devtools: Add security-check.py
579b863cd758Unpublished
Actions

Unpublished Commit · Learn More

Repository Importing: This repository is still importing.

devtools: Add security-check.py

Perform the following ELF security checks:

PIE: Check for position independent executable (PIE), allowing for address space randomization
NX: Check that no sections are writable and executable (including the stack)
RELRO: Check for read-only relocations, binding at startup
Canary: Check for use of stack canary

Also add a check to symbol-check.py that checks that only the subset of
allowed libraries is imported (to avoid incompatibilities).

Provenance

Wladimir J. van der Laan <laanwj@gmail.com>	Authored on Oct 19 2015, 12:53
schancel	Pushed on Jan 5 2018, 21:58
schancel	Pushed on Jan 5 2018, 21:39
schancel	Pushed on Jan 5 2018, 21:17

Parents

rSTAGINGa1d623da3ea4: Merge pull request #6810

Branches

Unknown

Tags

Unknown

Wladimir J. van der Laan <laanwj@gmail.com> committed rSTAGING579b863cd758: devtools: Add security-check.py (authored by Wladimir J. van der Laan <laanwj@gmail.com>).Oct 22 2015, 01:35