计算机技术与发展2016,Vol.26Issue(8):17-23,7.DOI:10.3969/j.issn.1673-629X.2016.08.004
C++与Java软件重量级静态检查
Heavy-weight Static Checking of Software in C/C++ and Java
摘要
Abstract
In order to ensure the quality of code in language C/C++ and Java based on Windows,it is very important for the static chec-king to code of C/C++and Java. With SVN as configuration management tool,the heavy-weight static checking tools Coverity and For-tify are integrated into continuous integration tool ICP-CI,and static checking is to be done for both C/C++and Java. The SVN client in-stallation and the code updating of the SVN repository under Windows is described in details,and the Coverity and Fortify compiler con-figuration,the compiler scripts writing,and the inspection tasks configuration on ICP-CI task management page are conducted for both C/C++ and Java. The process of the static checking is introduced and the causes of problems are analyzed and the corresponding solutions are given. Finally the heavy-weight static checking applied in a case for both modules of code in C/C++and Java in software product is introduced. Practice shows that the static checking is helpful to discover and solve all kinds of flaws of the code in C/C++and Java time-ly,improving quality and safety for software.关键词
Windows操作系统/静态检查/持续集成/安全漏洞Key words
Windows operating system/static checking/continuous integration/security vulnerabilities分类
信息技术与安全科学引用本文复制引用
姜文,刘立康..C++与Java软件重量级静态检查[J].计算机技术与发展,2016,26(8):17-23,7.基金项目
国家部委基础科研计划:国防预研基金项目(A1120110007) (A1120110007)
