It is easy to statically analyze source code of RPM packages. Fedora contains a tool named csmock, which takes a source RPM package, runs static analyzers on it, and returns a list of potential programming mistakes detected in the package. We are extending this fully automated solution for dynamic analyzers, such as valgrind or strace. Using this extension, one can easily get a list of bugs detected by valgrind in the regression tests embedded in a source RPM package. Thanks to our innovative approach, the results do not contain unrelated reports that would otherwise be produced by bash, make, python interpreter, and all the external testing frameworks.
Video Stream