[apluslist] Coverity found 186 potential errors in 4.20
Anuj Goyal
agoyal at coverity.com
Thu Jan 19 10:37:25 EST 2006
Would Morgan Stanley be interested in a free trial to discuss the
results? We would leave behind a subset of the bugs that we found in
the free trial. I understand that A++ is an important part of Morgan
Stanleys' technology infrastructure. We are entering the financial
sector and would like to be used by every important application. What
software quality tools are you using internally?
Do you have any C/C++ code that constantly crashes and can't figure out
why? Static source code analysis may be able to find the bug.
Analysis summary report:
------------------------
Files analyzed : 1093
Functions analyzed : 18953
Classes/structs analyzed : 1670
Paths analyzed : 416305
New defects found : 186 Total
2 CHECKED_RETURN
13 DEADCODE
2 DELETE_ARRAY
27 FORWARD_NULL
9 NEGATIVE_RETURNS
3 NULL_RETURNS
17 OVERRUN_STATIC
11 RESOURCE_LEAK
16 REVERSE_INULL
29 UNINIT
48 UNUSED_VALUE
9 USE_AFTER_FREE
Anuj Goyal
Sr. Sales Engineer
Coverity, Inc.
185 Berry St., Suite 3600
San Francisco, CA 94107
Email: agoyal at coverity.com
Static source analysis involves looking at the source, running it
through our frontend compiler and analyzing the call graph. If you want
more information you can email me off this list. I assume that everyone
on this list is technical and understands a little bit about it. There
are no changes to your build tree and the analysis took about 35 min on
an old linux box.
Here are some linux bugs that we found: http://linuxbugs.coverity.com
http://www.kernel.org/git/?p=linux%2Fkernel%2Fgit%2Ftorvalds%2Flinux-2.6.git&a=search&h=HEAD&s=coverity
Here is our customer list. http://www.coverity.com/customers/
More information about the apluslist
mailing list