Skip to content

fcambus/gwcheck

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

39 Commits
examples
examples
 
 
man
man
 
 
src
src
 
 
AUTHORS
AUTHORS
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
ChangeLog
ChangeLog
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

gwcheck

Description

gwcheck is a tool to check .gnu.warning.* sections in ELF object files and display their content.

For an introduction to .gnu.warning.* sections, please refer to this article.

Support for emitting linker warnings when using a symbol for which a .gnu.warning.symbol section exists is implemented in GNU linkers (ld and gold), but currently not in LLVM's LLD linker.

C libraries using this mechanism:

  • FreeBSD libc
  • NetBSD libc
  • OpenBSD libc
  • DragonFlyBSD libc
  • GNU C Library (glibc)
  • Newlib C library
  • diet libc
  • uClibc

Requirements

gwcheck is written in Rust and uses the following crates:

  • getopt - A minimal, (essentially) POSIX-compliant option parser
  • goblin - An impish, cross-platform, ELF, Mach-o, and PE binary parsing and loading crate

Usage

gwcheck [-hv] object

The options are as follows:

-h	Display usage.
-v	Display version.

Example

Here is the output of running gwcheck on OpenBSD 7.4 libc:

$ gwcheck libc.so.97.1
.gnu.warning.random:
	random() may return deterministic values, is that what you want?
.gnu.warning.tempnam:
	tempnam() possibly used unsafely; consider using mkstemp()
.gnu.warning.tmpnam:
	tmpnam() possibly used unsafely; consider using mkstemp()
.gnu.warning.strcpy:
	strcpy() is almost always misused, please use strlcpy()
.gnu.warning.sprintf:
	sprintf() is often misused, please use snprintf()
.gnu.warning.stpcpy:
	stpcpy() is dangerous; do not use it
.gnu.warning.rand_r:
	rand_r() is not random, it is deterministic.
.gnu.warning.rand:
	rand() may return deterministic values, is that what you want?
.gnu.warning.vsprintf:
	vsprintf() is often misused, please use vsnprintf()
.gnu.warning.mktemp:
	mktemp() possibly used unsafely; consider using mkstemp()
.gnu.warning.getwd:
	getwd() possibly used unsafely; consider using getcwd()
.gnu.warning.syscall:
	syscall() may go away, please rewrite code to use direct calls
.gnu.warning.wcscat:
	wcscat() is almost always misused, please use wcslcat()
.gnu.warning.strcat:
	strcat() is almost always misused, please use strlcat()
.gnu.warning.wcscpy:
	wcscpy() is almost always misused, please use wcslcpy()

Check the examples directory for gwcheck output on several other C libraries.

License

gwcheck is released under the BSD 2-Clause license. See LICENSE file for details.

Author

gwcheck is developed by Frederic Cambus.

About

Check .gnu.warning.* sections in ELF object files

Resources

Readme

License

BSD-2-Clause license
Activity

Stars

8 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases 1

1.0.0 Latest
Nov 23, 2023

Packages

No packages published

Languages