Registered Exiv2 to Coverity SCAN program

Added by Gilles Caulier almost 5 years ago

Hi all,

Somebody from Red Hat as send a huge trace of static Coverity source code analyzer about digiKam 3.0.0-RC tarball. The traces are really instructive and we found real bugs (memory leak, infinite loops, uninitialized class members, etc...). Red Hat plan to analyse all tarballs used in the distribution...

Coverity is a closed source application, but there is a free to use program named SCAN dedicated to OpenSource :

http://scan.coverity.com/

As you can see in Project section, all main open-source projects are already registered :

http://scan.coverity.com/all-projects.html

I just do it for digiKam. Why not to do the same for Exiv2 to improve implementation and make it more robust ?

Gilles Caulier


Replies (7)

RE: Registered Exiv2 to Coverity SCAN program - Added by Robin Mills almost 5 years ago

Gilles

This sounds like a good idea. I've opened a bug report (http://dev.exiv2.org/issues/883) and assigned it to myself. I'll register exiv2 and use the tools. I'll use #833 as an 'umbrella' for discoveries/results/whatever.

Thanks very much for bringing this to our attention.

Robin

RE: Registered Exiv2 to Coverity SCAN program - Added by Gilles Caulier almost 5 years ago

If you have any problem with Coverity, in process to compile through analyzer or to decrypt some traces, let's me hear.

I just completed 50% of digiKam, which is a huge collection of code, and i can identify false alarm of true...

Gilles Caulier

RE: Registered Exiv2 to Coverity SCAN program - Added by Robin Mills almost 5 years ago

Thank you, Gilles. You are always very helpful. I appreciate the encouragement you provide. Thanks.

RE: Registered Exiv2 to Coverity SCAN program - Added by Gilles Caulier almost 5 years ago

Robin,

Have you registered Exiv2 to Coverity. if yes, my SCAN account is cgilles. Can you add me to the project

Thanks in advance

Gilles Caulier

RE: Registered Exiv2 to Coverity SCAN program - Added by Robin Mills almost 5 years ago

Gilles

Happy Valentines Day

I haven't done this yet. If I don't get to this today, I will over the weekend. And sure, I'll add you.

Robin

RE: Registered Exiv2 to Coverity SCAN program - Added by Robin Mills almost 5 years ago

I've submitted the registration form and I'll subscribe Gilles when we're approved. I hope to look at the tools soon, however dealing with GSoC proposal/application has higher priority.

(1-7/7)

Redmine Appliance - Powered by TurnKey Linux