Open source code has fewer mistakes
Open source software has fewer defects on average than proprietary code does, according to new data from Coverity
By Katherine Noyes | PC World | Published: 11:18, 25 February 2012
Free and open source software such as Firefox, LibreOffice, and Linux is enjoying increasingly widespread adoption on business and home computers alike, but every once in a while a naysayer will still pipe up with one vague concern or another about open source quality, in particular.
"You get what you pay for," such detractors often like to say.
It's all just a matter of FUD, of course, and a new report from development testing firm Coverity helps to confirm that.
Related Articles on Techworld
In its 2011 Coverity Scan Open Source Integrity Report, which was released on Thursday, Coverity actually found that open source code has fewer defects per thousand lines of code than proprietary software code does.
"The line between open source and proprietary software will continue to blur over time as open source is further cemented in the modern software supply chain," noted Zack Samocha, Coverity's project director for the Scan project.
Searching for defects
Originally launched by Coverity along with the US Department of Homeland Security in 2006, the Scan project is the largest public-private sector research effort focused on open source software integrity, Coverity says.
Included in this year's analysis were more than 37 million lines of open source software code and more than 300 million lines of proprietary software code from a sample of anonymous Coverity users.
To conduct its analysis, Coverity used a testing platform that was upgraded this year with the ability to find more new and existing types of defects in software code, the company says.
Linux 2.6 stands out
Among Coverity's findings was that in proprietary codebases, which averaged 7.5 million lines of code in size, the average number of defects per thousand lines of code was 0.64.
That may sound pretty small, but in open source software the figure was even smaller. Specifically, with an average open source project size of 832,000 lines of code, the average defect density was 0.45 defects per thousand lines of code.
Where codebases were of similar size, open source code quality was pretty much on par with proprietary code quality, Coverity found. Linux 2.6, for example - a project with nearly 7 million lines of code - had a defect density of 0.62, which is still slightly better than that of its proprietary codebase counterparts.
Among open source projects, Linux 2.6, PHP 5.3, and PostgreSQL 9.1 can be used as industry benchmarks, the company said, with defect densities of 0.62, 0.20, and 0.21, respectively.
This is not to say that open source software is always the best solution for every purpose. When it comes to choosing new software, however, quality is one of open source's many assets - not a liability.
Comments
Deja-Vu Times said: Coverity Inc the leader in development testing released today the 2011 Coverity Scan Open Source Integrity Report Scan This report is the result of the largest public-private sector research project focused on open source software integrity originally initiated between Coverity and the US Department of Homeland Security in 2006 and currently owned and managed by CoverityIn 2011 open source projects in Coverity Scan were upgraded to the Coverity 5 development testing platform analysis engine to accommodate significant advances of the maturity in static analysis technology over the past five years - in particular the ability to find more new and existing types of defects in software code The 2011 Scan report details the analysis of Scans most active open source projects totaling over 37 million lines of open source software code In addition the report details the results of over 300 million lines of proprietary software code from a sample of anonymous Coverity usersMore Details can be foudn on httpwwwdejavutimescomstr