| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 9 Nov 2017 16:09:27 +1100
From: "Tobin C. Harding" <me@...in.cc>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: "Tobin C. Harding" <me@...in.cc>,
"Jason A. Donenfeld" <Jason@...c4.com>,
Theodore Ts'o <tytso@....edu>,
Kees Cook <keescook@...omium.org>,
Paolo Bonzini <pbonzini@...hat.com>,
Tycho Andersen <tycho@...ker.com>,
"Roberts, William C" <william.c.roberts@...el.com>,
Tejun Heo <tj@...nel.org>,
Jordan Glover <Golden_Miller83@...tonmail.ch>,
Greg KH <gregkh@...uxfoundation.org>,
Petr Mladek <pmladek@...e.com>, Joe Perches <joe@...ches.com>,
Ian Campbell <ijc@...lion.org.uk>,
Sergey Senozhatsky <sergey.senozhatsky@...il.com>,
Catalin Marinas <catalin.marinas@....com>,
Will Deacon <wil.deacon@....com>,
Steven Rostedt <rostedt@...dmis.org>,
Chris Fries <cfries@...gle.com>,
Dave Weinstein <olorin@...gle.com>,
Daniel Micay <danielmicay@...il.com>,
Djalal Harouni <tixxdz@...il.com>,
"Paul E. McKenney" <paulmck@...ux.vnet.ibm.com>,
Andy Lutomirski <luto@...nel.org>,
Peter Zijlstra <peterz@...radead.org>,
Michael Ellerman <mpe@...erman.id.au>,
David Miller <davem@...emloft.net>,
Network Development <netdev@...r.kernel.org>,
linux-kernel@...r.kernel.org, kernel-hardening@...ts.openwall.com
Subject: [PATCH v2 0/8] scripts/leaking_addresses: add summary reporting
This series adds summary reporting to the script. First we do some clean
up. Then we implement changes that were first posted as
[PATCH v4] scripts: add leaking_addresses.pl
Additionally; files (and paths) to skip is amended, thanks to Michael
Ellerman and Kees Cook.
Support for scanning PowerPC (64 bit) is added, with thanks to Michael
Ellerman.
File read timeout is added, we set the timer before parsing each
file. Suggested by Kees Cook.
$ perl scripts/leaking_addresses.pl --help
Usage: scripts/leaking_addresses.pl [OPTIONS]
Version: 0.01
Options:
-o, --output-raw=<file> Save results for future processing.
-i, --input-raw=<file> Read results from file instead of scanning.
--raw Show raw results (default).
--suppress-dmesg Do not show dmesg results.
--squash-by-path Show one result per unique path.
--squash-by-filename Show one result per unique filename.
-d, --debug Display debugging output.
-h, --help, --version Display this help and exit.
Examples:
# Scan kernel and dump raw results.
scripts/leaking_addresses.pl
# Scan kernel and save results to file.
scripts/leaking_addresses.pl --output-raw scan.out
# View summary report.
scripts/leaking_addresses.pl --input-raw scan.out --squash-by-filename
Scans the running (64 bit) kernel for potential leaking addresses.
thanks,
Tobin.
Changes since v1:
- Basically everything except the summary reporting, including re-write
of the cover-letter.
Tobin C. Harding (8):
scripts/leaking_addresses: use tabs not spaces
scripts/leaking_addresses: remove dead code
scripts/leaking_addresses: remove command line options
scripts/leaking_addresses: fix comment typo
scripts/leaking_addresses: add to exclude files/paths
scripts/leaking_addresses: add summary reporting
scripts/leaking_addresses: add support for ppc64
scripts/leaking_addresses: add timeout on file read
scripts/leaking_addresses.pl | 369 +++++++++++++++++++++++++++++++++----------
1 file changed, 282 insertions(+), 87 deletions(-)
--
2.7.4
Powered by blists - more mailing lists