Bug 520 - Errors found by static analysis of source (Coverity version 6.5.3)
Errors found by static analysis of source (Coverity version 6.5.3)
Product: unbound
Classification: Unclassified
Component: server
All Linux
: P5 normal
Assigned To: unbound team
Depends on:
  Show dependency treegraph
Reported: 2013-08-20 14:22 CEST by Tomas Hozza
Modified: 2013-08-21 15:32 CEST (History)
1 user (show)

See Also:

Scan log (19.31 KB, application/octet-stream)
2013-08-20 14:22 CEST, Tomas Hozza
Tarball with patches (2.24 KB, application/x-xz)
2013-08-20 14:25 CEST, Tomas Hozza

Note You need to log in before you can comment on or make changes to this bug.
Description Tomas Hozza 2013-08-20 14:22:53 CEST
Created attachment 234 [details]
Scan log


We at Red Hat scan a lot of open source software using static analysis
tool called Coverity to help project to fix possible errors. I'm particularly
scanning major network daemons we ship in Fedora like BIND, ISC DHCP, SQUID
and so on.

Finally I reached unbound in my TODO list. I went through all found errors
and written proposed fixes for some issues that seemed real to me. However
there are many false positives or errors that are connected to the source
that SWIG produces.

Anyway I'm attaching the original scan log with all found errors and also
a tarball with patches that I written.

Coverity also offers free source scanning for open source projects. You can
get more information on https://scan.coverity.com/
Comment 1 Tomas Hozza 2013-08-20 14:25:13 CEST
Created attachment 235 [details]
Tarball with patches
Comment 2 Wouter Wijngaards 2013-08-21 15:32:23 CEST
Hi Tomas,

Thank you for the patches, I have applied them.

Best regards,