Date: Fri, 11 Jan 2008 21:12:27 +0100 From: Ivan Voras <ivoras@freebsd.org> To: freebsd-hackers@freebsd.org Subject: Coverity problems? Message-ID: <fm8ijb$49j$1@ger.gmane.org>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] Hi, I got a link to this article via ACM TechNews: http://www.informationweek.com/story/showArticle.jhtml?articleID=205600229&%0Acid=RSSfeed_IWK_All """ Linux came in with far fewer defects than average as did a number of other open source projects. The version 2.6 of the Linux kernel had a security bug rate of .127 per thousand lines of code. The kernel scan covered 3,639,322 lines of code. As exposures were identified by repeated scans, 452 defects have been fixed by kernel developers; 48 have been verified but not yet fixed; another 413 remain to be verified and fixed, according to code scanning results posted on the Coverity Web site. FreeBSD, sometimes posed as an alternative to Linux, has been slower to respond to the Coverity scans. In 1,582,166 lines of code, it has fixed zero defects, verified six and has another 605 to go. """ These numbers seem strange and out of proportion. I know there has been prior cooperation with Coverity - is this just old data? [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.5 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHh82rldnAQVacBcgRAuI6AJ9Oz82EwzDaqUqF+Vc5nYSIvhRKUQCfaroR rRuXNtbbtX9nS6mctk0yGGU= =MiZF -----END PGP SIGNATURE-----
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?fm8ijb$49j$1>