What's New

From Insight-9.6

Insight 9.6

Contents

Here are the highlights for Klocwork Insight 9.6 and Klocwork Inspect 2.6. If you're upgrading, also see the Release Notes for changes that affect how you use Insight and Inspect.

If you're upgrading from version 9.2 or earlier, see What's New in Insight 9.5 for a list of features from our previous release.

Changes in Klocwork Insight 9.6 Service Release 7

  • This release contains various defect fixes.

Service Release 7 installation limitation

There is no patch installer for Klocwork Insight 9.6 SR7. To install the service release, use the full product installer. The full product installer will install the service release correctly, when the previous version of Klocwork Insight is already installed.

Changes in Klocwork Insight 9.6 Service Release 6

In addition to various defect fixes, the following changes were made for Klocwork Insight 9.6, Service Release 6:

Service Release 6 installation limitation

There is no patch installer for Klocwork Insight 9.6 SR6. To install the service release, use the full product installer. The full product installer will install the service release correctly, when the previous version of Klocwork Insight is already installed.

Changes in Klocwork Insight 9.6 Service Release 5

In addition to various defect fixes, the following changes were made for Klocwork Insight 9.6, Service Release 5:

  • All installation packages now install Java 1.7 Update 25 (except for AIX)
  • See the System Requirements for information about the latest versions of required software.

Service Release 5 installation limitation

There is no patch installer for Klocwork Insight 9.6 SR5. To install the service release, use the full product installer. The full product installer will install the service release correctly, when the previous version of Klocwork Insight is already installed.

Changes in Klocwork Insight 9.6 Service Release 4

The following changes were made for Klocwork Insight 9.6, Service Release 4:

  • For Windows, Linux, and Mac, the Klocwork Database Server is a MySQL 5.1.68 database server, which includes the latest security fixes from Oracle. For Solaris and AIX, the Klocwork Database Server is a MySQL 5.1.66 database server.
  • All installation packages now install Java 1.6 update 45 (except for AIX)
  • See the System Requirements for information about the latest versions of required software.

New feature

  • You can now configure the Klocwork tools to work with client certificates to support Public-key infrastructure (PKI) and smart cards. Client certificates are also supported for use with the Klocwork Web API. For more information, see Using a secure Klocwork Server connection.

Service Release 4 installation limitation

There is no patch installer for Klocwork Insight 9.6 SR4. To install the service release, use the full product installer. The full product installer will install the service release correctly, when the previous version of Klocwork Insight is already installed.

Changes in Klocwork Insight 9.6 Service Release 3

The following changes were made for Klocwork Insight 9.6, Service Release 3:

  • Solaris 8 is no longer supported.
  • IntelliJ IDEA version 12 is now supported. IntelliJ IDEA versions 8 and 9 are no longer supported.
  • See the System Requirements for information about the latest versions of required software.

New Features

  • Kwuser now supports the bulk loading of users and groups.

Service Release 3 installation limitations

There is no patch installer for Klocwork Insight 9.6 SR3. To install the service release, use the full product installer. The full product installer will install the service release correctly, when the previous version of Klocwork Insight is already installed.

During installation, the <projects_root>/tomcat/conf/server.template file is overwritten. Any manual changes made to this file must be reapplied after the migration.

Checker improvements

From release to release, we improve issue detection to bring state-of-the-art capabilities to our customers. As a result, expect your analysis results to change from release to release, as accuracy and coverage improve.

This section describes the improvements made to checkers in this release. This information can help you plan your upgrade.

New C/C++ checkers

Checker Description
ABV.GENERAL
ABV.UNKNOWN_SIZE
The ABV.GENERAL and ABV.UNKNOWN_SIZE checkers look for array bounds violations. These checkers have been separated from the ABR checker to find these specific buffer overflow situations separately.
CWARN.INCL.ABSOLUTE A new checker has been added to the CWARN family to report when the absolute path is used in an include directive.
MLK.RET.MIGHT
MLK.RET.MUST
Two new checkers have been added to the MLK family, to report in cases when allocated memory is returned from a function, but is not assigned to any variable.
SV.SIP.CONST
SV.SIP.VAR
The new SV.SIP checkers report on use of insecure macros or parameters for dangerous functions.

Improved C/C++ checkers

You'll see a reduction in the number of false positives detected by the following checkers:

Checker Description
ABV.UNICODE.FAILED_MAP

ABV.UNICODE.SELF_MAP

ABV.UNICODE.FAILED_MAP has been split into ABV.UNICODE.FAILED_MAP and ABV.UNICODE.SELF_MAP.
SV.BANNED family The SV.BANNED family has been split into two groups, RECOMMENDED and REQUIRED. This change was made in accordance with recent updates to the Microsoft banned.h file.

Removed C/C++ checkers

The following table lists the checkers that have been removed or replaced in this release. If you've used any of the checkers that we've removed and not replaced, you should run a build comparison. It's best to run Insight on unchanged code to isolate the differences due to improvements in our analysis engine.

Checker Description
ABR ABR has been replaced by ABV.GENERAL and ABV.UNKNOWN_SIZE.

Disabled C/C++ checkers

The following table lists the checkers that are newly disabled by default in this release. You may need to enable any of these checkers that were enabled in your last pre-migration analysis. See Before your first 9.6 integration build analysis.

If you had this checker enabled in 9.5... Enable this checker in 9.6...
ABV.UNICODE.BOUND_MAP ABV.UNICODE.BOUND_MAP
ABV.UNICODE.FAILED_MAP ABV.UNICODE.FAILED_MAP and ABV.UNICODE.SELF_MAP
ABV.UNICODE.NNTS_MAP ABV.UNICODE.NNTS_MAP
SV.BANNED.ALLOCA SV.BANNED.RECOMMENDED.ALLOCA
SV.BANNED.CONCAT SV.BANNED.REQUIRED.CONCAT
SV.BANNED.COPY SV.BANNED.REQUIRED.COPY
SV.BANNED.ISBAD SV.BANNED.REQUIRED.ISBAD
SV.BANNED.NUMERIC SV.BANNED.RECOMMENDED.NUMERIC
SV.BANNED.OEM SV.BANNED.RECOMMENDED.OEM
SV.BANNED.PATH SV.BANNED.RECOMMENDED.PATH
SV.BANNED.SCANF SV.BANNED.RECOMMENDED.SCANF
SV.BANNED.SPRINTF SV.BANNED.RECOMMENDED.SPRINTF and SV.BANNED.REQUIRED.SPRINTF
SV.BANNED.TOKEN SV.BANNED.RECOMMENDED.TOKEN
SV.STRBO.UNBOUND_COPY SV.STRBO.UNBOUND_COPY

MISRA checker improvements

MISRA checkers for C++ rules 5-0-7 and 5-0-8 were renamed and refactored:

  • MISRA.CAST.FLOAT_INT (Cast of floating point expression to integral type) is now covered by MISRA.CAST.FLOAT_INT AND MISRA.CAST.INT_FLOAT.
  • MISRA.CAST.FLOAR_INT.WIDER (Cast of floating point expression to a wider floating point type) is now covered by MISRA.CAST.FLOAT.WIDER and MISRA.CAST.INT.WIDER.

Japanese version of Insight

Insight 9.6 is the first version to be fully localized to Japanese. All Insight and Inspect tools (with the exception of Klocwork Architect and the IntelliJ IDEA plug-in) and all documentation (with the exception of the Architect documentation and the MISRA checker help) are available in Japanese.

To understand how Insight sets the default language for the tools and documentation and how you can change it, see Localization details.

Windows single sign-on

The Windows Single Sign-on feature is available for Klocwork installations in which both server and clients are running on Windows and using the same Active Directory server for authentication. When the feature is enabled for a projects_root through kwauthconfig, users who are logged in to Windows are automatically logged in to the Klocwork portal, plug-ins, and standalone clients without having to enter a user ID and password. For set-up information, see Setting up single sign-on.

IncrediBuild support

Insight 9.6 supports distribution of the C/C++ integration build analysis across a Xoreax IncrediBuild infrastructure. See Running Insight in an IncrediBuild environment.

Licensing changes

Insight 9.6 now supports FLEXlm server version 11.10.1.0 for all platforms. If you use your organization's FLEXlm license server, you need to upgrade to this FLEXlm version. See Using your organization's FLEXlm server.

Bug tracker integration

Integrating your bug tracking system with Review allows you to send bug tickets for Insight issues to your tracking system, and display the tracker's bug ID, a link to the bug ticket, and other information from the tracker in Review. Bug tracker integration is set up with a simple Python script.

Email notification in Klocwork Review and Inspect

If Basic, LDAP or NIS authentication is set up for your Klocwork Server in Insight 9.6, you can receive email notification when updates occur to your issues in Review and Inspect. In Review, you can specify email notification for new issues after a system build and issues assigned to by other users. In Inspect, you can get emails for issue actions or comments and code review updates. For mail server set-up information, see Configuring the mail server. For details of email notification, see Getting email notification of new issues in Review and Getting email notification of updates in Inspect.

Desktop analysis

Improvements to the Visual Studio plug-in

  • The Show ignored issues filter in Visual Studio allows you to see issues that have been ignored. To recover an issue, right-click it and select Recover issue. When ignoring an issue, it is now possible to include a comment.
  • Traceback information is now embedded within the code editor window of Visual Studio and displays for the defect you have selected. You can hide it by pressing the ESC key.
  • Klocwork now supports smart devices in Visual Studio.
  • Klocwork now supports VS2012.

New supported compilers

We've added support for the following C/C++ compilers:

  • CADUL C cross compiler for Intel 80X86
  • HI-TECH C compiler/linker
  • Intel iC-386
  • Motorola DSP563
  • Nvidia CUDA
  • Paradigm C/C++
  • Renesas 78K0R
  • Tasking VX Toolset for C166 compiler/linker
  • Tensilica Xtensa C/C++
  • TI tms470
  • WinAVR

For the full list of supported compilers, see C/C++ compilers supported for build integration.

Improvements to code reviews with Klocwork Inspect

When submitting a pre-checkin code review with ClearCase, the new --base option for kwcodereview allows you to set a base revision. kwcodereview will check what files have changed since the revision you specify as base, and upload only those changes.

When using Subversion, kwscm and kwcodereview can now detect when a code repository is branched and show proper diffs for files that belong to these branches.

Accessing the configuration editor from Klocwork Review

We've added the ability to access the Configuration Editor in the web browser for Klocwork Review. This allows you to enable and disable checkers for a project in Review. Context-sensitive help is now provided in the right pane when you select a checker in the Configuration Editor.

Klocwork Web API improvements

The following actions have been added to the Web API:

  • defect_types: allows you to generate a list of checkers, which includes their error code, description and see whether they are enabled or disabled.
  • update_defect_type: allows you to enable or disable checkers.

See also