coverity静态安全扫描分析软件linux环境搭建

本文主要是介绍coverity静态安全扫描分析软件linux环境搭建，对大家解决编程问题具有一定的参考价值，需要的程序猿们随着小编来一起学习吧！

1、选择在目录/home/coverity安装

安装前还需要准备文件：

coverity服务端密钥或账号密码

license.dat文件

rule.txt

在rule.txt里，规则如下：

--all
--rule
--enable-constraint-fpp
--enable-callgraph-metrics
--enable-fnptr
--enable-virtual
--enable
USER_POINTER
--enable
DC.STRING_BUFFER
--enable
ENUM_AS_BOOLEAN
--enable
UNENCRYPTED_SENSITIVE_DATA
--enable
WEAK_GUARD
--enable
WEAK_PASSWORD_HASH
--enable
HARDCODED_CREDENTIALS
--enable
AUDIT.SPECULATIVE_EXECUTION_DATA_LEAK
--enable
INTEGER_OVERFLOW
--enable
MIXED_ENUMS
--enable
RISKY_CRYPTO
--enable
COM.ADDROF_LEAK
--enable
COM.BSTR.ALLOC
--enable
COM.BSTR.BAD_COMPARE
--enable
COM.BSTR.NE_NON_BSTR
--enable
FLOATING_POINT_EQUALITY
--enable
VCALL_IN_CTOR_DTOR

1. 安装步骤

root用户进入根目录

# cd /home/coverity

添加执行权限

# chmod +x cov-analysis-linux64-2021.03.sh

运行安装包

# ./cov-analysis-linux64-2021.03.sh

确认安装

确认安装

#o

选择语言为中文

#4

不停按回车阅读许可条款

选择接受许可条款

#1

配置安装目录

Where should Coverity Analysis be installed?

#/home/coverity/cov-analysis

Which components should be installed?

1: Coverity Static Analysis and Dynamic Analysis. [*1]

2: Extend SDK

3: Architecture Analysis

(To show the description of a component, please enter one of *1)

Please enter a comma-separated list of the selected values or [Enter] for the default selection:

[1]

这里选择默认值，直接回车即可

#enter

Are you using a Coverity license or FLEXnet?

Please choose the type of license you have. The license is Coverity type, a

file with a name ending in .dat; or FLEXnet type.

If you plan to use FLEXnet licensing and Dynamic Analysis, choose Both.

License types to install

Coverity (you have a .dat file) [1, Enter], FLEXnet (you have a .lic file) [2], Both [3]

这里选择2并回车，采用浮动license文件配置

#2

Choose the way you want to set up your license.config file.

We're ready to set up your license.config file, which tells Coverity

applications where your FLEXnet license server is. If you will use a single

license server, choose Basic. If your license servers are a redundant

"triad", choose Advanced. If you already have a license.config file that you

want to use, choose that option.

License server configuration

Basic [1, Enter], Advanced [2], Use an existing license.config file [3]

这里选择1并回车，浮动license文件配置为基本模式

#1

Enter the host name and port of your FLEXnet server

License server host name

[localhost]

这里选择默认值，直接回车即可

#enter

License server port

[27000]

这里选择默认值，直接回车即可

#enter

Extracting files ...

Setup has finished installing Coverity Analysis on your computer.

Start the Coverity Wizard?

Yes [y, Enter], No [n]

这里选择n并回车，不启动Coverity Wizard

#n

Finishing installation ...

2.license.dat文件更新

安装完成后将license.dat文件复制到安装目录下的bin目录下，覆盖。

/home/coverity/cov-analysis/bin

3.配置环境变量

环境变量PATH中增加  /home/coverity/cov-analysis/bin ,并检查是否添加成功

在.bash_profile中添写蓝色路径：

PATH=$PATH:$HOME/bin:/home/coverity/cov-analysis/bin:/usr/sbin:/sbin:/usr/local/bin;export PATH

4.配置编译器，执行：

# cov-configure --gcc

# cov-configure --comptype gcc --compiler cc --template  

提示：[WARNING] Template config template-ld-config-0 already exists for ld and will be reused.

-- 平台编译一般使用cc命令（虽然实际cc通过文件链接指向gcc），因此还需要执行该命令

上述命令只需执行一次。

5、执行

取扫描规则rule.txt 放于编译命令执行上一个目录层。然后执行

#cov-analyze --dir cov @@../rule.txt

这篇关于coverity静态安全扫描分析软件linux环境搭建的文章就介绍到这儿，希望我们推荐的文章对大家有所帮助，也希望大家多多支持为之网！