Better Software - July/August 2008 - (Page 41)

Figure 6 Figure 7 unpredictable and non-deterministic behavior of the program. Note the message: The severity level of this defect is “Critical,” the highest level. In addition to finding defects, the ASA tool allows users to categorize and prioritize defects found. The tool also is smart enough to recognize when defects have been fixed and that other unfixed, detected defects have shifted position in the source code. This capability is because the tool keeps track of defects by attributes and characteristics, not simply by location. The tool has a rich set of metrics, which includes cyclomatic complexity, detected fault density, and more than one hundred others, as shown in figure 6, a portion of a metrics report. The ASA tool also contains an architectural tool that allows the source code to be displayed in graphical format. The graphs show cyclic relationships between functions or methods within files and allow the user to drag and drop the methods or functions into different files to resolve the cyclic relationships. The tool also suggests the source code changes required to re-architect the source code, as shown in the Architect tool in figure 7. So what are some of the benefits of using ASA tools? To answer that question, consider the time it takes a developer debugging code to discover and fix software defects. Two case studies are presented. The first case study is scientific research code written in C++. This is the environment and toolkit used primarily by physicists to create highly portable 2D and 3D simulations. These pro- grams change frequently and are highly algorithmic and complex. They also run in parallel on some of the world’s largest and fastest computers. The second case study is C++ code used in security software products. This code has been stable for years with occasional functionality upgrades. These case studies represent two very different types of software. Our first case study was done using a physics simulation application written in the C++ programming language that is used by other application development teams at Lawrence Livermore National Laboratory (LLNL), which uses two of the better performing ASA tools, Klocwork K7 and Coverity Prevent. The first case study presented is for the Klocwork K7 tool. The application in this case study involved approximately 137,000 lines of executable C++ code, and approximately 1,000 suspected defects were discovered by Klocwork. The case study focused on just one defect (buffer overflow) of which eighty-two instances were discovered. This defect type was chosen because the behavior of the code at run time is unpredictable, it isn’t repeatable from run to run, it typically is not caught by debuggers, and it is one of the most time-consuming defects to isolate and repair. The value of the ASA tool became apparent when it took fewer than thirty minutes to run the static analysis on the application, and all eightytwo detected buffer overflows were fixed by the developer in just a couple of days. This translates into customers’ not having to deal with intermittent and non-repeatable reliability problems and your not having to respond to as many customer complaints and release cycles with fixes, which saves money. The second case study was conducted on 345,000 lines of code written by laboratory developers in Borland C++ Version 6. This software was used for user interfaces and gateways for a physical security system. The C++ code has been running in a 24/7 environment for four years and contains a variety of applications such as Alarm Display and Configuration Editor. This software runs at multiple sites, and the code is very stable with rare, unexplained errors. Even though the level of quality of this software was generally acceptable, our case BETTER SOFTWARE www.StickyMinds.com JULY/AUGUST 2008 41 http://www.StickyMinds.com Table of Contents for the Digital Edition of Better Software - July/August 2008Better Software - July/August 2008ContentsMark Your CalendarContributorsTechnically SpeakingeLightenmentCode CraftTest ConnectionManagement ChroniclesHow To Fail with AgileA Galaxy of PatternsGive Your Defects Some StaticProduct Announcements10 Things You Might Not Know About …The Last WordAd IndexSQE STARWEST ConferenceBetter Software - July/August 2008Better Software - July/August 2008 - Better Software - July/August 2008 (Page Cover1)Better Software - July/August 2008 - Better Software - July/August 2008 (Page Cover2)Better Software - July/August 2008 - Better Software - July/August 2008 (Page 1)Better Software - July/August 2008 - Better Software - July/August 2008 (Page 2)Better Software - July/August 2008 - Contents (Page 3)Better Software - July/August 2008 - Mark Your Calendar (Page 4)Better Software - July/August 2008 - Mark Your Calendar (Page 5)Better Software - July/August 2008 - Contributors (Page 6)Better Software - July/August 2008 - Contributors (Page 7)Better Software - July/August 2008 - Contributors (Page 8)Better Software - July/August 2008 - Technically Speaking (Page 9)Better Software - July/August 2008 - Technically Speaking (Page 10)Better Software - July/August 2008 - Technically Speaking (Page 11)Better Software - July/August 2008 - eLightenment (Page 12)Better Software - July/August 2008 - eLightenment (Page 13)Better Software - July/August 2008 - eLightenment (Page 14)Better Software - July/August 2008 - eLightenment (Page 15)Better Software - July/August 2008 - Code Craft (Page 16)Better Software - July/August 2008 - Code Craft (Page 17)Better Software - July/August 2008 - Code Craft (Page 18)Better Software - July/August 2008 - Code Craft (Page 19)Better Software - July/August 2008 - Test Connection (Page 20)Better Software - July/August 2008 - Test Connection (Page 21)Better Software - July/August 2008 - Management Chronicles (Page 22)Better Software - July/August 2008 - Management Chronicles (Page 23)Better Software - July/August 2008 - How To Fail with Agile (Page 24)Better Software - July/August 2008 - How To Fail with Agile (Page 25)Better Software - July/August 2008 - How To Fail with Agile (Page 26)Better Software - July/August 2008 - How To Fail with Agile (Page 27)Better Software - July/August 2008 - How To Fail with Agile (Page 28)Better Software - July/August 2008 - How To Fail with Agile (Page 29)Better Software - July/August 2008 - A Galaxy of Patterns (Page 30)Better Software - July/August 2008 - A Galaxy of Patterns (Page 31)Better Software - July/August 2008 - A Galaxy of Patterns (Page 32)Better Software - July/August 2008 - A Galaxy of Patterns (Page 33)Better Software - July/August 2008 - A Galaxy of Patterns (Page 34)Better Software - July/August 2008 - A Galaxy of Patterns (Page 35)Better Software - July/August 2008 - Give Your Defects Some Static (Page 36)Better Software - July/August 2008 - Give Your Defects Some Static (Page 37)Better Software - July/August 2008 - Give Your Defects Some Static (Page 38)Better Software - July/August 2008 - Give Your Defects Some Static (Page 39)Better Software - July/August 2008 - Give Your Defects Some Static (Page 40)Better Software - July/August 2008 - Give Your Defects Some Static (Page 41)Better Software - July/August 2008 - Give Your Defects Some Static (Page 42)Better Software - July/August 2008 - Product Announcements (Page 43)Better Software - July/August 2008 - Product Announcements (Page 44)Better Software - July/August 2008 - Product Announcements (Page 45)Better Software - July/August 2008 - 10 Things You Might Not Know About … (Page 46)Better Software - July/August 2008 - The Last Word (Page 47)Better Software - July/August 2008 - Ad Index (Page 48)Better Software - July/August 2008 - Ad Index (Page Cover3)Better Software - July/August 2008 - Ad Index (Page Cover4)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW1)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW2)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW3)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW4)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW5)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW6)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW7)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW8)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW9)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW10)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW11)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW12)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW13)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW14)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW15)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW16)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW17)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW18)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW19)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW20)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW21)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW22)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW23)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW24)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW25)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW26)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW27)Better Software - July/August 2008 - SQE STARWEST Conference (Page SW28)http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_1109http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0909http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0709http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0509http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0409http://www.nxtbook.com/nxtbooks/sqe/bettersoftware_0309http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0109http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1208http://www.nxtbook.com/nxtbooks/sqe/stf_spring08http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1108_v2http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1108http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1008http://www.nxtbook.com/nxtbooks/sqe/agile08http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0908http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0708http://www.nxtbook.com/nxtbooks/sqe/sw08http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0608http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0408http://www.nxtbook.com/nxtbooks/sqe/bettersoftware-confexpo08http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0308http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0108http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1207http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1107http://www.nxtbook.com/nxtbooks/sqe/bettersoftware1007http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0907http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0807http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0607http://www.nxtbook.com/nxtbooks/sqe/bettersoftware0507http://www.nxtbookMEDIA.com

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.