From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mailout.scc.kit.edu (mailout.scc.kit.edu [129.13.185.202]) by krisdoz.my.domain (8.14.5/8.14.5) with ESMTP id r4JGBUx4017655 for ; Sun, 19 May 2013 12:11:30 -0400 (EDT) Received: from hekate.usta.de (asta-nat.asta.uni-karlsruhe.de [172.22.63.82]) by scc-mailout-02.scc.kit.edu with esmtp (Exim 4.72 #1) id 1Ue6Cm-00066Z-Ha; Sun, 19 May 2013 18:11:28 +0200 Received: from donnerwolke.usta.de ([172.24.96.3]) by hekate.usta.de with esmtp (Exim 4.77) (envelope-from ) id 1Ue6Cm-0006IQ-H6; Sun, 19 May 2013 18:11:28 +0200 Received: from iris.usta.de ([172.24.96.5] helo=usta.de) by donnerwolke.usta.de with esmtp (Exim 4.72) (envelope-from ) id 1Ue6Cm-0006s3-Fu; Sun, 19 May 2013 18:11:28 +0200 Received: from schwarze by usta.de with local (Exim 4.77) (envelope-from ) id 1Ue6Cm-00049h-3h; Sun, 19 May 2013 18:11:28 +0200 Date: Sun, 19 May 2013 18:11:27 +0200 From: Ingo Schwarze To: tech@mdocml.bsd.lv Cc: uqs@spoerlein.net Subject: Re: [patch] fix wrong argument for calloc Message-ID: <20130519161127.GA30545@iris.usta.de> References: <20130517002910.GX2055@acme.spoerlein.net> <20130518164545.GC30629@iris.usta.de> <20130519015855.GI2055@acme.spoerlein.net> X-Mailinglist: mdocml-tech Reply-To: tech@mdocml.bsd.lv MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <20130519015855.GI2055@acme.spoerlein.net> User-Agent: Mutt/1.5.21 (2010-09-15) Hi Ulrich, Ulrich Spörlein wrote on Sun, May 19, 2013 at 03:58:56AM +0200: > On Sat, 2013-05-18 at 18:45:45 +0200, Ingo Schwarze wrote: >> Hummm... Please bear with my ignorance... >> How can anybody do anything with the CID? >> Is the CID really useful without a project ID? >> Is there a database somewhere on the net? > Sorry, got to this mail only now. These IDs are unique on > http://scan.coverity.com which is where Open Source projects > can sign up to have Coverity scan their stuff. > > The FreeBSD project used to run their own instance of Coverity Prevent > (so with local IDs, not global ones), but I'm trying to get us on the > coverity-run instance, which should scale easier and lessen the > bus-factor on our side. > > NetBSD is on there too, Ah, thanks for the explanation. > maybe OpenBSD should consider doing this as well. Maybe, maybe not, i really have no idea and don't expect to be among the people deciding that. I seem to remember some individual developers using Coverity as one of several tools to do code reviews in the past, but i'm not aware of any current plans and don't plan to propose any future ones, either. > If you create an account I tried that yesterday, not for OpenBSD work in general, but just to work on mandoc. However, sign on failed, telling me to confirm the account, but i never received the confirmation email, not even after requesting a resend. Meanwhile, they apparently have deleted my account. Trying to sign on returns "Username doesn't exist...", which is different from the message i got yesterday. > and request access to the FreeBSD project, I should be able to give > that to you. But they currently migrate their website and some stuff > seems broken. Yes, it seems so. Oh well, i guess i am losing interest, i was hesitant to work with a commercial vendor in the first place, in particular regarding security-relevant topics. All the more if the fail to even maintain their tools in working state... Of course, you are still very welcome to report any issues you are aware of, no matter how you found them! Yours, Ingo -- To unsubscribe send an email to tech+unsubscribe@mdocml.bsd.lv