Skip to content

prevent integer overflow in multiplication #492

prevent integer overflow in multiplication

prevent integer overflow in multiplication #492

Workflow file for this run

name: coverity
on:
push:
branches: [ master, coverity ]
jobs:
scan:
runs-on: ubuntu-20.04
env:
TOKEN: ${{ secrets.COVERITY_SCAN_TOKEN }}
WITH_AOM: 1
WITH_DAV1D: 1
WITH_GRAPHICS: 1
WITH_LIBDE265: 1
WITH_RAV1E: 0
WITH_X265: 1
steps:
- uses: actions/checkout@v4
- name: Cache Coverity build tool
uses: actions/cache@v4
with:
path: |
coverity_tool.tar.gz
key: coverity_tool-${{ runner.os }}
- name: Download Coverity build tool
run: |
wget -c -N https://scan.coverity.com/download/linux64 --post-data "token=$TOKEN&project=strukturag%2Flibheif" -O coverity_tool.tar.gz
mkdir coverity_tool
tar xzf coverity_tool.tar.gz --strip 1 -C coverity_tool
- name: Install dependencies
run: |
./scripts/install-ci-linux.sh
- name: Prepare CI
run: |
./scripts/prepare-ci.sh
- name: Build with Coverity build tool
run: |
export PATH=$(pwd)/coverity_tool/bin:$PATH
export PKG_CONFIG_PATH="$(pwd)/libde265/dist/lib/pkgconfig/:$(pwd)/third-party/rav1e/dist/lib/pkgconfig/:$(pwd)/third-party/dav1d/dist/lib/x86_64-linux-gnu/pkgconfig/"
cmake --preset=develop .
cov-build --dir cov-int make -j$(nproc)
- name: Submit build result to Coverity Scan
if: github.ref == 'refs/heads/coverity'
run: |
tar czvf libheif.tar.gz cov-int
curl --form token=$TOKEN \
--form [email protected] \
--form [email protected] \
--form version="Commit $GITHUB_SHA" \
--form description="Build submitted via CI" \
https://scan.coverity.com/builds?project=strukturag%2Flibheif