Static Analysis of C++ code¶

CodeChecker, clang static analyzer and clang-tidy can be used to detect potential C++ problems enforce C++ coding standards.

Install tools from conda-forge¶

CodeChecker depends on clang-tools and the clang compiler for static analysis. To install the compilers and tools into an LSST Science Pipelines conda stack for Linux x86_64

mamba install -c conda-forge clang clangxx clang-tools

To install CodeChecker

mamba install -c CodeChecker

Running `clang-tidy` on builds¶

CodeChecker intercepts calls to the compiler executables, builds a compilation database and runs analyses on the source code. To run CodeChecker in an lsstsw build environment

C=gcc CXX=g++ CC_BIN=CodeChecker CodeChecker check -j4 --build "rebuild lsst_distrib" --analyzers clang-tidy -o results

--analyzers clang-tidy limits the analysis to clang-tidy checks and disables clang static analysis, which is very CPU intensive.

The build command can be replaced as needed. For example, to run on scons builds

C=gcc CXX=g++ CC_BIN=CodeChecker CodeChecker check -j4 --build "scons -j4 --analyzers clang-tidy" -o results

The standard output format of CodeChecker is plist. To produce a html report of the analysis results

CodeChecker parse --trim-path-prefix $(pwd) -e html results -o results/html

Adding --trim-path-prefix avoids absolute references in the html output. The result can be browsed with

firefox html/index.html

Static Analysis of C++ code¶

Install tools from conda-forge¶

Running clang-tidy on builds¶

Running `clang-tidy` on builds¶