Menu
▾
▴
Re: [LTP] Coverity report for ltp-20130109
|
From: <ch...@su...> - 2013-03-19 16:08:35
|
Hi! > > What is Coverity? > > Coverity Prevent is commercial enterprise level tool for static analysis > > (analysis based only on compiling of sources, not based on running of binary) > > of the C/C++ and Java code. > > > > analyzer coverity > > analyzer-args --wait-for-license -co BAD_FREE:allow_first_field:true --all > > analyzer-version Coverity Static Analysis for C/C++ version 6.5.1 on Linux 2.6.32-279.el6.x86_64 x86_64 > > > > I ran it for current LTP stable (20130109) (on top of RHEL6.4) > > and I'm sharing results here: > > http://jan.stancek.eu/coverity/ltp-20130109-1.el6.err.xz > > > > I looked at results only very briefly so far. The one that caught my > > eye was actually my previous email: inode02: fix "slash" array overrun. > > This run includes "--all" parameter, so it's likely there are some false > > positives. > > Nice. I will have a look at the data too. Here are some statistical data: The total number of tests mentioned in the report is 747, 600 is from the testcases/kernel/ directory along with some in network, misc. There seems to be quite a number of reports in the lib/ directory. Could you run the tool for the openposix testcases as well? -- Cyril Hrubis ch...@su... |