On Monday 08 February 2010 10:30:12 Rémi Duraffort wrote: > Hello, > my name is Rémi Duraffort (aka ivoire). I'm actually a developer of VLC > media player. > I was at the FOSDEM this week-end and heard about the coccinelle project > and the fact that you runned coccinelle on VLC and found some bugs. > > I'm really interested by such a list of bugs (and I am not able for the > moment to run nicelly coccinelle on VLC source code). >
The list of SmPL files used in [1]. You should be able to use them with the coccicheck script. Once the archive [2] is extracted, you will found a list in /test/results/vlc/*.new.org This is a Org-mode file for Emacs. Each top level entry is mark as either BUG or FP. However, BUG in that case only means that the SmPL has properly identified a suspicious code. It could only be a harmless use of "0" instead of "NULL" when checking a pointer. On the other hand, it spots real problems for null_ref for instance. Finally we have studied several versions. The last one is 0.9.8a. Unfortunately, I could not find problems that occur only in that version. [1] http://www.diku.dk/hjemmesider/ansatte/npalix/aosd10/ [2] http://www.diku.dk/hjemmesider/ansatte/npalix/aosd10/aosd10_data.tbz2 -- Nicolas Palix Tel: (+33) 1 44 27 87 25 _______________________________________________ Cocci mailing list [email protected] http://lists.diku.dk/mailman/listinfo/cocci (Web access from inside DIKUs LAN only)
