[cairo] Cairo is at Coverity Rung 0

Christof Petig christof.petig at arcor.de
Mon Jul 30 13:25:46 PDT 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Carl Worth schrieb:
> In the meantime, there are a lot of static-analysis things that I'd
> love to see happening for cairo that I know that Coverity doesn't do,
> and that I know would be quite easy to add to a tool like sparse. For
> example, I'd like a tool that told us whenever we mixed fixed-point
> with non-fixed-point integer arithmetic, or whenever we mixed values
> from two different coordinate systems in the same arithmetic
> expression.
> 
> If anybody would like to help improve sparse, (or just teach us how to
> start using it), to do those kinds of things, that would be great!
> But do be careful about what agreements you make first.

There is also the opportunity to abuse C++ as a type safety enforcing
parser by defining fixed point types as classes with a minimum of
defined conversion operators. This has proven to be very efficient (and
sometimes overzealous) at my work (maintaining fixed point code).

  Christof
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGrklKng+R+0ucfO0RAoE+AKCjGUYwdoS7hHA3BwAMI4efl0dFxACfSlIh
OO0PS4oP7WHm1g25XCwBylg=
=8Ax/
-----END PGP SIGNATURE-----


More information about the cairo mailing list