Difference between revisions of "Active Projects"

From Linux Kernel Security Subsystem
Jump to: navigation, search
m
Line 7: Line 7:
 
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
 
[http://en.wikipedia.org/wiki/Coccinelle_(software) Coccinelle] is a tool for matching and fixing source code for C, C++, and other languages.
  
Who's running it: Fengguang Wu, Artem Bityutskiy
+
Run by:
 
+
* Fengguang Wu - Running against ?
Targeted subsystems: ?
+
* Artem Bityutskiy - Running against ?
  
 
== Coverity ==
 
== Coverity ==
Line 15: Line 15:
 
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
 
[http://en.wikipedia.org/wiki/Coverity Coverity] provides static analysis tools for C, C++, and other languages.  Red Hat's Coverity license allows results to be shared with upstream projects.
  
Who's running it: ? (Red Hat)
+
Run by:
 
+
* Who's running Coverity at Red Hat and against what trees?
Targeted subsystems: ?
 
  
 
== Smatch ==
 
== Smatch ==
Line 23: Line 22:
 
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
 
[http://smatch.sourceforge.net/ Smatch] is a static analysis tool for C.
  
Who's running it: Dan Carpenter, Fengguang Wu
+
Run by:
 
+
* Dan Carpenter - Running against linux-next x86_64 allmodconfig
Targeted subsystems: ?
+
* Fengguang Wu - Running against ?
  
 
= Fuzz Testing =
 
= Fuzz Testing =
Line 33: Line 32:
 
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.
 
[http://codemonkey.org.uk/projects/trinity/ Trinity] is a Linux system call fuzzer.
  
Who's running it: Dave Jones, Fengguang Wu
+
Run by:
 
+
* Dave Jones and Fengguang Wu are running Trinity.
Targeted subsystems: N/A?
 

Revision as of 16:21, 8 October 2012

There are a number of active Linux Kernel hardening projects and this page gives details on some of them.

Static Analysis

Coccinelle

Coccinelle is a tool for matching and fixing source code for C, C++, and other languages.

Run by:

* Fengguang Wu - Running against ?
* Artem Bityutskiy - Running against ?

Coverity

Coverity provides static analysis tools for C, C++, and other languages. Red Hat's Coverity license allows results to be shared with upstream projects.

Run by:

* Who's running Coverity at Red Hat and against what trees?

Smatch

Smatch is a static analysis tool for C.

Run by:

* Dan Carpenter - Running against linux-next x86_64 allmodconfig
* Fengguang Wu - Running against ?

Fuzz Testing

Trinity

Trinity is a Linux system call fuzzer.

Run by:

* Dave Jones and Fengguang Wu are running Trinity.