Presentation is loading. Please wait.

Presentation is loading. Please wait.

Coverity and LibreOffice

Published by午 熊 Modified over 8 years ago

Similar presentations

Presentation on theme: "Coverity and LibreOffice"— Presentation transcript:

1 Coverity and LibreOffice
Current Status Caolán McNamara Red Hat, Inc.

2 Coverity Info

3 Coverity Blurb Stanford Checker research project
Commercialized as Coverity in 2002 Coverity Scan service for “open source” since 2006 Free service Approx 2,500 projects participating Apparently “over 100,000 defects identified by the service have been fixed since the inception of the program”

4 No bug is too foolish to check for.

5 [CVE-2006-0745] X.Org privilege escalation
if(getuid() != 0 && geteuid == 0) { ErrorF(“only root”); exit(1); } // all sorts of things only root should be able to do // geteuid should be geteuid()

6 Scan Process

7 Build Frequency Up to 7 builds per week, with a maximum of 3 builds per day, for projects with fewer than 100K lines of code Up to 4 builds per week, with a maximum of 2 builds per day, for projects with 100K to 500K lines of code Up to 2 builds per week, with a maximum of 1 build per day, for projects with 500K to 1 million lines of code 1 build per week for projects with more than 1 million lines of code ^^^^ That's us there ^^^^

8 Sizes and Timings Sizes 9,478,622 lines of code are built
5,659,730 of those belong to LibreOffice itself 3,779,926(+) in workdir/UnpackedTarball/ (etc) Time Cov-scan make on our side takes about 3 to 4 hours Upload of results approx ~1 hour Analysis run on their side 12 to 28 hours

9 What does it report UNCAUGHT_EXCEPTION PASS_BY_VALUE CHECKED_RETURN
CTOR_DTOR_LEAK FORWARD_NULL UNINIT DIVIDE_BY_ZERO NO_EFFECT TAINTED_SCALAR VIRTUAL_DTOR DEADCODE MISMATCHED_ITERATOR RESOURCE_LEAK SWAPPED_ARGUMENTS UNINIT_CTOR TOCTOU MISSING_BREAK COPY_PASTE_ERROR USE_AFTER_FREE STRING_OVERFLOW REVERSE_INULL SIGN_EXTENSION MIXED_ENUMS ARRAY_VS_SINGLETON NEGATIVE_RETURNS SIZECHECK INTEGER_OVERFLOW SIZEOF_MISMATCH 37 others

10 LibreOffice Examples

11 CID# UNINIT_CTOR

12 CID# DEADCODE Copy and Paste from previous ImplGetUndefinedAsciiMultiByte without corresponding change of UNDEFINED_MASK to INVALID_MASK

13 CID# UNCAUGHT_EXCEPT That doesn't actually specify what it throws

14 CID# FORWARD_NULL Somebody got confused on checking the result of dynamic_cast

15 CID#704127 CONSTANT_EXPRESSION_RESULT
typo, should be 0x0020 not 0x002, wrong for 14 years

16 Tips For Developers

17 MISSING_BREAK If the absence of a break is intentional place a comment at the fall-through point // fall-through is traditional, but anything will do case foo: ... code ... + // fall-through case bar: break;

18 Multiple copies of an issue
In our DEADCODE example there were three instances of the bug Also common for UNIT_CTOR that a member is not initialized in multiple constructors It is also very common for developers to just fix the first instance and mark the bug as fixed, watch out for that Examine the Checkers->All in project->new vs outstanding columns after a new scan.

19 Unhandled Exceptions #1
The UNHANDLED_EXCEPTION checked appears to collect what exceptions a method can throw without regard to the input logic void bar(bool bThrow) throw (foo) { if (bThrow) throw foo(); } int foo() throw() bar(false); Typically I've refactored into a bar_throw, bar_nothrow

20 Unhandled Exceptions #2
Coverity appears to examine methods recursively to collect what exceptions callees could throw So one missing catch can infect dozens of call-sites and generate multiple cids Examine the callstack (window on right) for the site of the exception and work upwards to find the right place to catch it One fix can silence multiple cids

21 Unhandled Exceptions #3
Derive exceptions from std::exception or uno::RuntimeException Don't derive anything uno::Exception because all the idl derived signatures have RuntimeException, not Exception std::exception derivation also goes for third party libraries, thankfully boost does this

22 Status

23 Defect density

24 Breakdown So 0.08 refers to OUR code while (I believe) the ignored third party dependencies are included in the figures under trends- >project Lifetime where the total is 0.41

25 Density over time, included third party code
Fun blip is using ccache Don't use ccache with cov-scan

26 Outstanding issues by release by category

27 What next

28 Weekly builds Before the massive clean up each refactoring cycle would retain the same problems, but sufficiently differently that coverity saw them as new bugs Impossible to distinguish between newly moved old insignificant problem vs truly new significant one. Hundreds of new per cycle Now a handful new per cycle Early new bug detection now possible

29 Third party libraries These are hidden in our view, but account for lots of issues Associated projects typically already have coverity scans, libwpd, hunspell, etc Non-associated projects ?, icu, firebird, harfbuzz, Help them to help us see “external” dir

30 Final Point: The most annoying false positive
Why does coverity warn about this and how to silence Shows up at multiple call-sites

Download ppt "Coverity and LibreOffice"

Similar presentations

11-Jun-14 The assert statement. 2 About the assert statement The purpose of the assert statement is to give you a way to catch program errors early The.

11-Jun-14 The assert statement. 2 About the assert statement The purpose of the assert statement is to give you a way to catch program errors early The.
1 Working with References. 2 References Every object variable is a reference to an object Also true when an object is passed as an argument When the object.

1 Working with References. 2 References Every object variable is a reference to an object Also true when an object is passed as an argument When the object.
Exception Handling Xiaoliang Wang, Darren Freeman, George Blank.

Exception Handling Xiaoliang Wang, Darren Freeman, George Blank.
© 2010 John Dalbey Ch 9: Reviews Humphrey proposes that personal reviews will result in improved quality. Now that we have a defined process and some real.

© 2010 John Dalbey Ch 9: Reviews Humphrey proposes that personal reviews will result in improved quality. Now that we have a defined process and some real.
Exceptions. Errors and Exceptions An error is a bug in your program –dividing by zero –going outside the bounds of an array –trying to use a null reference.

Exceptions. Errors and Exceptions An error is a bug in your program –dividing by zero –going outside the bounds of an array –trying to use a null reference.
Introduction To C++ Programming 1.0 Basic C++ Program Structure 2.0 Program Control 3.0 Array And Structures 4.0 Function 5.0 Pointer 6.0 Secure Programming.

Introduction To C++ Programming 1.0 Basic C++ Program Structure 2.0 Program Control 3.0 Array And Structures 4.0 Function 5.0 Pointer 6.0 Secure Programming.
University of Palestine software engineering department Testing of Software Systems Fundamentals of testing instructor: Tasneem Darwish.

University of Palestine software engineering department Testing of Software Systems Fundamentals of testing instructor: Tasneem Darwish.
University of Maryland Bug Driven Bug Finding Chadd Williams.

University of Maryland Bug Driven Bug Finding Chadd Williams.
PROGRAMMING IN VISUAL BASIC.NET VISUAL BASIC BUILDING BLOCKS Bilal Munir Mughal 1 Chapter-5.

PROGRAMMING IN VISUAL BASIC.NET VISUAL BASIC BUILDING BLOCKS Bilal Munir Mughal 1 Chapter-5.
Chapter 22 Developer testing Peter J. Lane. Testing can be difficult for developers to follow  Testing’s goal runs counter to the goals of the other.

Chapter 22 Developer testing Peter J. Lane. Testing can be difficult for developers to follow  Testing’s goal runs counter to the goals of the other.
Axel Naumann. Outline  Static Code Analysis  Coverity  Reporting Tools, Report Quality  Demo: Examples 2010-01-20Axel Naumann Application Area Meeting2.

Axel Naumann. Outline  Static Code Analysis  Coverity  Reporting Tools, Report Quality  "Demo": Examples Axel Naumann Application Area Meeting2.
Java Basics 9-5-2002. Opening Discussion zWhat did we talk about last class? zWhat are the basic constructs in the programming languages you are familiar.

Java Basics Opening Discussion zWhat did we talk about last class? zWhat are the basic constructs in the programming languages you are familiar.
Exceptions and Assertions Chapter 15 – CSCI 1302.

Exceptions and Assertions Chapter 15 – CSCI 1302.
Lecture 7 February 24, 2000. Javadoc version and author Tags These go in the comments before named classes. –Put your SS# on a separate line from the.

Lecture 7 February 24, Javadoc version and author Tags These go in the comments before named classes. –Put your SS# on a separate line from the.
Error Handling Tonga Institute of Higher Education.

Error Handling Tonga Institute of Higher Education.
Today’s lecture Review of chapter 8 Go over examples.

Today’s lecture Review of chapter 8 Go over examples.
(c) University of Washington10-1 CSC 143 Java Errors and Exceptions Reading: Ch. 15.

(c) University of Washington10-1 CSC 143 Java Errors and Exceptions Reading: Ch. 15.
Template v4 September 27, 2012 1 Copyright © 2012. Infor. All Rights Reserved. www.infor.com 1 Infor Factory Track TM 6.00 Shift Settings in Time Track.

Template v4 September 27, Copyright © Infor. All Rights Reserved. 1 Infor Factory Track TM 6.00 Shift Settings in Time Track.
CSE 374 Programming Concepts & Tools Hal Perkins Fall 2015 Lecture 17 – Specifications, error checking & assert.

CSE 374 Programming Concepts & Tools Hal Perkins Fall 2015 Lecture 17 – Specifications, error checking & assert.
CSC 108H: Introduction to Computer Programming Summer 2012 Marek Janicki.

CSC 108H: Introduction to Computer Programming Summer 2012 Marek Janicki.

Similar presentations

Ads by Google