CodeSonar 3.6 Improves Analysis of C and C++

Details

Published on Thursday, 13 January 2011 00:00

Improved analysis speed and bug explanation

SCL, European Distributor for GrammaTech, Inc., a leading supplier of source-code-analysis tools, today announced the availability of the latest version of CodeSonar®. CodeSonar’s compile-time analysis identifies quality and security problems in C and C++ software.

CodeSonar helps companies developing software to improve developer productivity, minimise costly test cycles and avoid failures in the delivered software which can lead to increased support costs and negative brand reputation. CodeSonar 3.6 provides a radically improved graphical user interface (GUI) to streamline developer interaction and boost productivity. In addition, CodeSonar 3.6’s analysis engine is more efficient. For large code bases, the analysis time has been reduced by as much as a third.

CodeSonar Buffer Overrun

CodeSonar’s unique strength is its ability to identify far more program-crashing defects and security vulnerabilities than competing static-analysis tools. Another advantage is CodeSonar’s new GUI that enables developers to quickly digest key information, understand and identify the most important issues, and prioritize fixes.

About CodeSonar

CodeSonar is a sophisticated static-analysis tool that performs a whole-program, inter-procedural analysis on code and identifies complex programming bugs that can result in system crashes, memory corruption and other serious problems. Like a compiler, CodeSonar does a build of the code. But, instead of creating object code, CodeSonar creates an abstract model of the program, capturing information about the program’s control flow and the relationships between data. The program model is executed symbolically by CodeSonar’s analysis engine. Automated reasoning about feasible paths and program variables is used to identify tricky defects, including defects that result from complex interactions among procedures.

CodeSonar is backed by years of research and is the most powerful source-code-analysis tool available. It is distinguished by its ability to find more serious defects than any other tool on the market. For this reason, it has been adopted by leading organizations developing medical devices, spacecraft, industrial and automotive control systems, electronics, and similar applications. CodeSonar runs on Windows, Linux, Solaris, and Mac OSX and supports most compilers.