Subject: Results from running the scan-build on libssh2 1.2.5

Results from running the scan-build on libssh2 1.2.5

From: Joachim Strömbergson <Joachim_at_strombergson.com>
Date: Fri, 16 Apr 2010 11:16:20 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Aloha!

I got the clang/llvm static analyzer [1] to work on libssh 1.2.5. The
tool found in total 66 bugs. Of these 11 are dead assigment and 38 dead
increments. There are however a couple of logical errors that looks
plausible (not false positives).

the tool generates report as a bunch of HTML files. I've created a
tarball of the HTML report and placed it on Kryptoblog:

http://www.strombergson.com/kryptoblog/wp-content/reports_scan-build-2010-04-16-1.tar.gz

What would be a good next step?

[1] Clang Static Analyzer
http://clang-analyzer.llvm.org/
- --
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
Kryptoblog - IT-säkerhet på svenska
http://www.strombergson.com/kryptoblog
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAkvIKuQACgkQZoPr8HT30QEX3QCdEkb50Esyt4/CPETSIX+vINIc
gHAAoNTzfFRbGno2xxW1rg3A3g60/led
=WlgC
-----END PGP SIGNATURE-----
_______________________________________________
libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel
Received on 2010-04-16