Difference between revisions of "Active Projects"

From Linux Kernel Security Subsystem
Jump to navigation Jump to search
m
m
Line 1: Line 1:
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.


== Static Analysis ==
= Static Analysis =


= Coccinelle =
== Coccinelle ==


[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
Line 11: Line 11:
Targeted subsystems: ?
Targeted subsystems: ?


=== Coverity ===
== Coverity ==


[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
Line 19: Line 19:
Targeted subsystems: ?
Targeted subsystems: ?


=== Smatch ===
== Smatch ==


[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
Line 27: Line 27:
Targeted subsystems: ?
Targeted subsystems: ?


== Fuzz Testing ==
= Fuzz Testing =


=== Trinity ===
== Trinity ==


[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.

Revision as of 16:08, 8 October 2012

There are a number of active Linux Kernel hardening projects and this page gives details on some of them.

Static Analysis

Coccinelle

Coccinelle is a tool for matching and fixing source code for C, C++, and other languages.

Who's running it: Fengguang Wu

Targeted subsystems: ?

Coverity

Coverity provides static analysis tools for C, C++, and other languages. Red Hat's Coverity license allows results to be shared with upstream projects.

Who's running it: ? (Red Hat)

Targeted subsystems: ?

Smatch

Smatch is a static analysis tool for C.

Who's running it: Dan Carpenter, Fengguang Wu

Targeted subsystems: ?

Fuzz Testing

Trinity

Trinity is a Linux system call fuzzer.

Who's running it: Dave Jones, Fengguang Wu

Targeted subsystems: N/A?