Logevents v111003 analysis/zz-iatdemo-B1.0 s

Logevents v111003 analysis/zz-iatdemo-B1.0 s_locked-keywords-all.html C:\project-iat\inst\perl.exe 5.006001

Description This is a legacy report. IAT started with just this report. Use this report to look for keywords that point to potential problems in the software. Some of the more important keywords are TBD and stub. In future releases of software try not to use TBD for items such as future. If you are web enabled, try re-running the report with other keywords. New potential issues may be surfaced.

Analysis	Comment
Keywords	This analysis shows the user selected keywords that were extracted from the original source code. There are also predefined keywords that are seperately reported by the tool in the Problems and Details analysis.
Details	This analysis shows the details from the original source code that are extracted from the search requests and internal error, warning, and caution settings. It also includes software metrics on a module basis.

Other Analysis Reports . Original Source Code . Instrumented Source Code . Help

12/09/2003 13:47:22

Locked Files Lock Date: 11/20/2003
These files are not subjected to analysis. The lock date points to a formal release with a previous analysis.

Keyword Stats

Good General Practices

use new and delete instead of malloc and free

do not use ?:

if a func has no parameters, use () instead of (void)

do not use goto

avoid declaring member variable with 'mutable' keyword

avoid declaring local variables with 'register' keyword

avoid declaring local variables with 'static' keyword

avoid do statements - potential endless loops

look for unusual and pertinent keywords

consistency is nice but not mandated

provide if with else

Good Security Practices

the bad fixed keywords are shown elsewhere

terminate case with break;

for each switch, provide default:

default: with security critical data should transfer to SwError

if else sequences with security critical data terminate in SwError

s_ files with if else sequences in many cases terminate in SwError

terminate other as identified if else sequences with SwError

look for undefined error codes in SwError

look for multiple uses of the same error codes

malloc should not be used on security critical data

if malloc is used on security critical data crypto zeroize before free

Number Sort

BUFFER

Alpha Sort

BUFFER

Keywords Not Found

debug	delay	return\;	while\(\d+\).	enable
disable	exception	demo	reuse	pragma	asap
nnoonnee	halt	\bstub\b	\? :	malloc	\balloc\b
\btbd\b	\btbs\b	dedicated	timeout	global	free
new	delete	goto	mutable	friend	explicit

Details Report

1 1 Source: source/zz-iatdemo/zz-iatdemo-B1.0/pwr/anylogevents.c 1-15 function_lefirst
1-37 function_lea
1-73 function_leb
1-176 function_led
1-217 function_lee
1-318 . PURGE_BUFFER; 1-325 . PURGE_BUFFER; 1 1 Result: result/source/zz-iatdemo/zz-iatdemo-B1.0/pwr/anylogevents.c

Settings

This is a legacy report. IAT started with just this report. Use this report to look for keywords that point to potential problems in the software. Some of the more important keywords are TBD and stub. In future releases of software try not to use TBD for items such as future. If you are web enabled, try re-running the report with other keywords. New potential issues may be surfaced. Description 6

Master Directories

Project Instrumentation Test
Source Result Analysis
Metrics

Report Markings
Report Marking
Highest Code Classification
Lowest Code Classification
Classified Keywords

Headers
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE C Header
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE H Header
.*BEGIN PROLOGUE.*CLASSIFICATION.*FILE NAME.*ABSTRACT.*HISTORY.*CCCQ_VER.*END PROLOGUE asm Header

File Controls
Assembly Extensions
Access Files
Ignore Files
Paths
File Path
Src Paths (websever /~iat no websever ../../)
URL (websever /~iat no websever ../../ dos is blank)

Source Dir Path
Result Dir Path
Analysis Dir Path(no websever setting ../ft-red-B1B2D6_Ry)
Analysis Report Name
Files

toc file bfw file hmi file
toc html bfw html

General Settings
CPCs
1 2 3 4 5 6 7 Colors

Log Event Patterns
SV Events case Insensitive
Filter SV Events case Insensitive (e.g. traffic)
Filter Files case Insensitive
nnoonnee DB Events case Sensitive
nnoonnee HMI Events case Sensitive
nnoonnee LOC Events case Sensitive
nnoonnee Filter LOC Events (e.g. traffic)

Table Driven Functions used by uncalled functions detector
nnoonnee

Fixed Keywords case insensitive
C
H
Assembly

Keywords case insensitive
debug|delay|return\;|while\(\d+\).|enable|disable|exception|demo|reuse|pragma|asap find 1
nnoonnee find 2
halt|\bstub\b|\? *:*|malloc|\balloc\b|\btbd\b|\btbs\b find 3
dedicated|buffer find 4
timeout| global|free|new |delete |goto|mutable|friend|explicit find 5

--\| ignore lines

Keyword Window

Hamming Patterns

Log Events
SV Start DB Start HMI Start LOC Start
Instrument Source LE Summary Auto Trace Fix LE English

Show in Details Report

Abstract SV REQUIRED Full Header All SourceCode Only SVCV src
Comments CV REQUIRED Rquirements Functions Show Only Affected Files Analyze Only LE SV

Reports
Control Menu Keywords Stats Metrics Ham Values Details Problem Summaries Problem Descriptions Compare

Reports - Automatic Detectors Default Problems Locked Files Date (e.g. 01/05/2003)

Fatal Printf C Headers H Headers ASM Headers

Class SV Marking CV Marking Keywords Code Keywords Prologues

No Curly Braces ifdef Switch Default's Default Error Case Break

Nested Switches Stacked Cases Calling Rules No Error Exit ?: operator

Func/File LOC/File Line Length < 5 LOC/Func > 100 LOC/Func

Uncalled Func's Dead Code Fuzzy Log Events ++/-- in if, else, while do Loops

malloc free Re-Casting goto No Func Header

Regression noise reduction for Automatic Detectors - must run regression.pl first
new files
mod files

Metrics Baseline Accessed
Metrics Saved (enable stats)

Hide Controls Show Checked Summary Checked Details Not Checked All

done
12/09/2003 13:47:22 start
12/09/2003 13:47:22 end

Abstract	SV REQUIRED	Full Header	All SourceCode	Only SVCV src
Comments	CV REQUIRED	Rquirements	Functions	Show Only Affected Files	Analyze Only LE SV

Fatal	Printf	C Headers	H Headers	ASM Headers
Class	SV Marking	CV Marking	Keywords Code	Keywords Prologues
No Curly Braces	ifdef	Switch Default's	Default Error	Case Break
Nested Switches	Stacked Cases	Calling Rules	No Error Exit	?: operator
Func/File	LOC/File	Line Length	< 5 LOC/Func	> 100 LOC/Func
Uncalled Func's	Dead Code	Fuzzy Log Events	++/-- in if, else, while	do Loops
malloc free	Re-Casting	goto	No Func Header