake --build cmake.output --target checkcfg -- -j $(nproc)
# TODO: we should use CTest instead to parallelize tests but the start-up overhead will slow things down
- name: Run CTest
if: false
run: |
ctest --test-dir cmake.output --output-on-failure -j$(nproc)
- name: Run test/cli
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_EXECUTOR: thread
- name: Run test/cli (-j2)
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_J: 2
- name: Run test/cli (--clang)
if: false
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_CLANG: clang
- name: Generate dependencies
if: false
run: |
# make sure auto-generated GUI files exist
make -C cmake.output autogen
make -C cmake.output gui-build-deps triage-build-ui-deps
# TODO: disabled for now as it takes around 40 minutes to finish
# set --error-exitcode=0 so we only fail on sanitizer issues - since it uses threads for execution it will exit the whole process on the first issue
- name: Self check
if: false
run: |
selfcheck_options="-q -j$(nproc) --std=c++11 --template=selfcheck --showtime=top5_summary -D__GNUC__ --error-exitcode=0 --inline-suppr --suppressions-list=.selfcheck_suppressions --library=gnu --inconclusive --enable=style,performance,portability,warning,missingInclude,internal --exception-handling --debug-warnings --check-level=exhaustive"
selfcheck_options="$selfcheck_options --executor=thread"
cppcheck_options="-D__CPPCHECK__ -DCHECK_INTERNAL -DHAVE_RULES --library=cppcheck-lib -Ilib -Iexternals/simplecpp/ -Iexternals/tinyxml2"
ec=0
./cmake.output/bin/cppcheck $selfcheck_options externals/simplecpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options --addon=naming.json -DCHECK_INTERNAL cli lib || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt --addon=naming.json -Icmake.output/gui -Igui gui/*.cpp cmake.output/gui/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -Icli test/*.cpp tools/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt -Icmake.output/tools/triage -Igui tools/triage/*.cpp cmake.output/tools/triage/*.cpp || ec=1
exit $ec

136
src/cppcheck-2.14.0/.github/workflows/ubsan.yml vendored
Unescape View File

@ -0,0 +1,136 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: undefined behaviour sanitizers
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
env:
QT_VERSION: 5.15.2
UBSAN_OPTIONS: print_stacktrace=1:halt_on_error=1:report_error_type=1
# TODO: figure out why there are cache misses with PCH enabled
CCACHE_SLOPPINESS: pch_defines,time_macros
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ github.job }}-${{ matrix.os }}
- name: Set up Python 3.12
uses: actions/setup-python@v4
with:
python-version: '3.12'
check-latest: true
- name: Install missing software on ubuntu
run: |
sudo apt-get update
sudo apt-get install -y cmake make libpcre3-dev libboost-container-dev libxml2-utils
- name: Install clang
run: |
sudo apt-get purge --auto-remove llvm python3-lldb-14 llvm-14
wget https://apt.llvm.org/llvm.sh
chmod +x llvm.sh
sudo ./llvm.sh 18
- name: Install Qt ${{ env.QT_VERSION }}
uses: jurplel/install-qt-action@v3
with:
version: ${{ env.QT_VERSION }}
modules: 'qtcharts'
cache: true
- name: Install missing Python packages
run: |
python3 -m pip install pip --upgrade
python3 -m pip install pytest
python3 -m pip install pytest-timeout
# TODO: disable warnings
- name: CMake
run: |
cmake -S . -B cmake.output -DCMAKE_BUILD_TYPE=RelWithDebInfo -DHAVE_RULES=On -DBUILD_TESTS=On -DBUILD_GUI=ON -DWITH_QCHART=ON -DUSE_MATCHCOMPILER=Verify -DANALYZE_UNDEFINED=On -DENABLE_CHECK_INTERNAL=On -DUSE_BOOST=On -DCPPCHK_GLIBCXX_DEBUG=Off -DCMAKE_DISABLE_PRECOMPILE_HEADERS=On -DCMAKE_GLOBAL_AUTOGEN_TARGET=On -DDISABLE_DMAKE=On -DCMAKE_C_COMPILER_LAUNCHER=ccache -DCMAKE_CXX_COMPILER_LAUNCHER=ccache
env:
CC: clang-18
CXX: clang++-18
- name: Build cppcheck
run: |
cmake --build cmake.output --target cppcheck -- -j $(nproc)
- name: Build test
run: |
cmake --build cmake.output --target testrunner -- -j $(nproc)
- name: Run tests
run: ./cmake.output/bin/testrunner
- name: Run cfg tests
run: |
cmake --build cmake.output --target checkcfg -- -j $(nproc)
# TODO: we should use CTest instead to parallelize tests but the start-up overhead will slow things down
- name: Run CTest
if: false
run: |
ctest --test-dir cmake.output --output-on-failure -j$(nproc)
- name: Run test/cli
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
- name: Run test/cli (-j2)
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_J: 2
- name: Run test/cli (--clang)
if: false
run: |
pwd=$(pwd)
cd test/cli
TEST_CPPCHECK_EXE_LOOKUP_PATH="$pwd/cmake.output" python3 -m pytest -Werror --strict-markers -vv
env:
TEST_CPPCHECK_INJECT_CLANG: clang
- name: Generate dependencies
run: |
# make sure auto-generated GUI files exist
make -C cmake.output autogen
make -C cmake.output gui-build-deps triage-build-ui-deps
# TODO: only fail the step on sanitizer issues - since we use processes it will only fail the underlying process which will result in an cppcheckError
- name: Self check
run: |
selfcheck_options="-q -j$(nproc) --std=c++11 --template=selfcheck --showtime=top5_summary -D__GNUC__ --error-exitcode=1 --inline-suppr --suppressions-list=.selfcheck_suppressions --library=gnu --inconclusive --enable=style,performance,portability,warning,missingInclude,internal --exception-handling --debug-warnings --check-level=exhaustive"
cppcheck_options="-D__CPPCHECK__ -DCHECK_INTERNAL -DHAVE_RULES --library=cppcheck-lib -Ilib -Iexternals/simplecpp/ -Iexternals/tinyxml2"
ec=0
./cmake.output/bin/cppcheck $selfcheck_options externals/simplecpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options --addon=naming.json cli lib || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQT_VERSION=0x060000 -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt --addon=naming.json -Icmake.output/gui -Igui gui/*.cpp cmake.output/gui/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -Icli test/*.cpp tools/*.cpp || ec=1
./cmake.output/bin/cppcheck $selfcheck_options $cppcheck_options -DQ_MOC_OUTPUT_REVISION=68 -DQT_CHARTS_LIB -DQT_MOC_HAS_STRINGDATA --library=qt -Icmake.output/tools/triage -Igui tools/triage/*.cpp cmake.output/tools/triage/*.cpp || ec=1
exit $ec

62
src/cppcheck-2.14.0/.github/workflows/valgrind.yml vendored
Unescape View File

@ -0,0 +1,62 @@
# Syntax reference https://help.github.com/en/actions/reference/workflow-syntax-for-github-actions
# Environment reference https://help.github.com/en/actions/reference/virtual-environments-for-github-hosted-runners
name: valgrind
on:
push:
branches:
- 'main'
- 'releases/**'
tags:
- '2.*'
pull_request:
permissions:
contents: read
jobs:
build:
runs-on: ubuntu-22.04
steps:
- uses: actions/checkout@v3
- name: ccache
uses: hendrikmuhs/ccache-action@v1.2.11
with:
key: ${{ github.workflow }}-${{ runner.os }}
- name: Install missing software
run: |
sudo apt-get update
sudo apt-get install libxml2-utils
sudo apt-get install valgrind
sudo apt-get install libboost-container-dev
sudo apt-get install debuginfod
- name: Build cppcheck
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
CXXFLAGS="-O1 -g -w -DHAVE_BOOST" make -j$(nproc) HAVE_RULES=yes MATCHCOMPILER=yes
- name: Build test
run: |
export PATH="/usr/lib/ccache:/usr/local/opt/ccache/libexec:$PATH"
CXXFLAGS="-O1 -g -w -DHAVE_BOOST" make -j$(nproc) testrunner HAVE_RULES=yes MATCHCOMPILER=yes
- name: Run valgrind
run: |
ec=0
valgrind --error-limit=yes --leak-check=full --num-callers=50 --show-reachable=yes --track-origins=yes --suppressions=valgrind/testrunner.supp --gen-suppressions=all --log-fd=9 --error-exitcode=42 ./testrunner TestGarbage TestOther TestSimplifyTemplate 9>memcheck.log || ec=1
cat memcheck.log
exit $ec
# TODO: debuginfod.ubuntu.com is currently not responding to any requests causing it to run into a 40(!) minute timeout
#env:
# DEBUGINFOD_URLS: https://debuginfod.ubuntu.com
- uses: actions/upload-artifact@v3
if: success() || failure()
with:
name: Logs
path: ./*.log

136
src/cppcheck-2.14.0/.gitignore vendored
Unescape View File

@ -0,0 +1,136 @@
*.bak
*.gcno
*.o
*.pyc
/cppcheck
/cppcheck.exe
cppcheck-core.dll
/dmake
/dmake.exe
reduce
reduce.exe
tags
/testrunner
/testrunner.exe
tools/daca2*.html
tools/errmsg
tools/extracttests
# dump files generated by Cppcheck
*.*.dump
# CTU info files generated by Cppcheck
*.*.ctu-info
# VS generated files
*.aps
*.idb
*.ncb
*.obj
*.opensdf
*.orig
*.pdb
*.sdf
*.suo
*.user
/.vs/
UpgradeLog*.htm
# VS build folders
bin/
Build/
BuildTmp/
/cli/temp/
ipch/
/lib/temp/
/test/temp/
# XCode build folders and files
*.mode[0-9]v[0-9]
*.pbxuser
build/
# GUI build folders
/gui/debug/
/gui/release/
/gui/temp/
/triage/temp
# Other (generated) GUI files
/gui/*.qm
/gui/cppcheck-gui
/gui/cppcheck-gui.exe
/gui/gui.sln
/gui/gui.vcproj
/gui/help/online-help.qch
/gui/help/online-help.qhc
/gui/Makefile
/gui/Makefile.debug
/gui/Makefile.release
/gui/qrc_gui.cpp
/gui/test/Makefile
/gui/test/*/Makefile
/gui/test/*/*/Makefile
/gui/test/benchmark/simple/benchmark-simple
/gui/test/cppchecklibrarydata/qrc_resources.cpp
/gui/test/cppchecklibrarydata/test-cppchecklibrarydata
/gui/test/filelist/test-filelist
/gui/test/projectfile/test-projectfile
/gui/test/translationhandler/test-translationhandler
/gui/test/xmlreportv2/test-xmlreportv2
# Doxygen output folder
doxyoutput/
# qmake generated
htmlreport/.tox/
htmlreport/MANIFEST
# Backup files and stuff from patches
*.rej
*~
# kdevelop 4.x
*.kdev4
# Common cmake build directories
build**/
# Temporal files
*.swp
# Snapcraft build
part
prime
parts
stage
*.snap
/snap/.snapcraft
# Manual folder
/man/manual.log
/man/manual.tex
/man/*.pdf
/man/*.html
# CLion
/.idea
/.metadata/
/cmake-build-*
/.run
# clang tooling temporary files
.clangd/
.cache/
compile_commands.json
# qmake
.qmake.stash
#vs code
/.vscode
# fuzzing output
/oss-fuzz/corpus
/oss-fuzz/corpus_
/oss-fuzz/samples

49
src/cppcheck-2.14.0/.mailmap
Unescape View File

@ -0,0 +1,49 @@
Andreas Bießmann <andreas@biessmann.de> <andreas.biessmann@corscience.de>
Andrew Martin <andrew.c.martin@saic.com> acm4me
Ankita Gupta <ankigupta@paypal.com> Ankita-gupta
Benjamin Goose <gans+github@tngtech.com> <gansb+github@tngtech.com>
Daniel Marjamäki <daniel.marjamaki@gmail.com> <hyd_danmar@users.sourceforge.net>
Daniel Marjamäki <daniel.marjamaki@gmail.com> <danielm77@spray.se>
Daniel Marjamäki <daniel.marjamaki@gmail.com> Daniel Marjam<61>ki
Daniel Marjamäki <daniel.marjamaki@gmail.com> <daniel@daniel-laptop.(none)>
Daniel Marjamäki <daniel.marjamaki@gmail.com> <daniel@raspberrypi.(none)>
Deepak Gupta <deepak.dce01@gmail.com> deepak gupta
Ettl Martin <ettl.martin78@googlemail.com> Martin Ettl
Ettl Martin <ettl.martin78@googlemail.com> <ettl.martin@gmx.de>
Ettl Martin <ettl.martin78@googlemail.com> Martin Ettl <martin@martin.(none)>
Frank Zingsheim <f.zingsheim@gmx.de> <zingsheim@users.sourceforge.net>
Gianluca Scacco <gscacco@users.sourceforge.net> <gianluca@gianluca-laptop.(none)>
Gianluca Scacco <gscacco@users.sourceforge.net> <giangy@giangy-desktop.(none)>
Henrik Nilsson <henrik.nilsson@tvaaker.se> <henrik.nilsson@proceranetworks.com>
Kimmo Varis <kimmov@gmail.com> Kimmo varis
Kimmo Varis <kimmov@gmail.com> <kimmov@users.sourceforge.net>
Kimmo Varis <kimmov@gmail.com> <ext-kimmo.1.varis@nokia.com>
Kimmo Varis <kimmov@gmail.com> <kimmo@kimmoDesktop.(none)>
Kimmo Varis <kimmov@gmail.com> <kimmo@kimmo-VirtualBox.(none)>
Kimmo Varis <kimmov@gmail.com> <kimmo@kimmo-laptop.(none)>
Kimmo Varis <kimmov@gmail.com> <kimmov@kimmolaptop.(none)>
Leandro Penz <lpenz@users.sourceforge.net> Leandro Lisboa Penz <llpenz@gmail.com>
Leandro Penz <lpenz@users.sourceforge.net> Leandro Lisboa Penz <lpenz@notebook.penz>
makulik <g-makulik@t-online.de> unknown <g-makulik@t-online.de>
Nicolas Le Cam <kush@users.sourceforge.net> <niko.lecam@gmail.com>
Pete Johns <paj-github@johnsy.com> <pete@johnsy.com>
PKEuS <philipp.kloke@web.de> Philipp K
PKEuS <philipp.kloke@web.de> Philipp Kloke
PKEuS <philipp.kloke@web.de> <philipp@kloke-witten.dyndns.org>
Reijo Tomperi <aggro80@users.sourceforge.net> <dvice_null@yahoo.com>
Robert Reif <reif@earthlink.net> <reif@eartlink.net>
Ryan Pavlik <rpavlik@iastate.edu> <ryan.pavlik@snc.edu>
Sébastien Debrard <sebastien.debrard@gmail.com> seb777
Sébastien Debrard <sebastien.debrard@gmail.com> S<>bastien Debrard
Sébastien Debrard <sebastien.debrard@gmail.com> Debrard Sébastien
Stefan Weil <weil@mail.berlios.de> <sw@weilnetz.de>
Tim Gerundt <tim@gerundt.de> <gerundt@users.sourceforge.net>
Vesa Pikki <spyree@gmail.com> <spyree@users.sourceforge.net>
XhmikosR <xhmikosr@users.sourceforge.net> <xhmikosr@yahoo.com>
Zachary Blair <zack_blair@hotmail.com> <ack_blair@outlook.com>
Zachary Blair <zack_blair@hotmail.com> <zack_blair@outlook.com>
Zachary Blair <zack_blair@hotmail.com> zblair

28
src/cppcheck-2.14.0/.selfcheck_suppressions
Unescape View File

@ -0,0 +1,28 @@
missingIncludeSystem
# temporary suppressions - fix the warnings!
simplifyUsing:lib/valueptr.h
varid0:gui/projectfile.cpp
naming-privateMemberVariable:gui/test/cppchecklibrarydata/testcppchecklibrarydata.h
symbolDatabaseWarning:*/moc_*.cpp
simplifyUsing:*/moc_*.cpp
# warnings in Qt generated code we cannot fix
funcArgNamesDifferent:*/moc_*.cpp
naming-varname:*/ui_*.h
functionStatic:*/ui_fileview.h
# --debug-warnings suppressions
valueFlowBailout
valueFlowBailoutIncompleteVar
autoNoType
naming-varname:externals/simplecpp/simplecpp.h
naming-privateMemberVariable:externals/simplecpp/simplecpp.h
# these warnings need to be addressed upstream
uninitMemberVar:externals/tinyxml2/tinyxml2.h
noExplicitConstructor:externals/tinyxml2/tinyxml2.h
missingOverride:externals/tinyxml2/tinyxml2.h
invalidPrintfArgType_sint:externals/tinyxml2/tinyxml2.h
naming-privateMemberVariable:externals/tinyxml2/tinyxml2.h

15
src/cppcheck-2.14.0/.selfcheck_unused_suppressions
Unescape View File

@ -0,0 +1,15 @@
# we are not using all methods of their interfaces
unusedFunction:externals/*/*
# TODO: fix these
# false positive - # 10660
unusedFunction:gui/mainwindow.cpp
unusedFunction:gui/resultstree.cpp
unusedFunction:gui/codeeditor.*
# usage is disabled
unusedFunction:lib/symboldatabase.cpp
# false positive - #10661
unusedFunction:oss-fuzz/main.cpp
# Q_OBJECT functions which are not called in our code
unusedFunction:cmake.output.notest/gui/cppcheck-gui_autogen/*/moc_aboutdialog.cpp

43
src/cppcheck-2.14.0/.travis.yml
Unescape View File

@ -0,0 +1,43 @@
language: cpp
dist: xenial
compiler:
- gcc
- clang
env:
global:
- ORIGINAL_CXXFLAGS="-pedantic -Wall -Wextra -Wcast-qual -Wno-deprecated-declarations -Wfloat-equal -Wmissing-declarations -Wmissing-format-attribute -Wno-long-long -Wpacked -Wredundant-decls -Wundef -Wno-shadow -Wno-missing-field-initializers -Wno-missing-braces -Wno-sign-compare -Wno-multichar -D_GLIBCXX_DEBUG -g"
# unfortunately we need this to stay within 50min timelimit given by travis.
- CXXFLAGS="${ORIGINAL_CXXFLAGS} -O2 -march=native -Wstrict-aliasing=2 -Werror=strict-aliasing"
- CPPCHECK=${TRAVIS_BUILD_DIR}/cppcheck
matrix:
- CXXFLAGS="${CXXFLAGS} -DCHECK_INTERNAL"
- CXXFLAGS="${CXXFLAGS} -DCHECK_INTERNAL" MAKEFLAGS="HAVE_RULES=yes" MATCHCOMPILER=yes VERIFY=1
before_install:
# install needed deps
- travis_retry sudo apt-get update -qq
- travis_retry sudo apt-get install -qq libxml2-utils libpcre3 gdb unzip wx-common xmlstarlet liblua5.3-dev libcurl3 libcairo2-dev libsigc++-2.0-dev tidy libopencv-dev
matrix:
# do notify immediately about it when a job of a build fails.
fast_finish: true
# defined extra jobs that run besides what is configured in the build matrix
include:
# check a lot of stuff that only needs to be checked in a single configuration
- name: "misc"
compiler: clang
script:
- make -j$(nproc) -s
# check if DESTDIR works TODO: actually execute this
- mkdir install_test
- echo $CXXFLAGS
- make -s DESTDIR=install_test FILESDIR=/usr/share/cppcheck install
# rm everything
- git clean -dfx
# check what happens if we want to install it to some other dir,
- echo $CXXFLAGS
- make -s MATCHCOMPILER=yes FILESDIR=/usr/share/cppcheck -j$(nproc)
- sudo make MATCHCOMPILER=yes FILESDIR=/usr/share/cppcheck install

Some files were not shown because too many files have changed in this diff Show More

Write Preview
Loading…
Cancel
Save