https://github.com/fcambus/gwcheck

Check .gnu.warning.* sections in ELF object files
https://github.com/fcambus/gwcheck

Last synced: 11 months ago
JSON representation

Check .gnu.warning.* sections in ELF object files

Host: GitHub
URL: https://github.com/fcambus/gwcheck
Owner: fcambus
License: bsd-2-clause
Created: 2021-11-04T16:54:18.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2023-11-23T16:47:04.000Z (over 2 years ago)
Last Synced: 2023-11-23T18:42:04.147Z (over 2 years ago)
Language: Rust
Size: 30.3 KB
Stars: 9
Watchers: 3
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md
- Changelog: ChangeLog
- License: LICENSE

Awesome Lists containing this project

README

          # gwcheck

## Description

gwcheck is a tool to check `.gnu.warning.*` sections in **ELF object

files** and display their content.

For an introduction to .gnu.warning.* sections, please refer to this

[article][1].

Support for emitting linker warnings when using a symbol for which a

.gnu.warning.symbol section exists is implemented in GNU linkers (ld

and gold), but currently not in LLVM's LLD linker.

C libraries using this mechanism:

- FreeBSD libc

- NetBSD libc

- OpenBSD libc

- DragonFlyBSD libc

- GNU C Library (glibc)

- Newlib C library

- diet libc

- uClibc

## Requirements

gwcheck is written in Rust and uses the following crates:

- [getopt][2] - A minimal, (essentially) POSIX-compliant option parser

- [goblin][3] - An impish, cross-platform, ELF, Mach-o, and PE binary parsing and loading crate

## Usage

	gwcheck [-hv] object

The options are as follows:

	-h	Display usage.

	-v	Display version.

## Example

Here is the output of running gwcheck on OpenBSD 7.4 libc:

	$ gwcheck libc.so.97.1

	.gnu.warning.random:

		random() may return deterministic values, is that what you want?

	.gnu.warning.tempnam:

		tempnam() possibly used unsafely; consider using mkstemp()

	.gnu.warning.tmpnam:

		tmpnam() possibly used unsafely; consider using mkstemp()

	.gnu.warning.strcpy:

		strcpy() is almost always misused, please use strlcpy()

	.gnu.warning.sprintf:

		sprintf() is often misused, please use snprintf()

	.gnu.warning.stpcpy:

		stpcpy() is dangerous; do not use it

	.gnu.warning.rand_r:

		rand_r() is not random, it is deterministic.

	.gnu.warning.rand:

		rand() may return deterministic values, is that what you want?

	.gnu.warning.vsprintf:

		vsprintf() is often misused, please use vsnprintf()

	.gnu.warning.mktemp:

		mktemp() possibly used unsafely; consider using mkstemp()

	.gnu.warning.getwd:

		getwd() possibly used unsafely; consider using getcwd()

	.gnu.warning.syscall:

		syscall() may go away, please rewrite code to use direct calls

	.gnu.warning.wcscat:

		wcscat() is almost always misused, please use wcslcat()

	.gnu.warning.strcat:

		strcat() is almost always misused, please use strlcat()

	.gnu.warning.wcscpy:

		wcscpy() is almost always misused, please use wcslcpy()

Check the `examples` directory for gwcheck output on several other C

libraries.

## License

gwcheck is released under the BSD 2-Clause license. See `LICENSE` file for

details.

## Author

gwcheck is developed by Frederic Cambus.

- Site: https://www.cambus.net

[1]: https://ninjalj.blogspot.com/2011/11/your-own-linker-warnings-using-gnu.html

[2]: https://crates.io/crates/getopt

[3]: https://crates.io/crates/goblin

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Awesome

https://github.com/fcambus/gwcheck

Awesome Lists containing this project

README