Discussion:
[sysvinit-devel] Coverity scan
Jesse Smith
2018-06-19 16:27:12 UTC
Permalink
Are you aware of <URL: https://scan.coverity.com/projects/sysvinit >?
Perhaps time to set up an automatic submission there to discover any new
problems early?
I was not aware of the Coverity scanner, but it certainly looks like it
could be useful. I have applied for access to their bug report tool and
will see what tips they have for improving the source code. Hopefully
I'll be able to get them to update their scanner to use our git repo
instead of the old subversion code repo so it'll work for us going ahead.

Thanks for the link.

- Jesse
Petter Reinholdtsen
2018-06-19 17:26:16 UTC
Permalink
[Jesse Smith]
Post by Jesse Smith
I was not aware of the Coverity scanner, but it certainly looks like
it could be useful. I have applied for access to their bug report
tool and will see what tips they have for improving the source code.
Hopefully I'll be able to get them to update their scanner to use our
git repo instead of the old subversion code repo so it'll work for us
going ahead.
I've approved your access as an admin.

Note, you got the model of work wrong here. There is no 'they' that
will do the scanning for us. There is only 'me' who run a
instrumentation build using the tools provided by coverity and uploading
the resulting package to coverity for analysis.

I booted the old virtual machine I used for such tasks in the past, and
tried to do such build today, and it seemed to upload just fine, but
apparently have not been accepted for scanning. No idea what went
wrong, and no time to investigate.
--
Happy hacking
Petter Reinholdtsen
Jesse Smith
2018-06-20 17:51:05 UTC
Permalink
Post by Petter Reinholdtsen
I've approved your access as an admin.
Note, you got the model of work wrong here. There is no 'they' that
will do the scanning for us. There is only 'me' who run a
instrumentation build using the tools provided by coverity and uploading
the resulting package to coverity for analysis.
I booted the old virtual machine I used for such tasks in the past, and
tried to do such build today, and it seemed to upload just fine, but
apparently have not been accepted for scanning. No idea what went
wrong, and no time to investigate.
Thank you for the explaining how it works. I was hoping the site would
automatically scan new git commits onace I had updated our URL. At any
rate, I hope it will prove useful for testing future changes.

Loading...