Open rozhukov opened 3 months ago
@rozhukov do I sign-in with github or a coverity faceless account, to register a new project?
@rozhukov do I sign-in with github or a coverity faceless account, to register a new project?
This is a Public Coverity - so please don't use any Intel internal accounts. Rather than that - the're no limitations. I used my GitHub account to play around it. When it gets tested, I think you can switch to bot account as part of CI/runners
I want to summarize some findings here.
icx
and icpx
. because the action uses default compiler template(gcc
-style). It does not support cov-configure
that allows configuring a custom compiler(more on this later).icx
and icpx
, cov-build
fails to detect any emitted C/C++ objects:
# oneMKL example
- name: Configure & build with Coverity
run: |
source /opt/intel/oneapi/setvars.sh
cmake -DENABLE_MKLGPU_BACKEND=off -DTARGET_DOMAINS=${{ matrix.domain }} -DCMAKE_VERBOSE_MAKEFILE=on -DBUILD_FUNCTIONAL_TESTS=False -B build_cov
cov-analysis-linux64-2023.6.2/bin/cov-build --dir cov-int cmake --build build_cov/ --target all --parallel
cov-configure
. We can use this command to configure a custom compiler, that is installed in a non-standard location (like oneAPI installation).
- name: Configure & build with Coverity
run: |
source /opt/intel/oneapi/setvars.sh
cmake -DENABLE_MKLGPU_BACKEND=off -DTARGET_DOMAINS=${{ matrix.domain }} -DCMAKE_VERBOSE_MAKEFILE=on -DBUILD_FUNCTIONAL_TESTS=False -B build_cov
cov-analysis-linux64-2023.6.2/bin/cov-configure --template --comptype intel_icx --compiler icx
cov-analysis-linux64-2023.6.2/bin/cov-configure --template --comptype intel_icpx --compiler icpx
cov-analysis-linux64-2023.6.2/bin/cov-build --dir cov-int cmake --build build_cov/ --target all --parallel
Now cov-build
detects 50% of the generated objects.
This is not enough because of https://scan.coverity.com/download
Next:
Need to test https://scan.coverity.com/ tool for (at least) C/C++ static code analysis.
Steps: