Added blurb on Coverity to the ChangeLog

2013-05-12 21:04:25 -04:00 · 2013-05-12 21:04:25 -04:00 · 09f073d393
commit 09f073d393
parent 838782f198
1 changed files with 8 additions and 0 deletions
--- a/8
+++ b/8
@ -28,6 +28,14 @@ fwknop-2.5 (//2013):
      engine.  If a vulnerability is discovered in OpenSSL and a change is
      made, then the --enable-openssl-checks mode will allow the test suite to
      discover this in a automated fashion for fwknop.
+    - The fwknop project is using Coverity for source code validation (in
+      addition to other tools such as the CLANG static analyzer).  Many bugs
+      have been fixed in this release that were discovered by Coverity.  These
+      bugs spanned multiple classes of problems from memory leaks, improper use
+      of sizeof(), potential double-free conditions, and more.  Full details on
+      these fixes are available in the git history.  Any open source project
+      that is written in a language supported by Coverity would benefit highly
+      from participating.
    - [test suite] Changed how the test suite interacts with the fwknop client
      and server by looking for indications that SPA packets are actually
      received.  This is done by first waiting for 'main event loop' in fwknopd