Re: Squid code analysis using Coverity

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Thu, 11 Oct 2012 13:30:00 +1300

On 11.10.2012 12:08, Henrik Nordström wrote:
> Squid is a member of the Coiverity Open Source programme, but we have
> not been actively using it.

Mainly because the code they scan, as of a few weeks ago when I
re-checked for Alex, was a years old version of 3.HEAD approx. prior to
3.1 beta branching.
Nothing in my login there shows any sign of being a VSC
update/pull/change control and the three email addresses that have
appeared for the Coverity people never get an answer, not even to query
where they were pulling the sources from. Last email sent a year back
was cc'd to core to see if you guys had any better luck.

Did you mean we should have no cost being part of their program? or
that there is an admin control panel (contact person?) you have
available to do more than I could?

Amos

>
> tis 2012-10-09 klockan 00:27 +0400 skrev Dmitry Kurochkin:
>> Hello.
>>
>> We are evaluating Coverity tool for static analyzing of Squid code
>> (see
>> bug 3635 for details [1]). Initial results with analysis of recent
>> Squid trunk revisions are ready and now we need to review them. We
>> are
>> looking for volunteers among Squid developers who can review
>> identified
>> defects, classify them using Coverity interfaces, and advise the
>> Squid
>> Project on the overall usefulness of the tool. Kinkie has offered
>> his
>> help (thank you!) and we are looking for two more volunteers.
>> Please
>> add a note to bug 3635 [1] if you want to participate.
>>
>> Regards,
>> Dmitry
>>
>> [1] http://bugs.squid-cache.org/show_bug.cgi?id=3635
Received on Thu Oct 11 2012 - 00:30:04 MDT

This archive was generated by hypermail 2.2.0 : Fri Oct 12 2012 - 12:00:05 MDT