Coverity Scanning of the GNU C Library project

  • As of the recent update to covscan we can only attain 13% coverage of glibc, it seems because of our use of pipes to output syscall wrappers has resulted in the coverage metric being very low with the most recent release. The open source scanner won't accept any project with less than 85% coverage. This is really a shame since the syscall wrappers are just assembly run through the compiler to get access to cpp. Either way we can no longer upload glibc results as of 2018-10-01 until we work around this issue.

The GNU C Library project has a coverity scanning account located here:

The scanning is offered as part of Coverity's free scanning for open source projects here:

The scanning process is not exactly trivial, but follows these general steps. This assumes you have already setup an account for your project and configured the project account including the addition of as many other administrators as you need to manage the account and defect processing. Much of the submission of a new build can be automated, but for now glibc is doing this manually.

None: Coverity (last edited 2018-10-03 19:08:30 by CarlosODonell)