As a best practice, do you run code analysis on both debug and release builds, or just one or the other?
Asked
Active
Viewed 1,095 times
7
-
What do you mean by debug and release builds? The code should be the same... – Thomas Owens Sep 01 '09 at 15:29
-
In .Net, if you use the Conditional output extensively, you could be producing slightly different builds. – Austin Salonen Sep 01 '09 at 15:33
5 Answers
2
If for some reason the two builds are different (and they really shouldn't be for static analysis purposes), you should ensure that your metrics are running against what's actually going out to production.
Ideally, you should have a CI server, and the commands that developers run to initiate such analysis are no different from what the CI server does.
John Feminella
- 303,634
- 46
- 339
- 357
-
Yep. The idea is to integrate the code analysis into the CI environment. – Scott Marlowe Sep 01 '09 at 15:55
1
I usually pick one and that one is the release build. I guess it doesn't really matter but I tend to think that when gather information about what will run in production it is best to test exactly what will go to production (this goes for analysis, profiling, benchmarking, etc.).
Andrew Hare
- 344,730
- 71
- 640
- 635
-
So in your project's build config, do you define CODE_ANALYSIS in the release build? Does that change the release build's output significantly or affect performance? – slolife Oct 08 '10 at 23:29
1
Static Code Analysis will show the same results regardless of your build type.
Debug/Release only changes the resulting assembly and the inclusion or exclusion of debugging information at runtime.
Mitchel Sellers
- 62,228
- 14
- 110
- 173
-
right. and I guess you wouldn't care about the analysis of debug only code. makes sense. – Scott Marlowe Sep 01 '09 at 15:31
-
This isn't completely true, a debug build will not be optimized by the compiler and may emit IL that will not be in a optimized release build. – Andrew Hare Sep 01 '09 at 15:33
-
@Andrew - True, I guess depending on how/where in the process the tool evaluates there could be some inlining and other optimizations that work in to release only builds. – Mitchel Sellers Sep 01 '09 at 17:29
0
The LLVM folks actually recommend analyzing the DEBUG configuraion:
ALWAYS analyze a project in its "debug" configuration
Most projects can be built in a "debug" mode that enables assertions. Assertions are picked up by the static analyzer to prune infeasible paths, which in some cases can greatly reduce the number of false positives (bogus error reports) emitted by the tool.
In addition, debug builds tend to be faster (no need for optimization), and in the CI world faster is always better (all else being equal).
Ohad Schneider
- 36,600
- 15
- 168
- 198