Difference between revisions of "Active Projects"

From Linux Kernel Security Subsystem
Jump to: navigation, search
m (Active Hardening Projects moved to Active Projects: let's not over-use "hardening")
m
Line 1: Line 1:
 
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.
 
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.
 +
 +
The [[Linux Security Workgroup]] has put together this page in an effort to bring the Linux security community together in hardening the Linux Kernel and prevent duplication of efforts.
  
 
= Static Analysis =
 
= Static Analysis =

Revision as of 18:48, 14 November 2012

There are a number of active Linux Kernel hardening projects and this page gives details on some of them.

The Linux Security Workgroup has put together this page in an effort to bring the Linux security community together in hardening the Linux Kernel and prevent duplication of efforts.

Static Analysis

Coccinelle

Coccinelle is a tool for matching and fixing source code for C, C++, and other languages.

Run by:

  • Fengguang Wu - Running against what trees?
  • Artem Bityutskiy - Running against what trees?

Coverity

Coverity provides static analysis tools for C, C++, and other languages. Red Hat's Coverity license allows results to be shared with upstream projects.

Run by:

  • Paul Moore at Red Hat against what trees?

Smatch

Smatch is a static analysis tool for C.

Run by:

  • Dan Carpenter - Running against linux-next x86_64 allmodconfig
  • Fengguang Wu - Running against what trees?

Fuzz Testing

Trinity

Trinity is a Linux system call fuzzer.

Run by:

  • Dave Jones and Fengguang Wu are running Trinity.