On Tue, 10 Feb 2015 15:06:46 -0500
Greg Reagle <greg.reagle_AT_umbc.edu> wrote:
> Has anyone tried any software checkers on suckless programs? For
> example:
> - Electric Fence
> - DUMA
> - Memcheck of Valgrind
> - ProPolice
> - StackGuard
>
> Is there any interest in subjecting suckless software to such tests? I
> have not used these checkers, but I am willing to learn, iff there is
> interest.
Hey Greg,
on sbase specifically, I have run numerous fuzzing tests using afl.
Other people ran valgrind and some static analysis tools, with the
latter reporting lots of noise but finishing cleanly.
Dimitris is working on fortify[0].
Cheers
FRIGN
[0]:
http://git.2f30.org/fortify/
--
FRIGN <dev_AT_frign.de>
Received on Tue Feb 10 2015 - 21:29:30 CET