Difference between revisions of "Active Projects"

From Linux Kernel Security Subsystem
Jump to: navigation, search
m
m
Line 1: Line 1:
 
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.
 
There are a number of active Linux Kernel hardening projects and this page gives details on some of them.
  
== Static Analysis ==
+
= Static Analysis =
  
= Coccinelle =
+
== Coccinelle ==
  
 
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
 
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
Line 11: Line 11:
 
Targeted subsystems: ?
 
Targeted subsystems: ?
  
=== Coverity ===
+
== Coverity ==
  
 
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
 
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
Line 19: Line 19:
 
Targeted subsystems: ?
 
Targeted subsystems: ?
  
=== Smatch ===
+
== Smatch ==
  
 
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
 
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
Line 27: Line 27:
 
Targeted subsystems: ?
 
Targeted subsystems: ?
  
== Fuzz Testing ==
+
= Fuzz Testing =
  
=== Trinity ===
+
== Trinity ==
  
 
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.
 
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.

Revision as of 16:08, 8 October 2012

There are a number of active Linux Kernel hardening projects and this page gives details on some of them.

Static Analysis

Coccinelle

Coccinelle is a tool for matching and fixing source code for C, C++, and other languages.

Who's running it: Fengguang Wu

Targeted subsystems: ?

Coverity

Coverity provides static analysis tools for C, C++, and other languages. Red Hat's Coverity license allows results to be shared with upstream projects.

Who's running it: ? (Red Hat)

Targeted subsystems: ?

Smatch

Smatch is a static analysis tool for C.

Who's running it: Dan Carpenter, Fengguang Wu

Targeted subsystems: ?

Fuzz Testing

Trinity

Trinity is a Linux system call fuzzer.

Who's running it: Dave Jones, Fengguang Wu

Targeted subsystems: N/A?