Diese Website verwendet Cookies, um das Angebot nutzerfreundlicher und effektiver zu machen. Mit der Nutzung dieser Website stimmen Sie der Verwendung von Cookies zu.Weitere Informationen über die Verwendung von Cookies und die Möglichkeit der Verwendung von Cookies zu widersprechen, finden Sie hier.
ECLAIR is a powerful platform for the automatic analysis, verification, testing and transformation of C and C++ programs.
ECLAIR can be instantiated over a whole range of software verification activities, which are provided in the form of packages.
MISRA C:2012 + HIS Metrics
a state-of-the-art, medium-weight static analyzer suitable for execution on the developer's desktop that almost completely automates the assessment of compliance with respect to MISRA C:2012;
a precise and flexible implementation of the source code metrics defined by HIS.
Similar packages exist for MISRA C++:2008 and other coding standards.
ECLAIR Bug Finder
This package includes a very fast static analyzer for C and C++ suitable for execution on the developer's desktop, which is able to detect and report bugs and weaknesses that can lead to crashes, misbehaviors and security vulnerabilities.
Characterized by an extremely high signal-to-noise ratio, ECLAIR Bug Finder identifies security vulnerabilities, dead code, API misuses and other errors in C and C++ source code, including: buffer overflows, dereferences of null pointers, pointer arithmetic errors, use of uninitialized variables, uninitialized or invalid return values, divisions by zero, undefined operations, dead stores, leaks of stack memory addresses, memory leaks, unreachable code, double-free, use-after-free, other dynamic memory allocation issues, lossy implicit conversions, excessive padding (memory waste), vararg functions mistakes, string manipulation errors, library API violations, insecure use of library functions, multithreading issues, dynamic type errors, and other common programming mistakes.
ECLAIR Unique Features
ECLAIR is fit for use in mission and safety-critical software projects: it has been designed from the outset to meet the requirements of most demanding industry standards.
Some of its unique features are described below: they are common to all the packages running under ECLAIR.
Proper Integration with the Toolchain
ECLAIR intercepts every invocation of the toolchain components (compilers, linker, assembler, archive manager) and it automatically extracts and interprets the options that the build system has passed to them. This allows for the seamless integration with any build system.. Moreover, you do not need to engage in error-prone activities such as:
specifying which files make up the application, and where the right header files are located;
configuring the static analyzer so that the analysis parameters match the options given to the compilers (several options do affect the program semantics).
All this is automatic and supports any build processes without the need to develop and maintain a separate analysis procedure: with ECLAIR the existing build procedure can be used verbatim. One of the key properties of ECLAIR is that it understands the analysis-relevant options of the supported compilers.
Powerful Reporting Capabilities
ECLAIR can be configured to automatically produce compliance matrices required to meet contractual obligations and industrial standards such as ISO 26262.
The compliance matrix is obtained from the actual configuration, which, if properly done, will contain the reason for each deviation. Thus, carrying its rationale, any deviation goes straight from the configuration to the matrix.
In addition, thanks to ECLAIR's ability to intercept and fully understand the communication with the toolchain, the compliance matrix contains full details about the code and its analysis: which files have been compiled and/or analyzed (with full path and a cryptographic hash of their contents), the compiler/linker options, the full version of ECLAIR, ..., with even a cryptographic hash of the generated executables. All this allows reliably linking the compliance matrix to the code that is actually run.
ECLAIR HTML reports are without equal on the market in terms of readability and usability: see for yourself.
Leider gibt es für diesen Aussteller kein deutsches Firmenprofil.
BUGSENG is a leading provider of solutions and services for static code analysis. Software verification is a complex task that requires deep specialization for which BUGSENG has designed a new generation of tools. These are based on sophisticated program verifiers that can handle the complexity of the task in a transparent way and effectively support the software engineering community in a continuous improvement process leading to truly reliable and practical mission- and safety-critical systems.
Our products are based on a solid understanding of modern software industry needs and requirements in which sound theoretical work has been coupled with the best software engineering practices. Built on more than 20 years of advanced research, our software verification platform ECLAIR embodies what probably is the most accurate MISRA-checking tool available on the market.
We offer a full range of services relating to software verification:consulting, training courses, tool integration, specific custom development, verification of customer code, definition of internal coding standards and software audit reviews.
In BUGSENG, we believe that high-quality software requires high-quality verification tools and services. That's why our motto is: no shortcuts, no compromises, no excuses: software verification done right.