DesktopLinux
Home  |  News  |  Articles  |  Forum  |  Polls  |  Blogs  |  Videos  |  Resource Library

Keywords: Match:
Linux has fewer bugs, analysis shows
Dec. 14, 2004

Linux has fewer bugs than typical commercial software, says testing tools vendor Coverity. The company says the 2.6 Linux kernel has one bug for every 5,787 lines of code, compared to the commercial software norm of one bug per 40 lines.

Coverity markets source code analysis software, including a product called SWAT that "simulates the effects that the operations in the source code might have" in runtime environments. The company says this approach finds more potentially disastrous bugs than competing code analysis tools that simply scan for known, dangerous coding patterns and sloppy coding constructs.

Coverity says its project to analyze Linux source code began in 2000, at the Stanford University Computer Science Research Center, as part of a research initiative to improve software industry engineering processes. The company was founded by five of the lead Stanford researchers involved in that project, it says.

Commercial software typically has 20 to 30 bugs for every thousand lines of code, according to Carnegie Mellon University's CyLab Sustainable Computing Consortium, as cited by Coverity. The production 2.6 Linux kernel has 5.7 million lines of code, but only 985 bugs, Coverity says, including 627 bugs in critical parts of the kernel, 568 crash-causing bugs, 25 buffer overruns, 33 resource leaks, and 100 security bugs.

Lead Linux kernel maintainer Andrew Morton said, "We've already addressed the top priority bugs that Coverity has uncovered. It's a very useful system for high quality code. This is a benefit to the Linux development community, and we appreciate Coverity's efforts."

Coverity CEO Seth Hallem said, "Our findings show that Linux contains 0.17 bugs per thousand lines of code, an extremely low defect rate and evidence of the strong security of Linux. Many security holes in software are the result of software bugs that can be eliminated with good programming processes."

Coverity says it will periodically publish free summary results of its Linux bug analyses.

(Click here for further information)
Home  |  News  |  Articles  |  Forum  |  Polls  |  About  |  Contact
 

Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
Tech RSS Feeds | ROI Calculators | Tech Podcasts | Tech Video | VARs | Channel News

Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
eWEEK | Enterprise Network Security | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
Publish | Security IT Hub | Strategic Partner | Web Buyer's Guide | Windows for Devices

Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | igrep

Use of this site is governed by our Terms of Service and Privacy Policy. Except where otherwise specified, the contents of this site are copyright © 1999-2011 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise is prohibited. Linux is a registered trademark of Linus Torvalds. All other marks are the property of their respective owners.