summaryrefslogtreecommitdiff
path: root/Mk/Scripts/security-check.awk
diff options
context:
space:
mode:
Diffstat (limited to 'Mk/Scripts/security-check.awk')
-rw-r--r--Mk/Scripts/security-check.awk14
1 files changed, 7 insertions, 7 deletions
diff --git a/Mk/Scripts/security-check.awk b/Mk/Scripts/security-check.awk
index 60c6ce791019..4a661bbc7f99 100644
--- a/Mk/Scripts/security-check.awk
+++ b/Mk/Scripts/security-check.awk
@@ -11,17 +11,17 @@ FILENAME ~ /\.flattened$/ {
if ($0 ~ /(^|\/)etc\/rc\.d\//)
startup_scripts[$0] = 1;
}
-FILENAME ~ /\.objdump$/ {
- if (match($0, /: +file format [^ ]+$/)) {
- file = substr($0, 1, RSTART - 1);
+FILENAME ~ /\.readelf$/ {
+ if (match($0, /^File:/)) {
+ file = substr($0, 7);
next;
}
if (file == "")
next;
- if ($3 ~ /^(gets|mktemp|tempnam|tmpnam)$/ ||
- ($3 ~ /^(strcpy|strcat|sprintf)$/ && audit != ""))
- stupid_binaries[file] = stupid_binaries[file] " " $3;
- if ($3 ~ /^(accept|recvfrom)$/)
+ if ($5 ~ /^(gets|mktemp|tempnam|tmpnam)$/ ||
+ ($5 ~ /^(strcpy|strcat|sprintf)$/ && audit != ""))
+ stupid_binaries[file] = stupid_binaries[file] " " $5;
+ if ($5 ~ /^(accept|recvfrom)$/)
network_binaries[file] = 1;
}
FILENAME ~ /\.setuid$/ { setuid_binaries[$0] = 1; }
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-06 23:43:26 +0000