Difference between revisions of "Active Projects"

From Linux Kernel Security Subsystem
Jump to: navigation, search
m
m
Line 5: Line 5:
 
= Coccinelle =
 
= Coccinelle =
  
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code.
+
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
  
 
Who's running it: Fengguang Wu
 
Who's running it: Fengguang Wu
Line 13: Line 13:
 
=== Coverity ===
 
=== Coverity ===
  
Coverity provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
+
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
 
 
Project page: Coverity is propietary.
 
  
 
Who's running it: ? (Red Hat)
 
Who's running it: ? (Red Hat)
Line 23: Line 21:
 
=== Smatch ===
 
=== Smatch ===
  
Smatch is a static analysis tool for C.
+
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
 
 
Project page: http://repo.or.cz/w/smatch.git
 
  
 
Who's running it: Dan Carpenter, Fengguang Wu
 
Who's running it: Dan Carpenter, Fengguang Wu
Line 35: Line 31:
 
=== Trinity ===
 
=== Trinity ===
  
Trinity is a Linux system call fuzzer.
+
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.
  
Project page: http://codemonkey.org.uk/projects/trinity/
+
Who's running it: Dave Jones, Fengguang Wu
  
Who's running it: Dave Jones, Fengguang Wu
+
Targeted subsystems: N/A?

Revision as of 16:07, 8 October 2012

There are a number of active Linux Kernel hardening projects and this page gives details on some of them.

Static Analysis

Coccinelle

Coccinelle is a tool for matching and fixing source code for C, C++, and other languages.

Who's running it: Fengguang Wu

Targeted subsystems: ?

Coverity

Coverity provides static analysis tools for C, C++, and other languages. Red Hat's Coverity license allows results to be shared with upstream projects.

Who's running it: ? (Red Hat)

Targeted subsystems: ?

Smatch

Smatch is a static analysis tool for C.

Who's running it: Dan Carpenter, Fengguang Wu

Targeted subsystems: ?

Fuzz Testing

Trinity

Trinity is a Linux system call fuzzer.

Who's running it: Dave Jones, Fengguang Wu

Targeted subsystems: N/A?