SOAAP tools for Chromium

This repository contains tools for applying SOAAP to Chromium. To use them, you need to:

Build SOAAP and its custom versions of LLVM and Clang.

Check out the version of Chromium you're interested in:

$ git submodule init
$ git submodule update --reference . v42    # or v32, or...

Use the run-gyp command to run Gyp (Chromium's meta-build tool) with appropriate arguments for FreeBSD and patch the resulting Ninja file with SOAAP-specific build targets:
```
$ cd v42
$ LLVM_PREFIX=/llvm/build/path SOAAP_PREFIX=/SOAAP/build/path ../run-gyp
```
Run ninja to build Chromium and perform the SOAAP analysis:
```
$ ninja -C out/Release chrome soaap
```

You can then inspect the output file out/Release/chrome.soaap.json for unsandboxed past-vulnerability warnings, call traces, etc.

The default chrome target builds Chrome in the normal fashion but also generates an LLVM IR file containing a linked version of Chrome. To convert this IR file into a native executable, run:

$ ninja -C out/Release chrome.bc.exe

Name		Name	Last commit message	Last commit date
Latest commit History 56 Commits
v29 @ 95690c9		v29 @ 95690c9
v32 @ 10f5b8e		v32 @ 10f5b8e
v42 @ 182ff0e		v42 @ 182ff0e
.gitmodules		.gitmodules
BSD		BSD
README.md		README.md
find-symbol		find-symbol
llvm-file-map		llvm-file-map
llvm-link-wrapper		llvm-link-wrapper
patch-ninja-file		patch-ninja-file
run-gyp		run-gyp
soaap-ninja-v32.diff		soaap-ninja-v32.diff
soaap-ninja-v42.diff		soaap-ninja-v42.diff
v42.deps		v42.deps
vuln-annotations.txt		vuln-annotations.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

SOAAP tools for Chromium

About

Releases

Packages

Contributors 2

Languages

CTSRD-SOAAP/chromium

Folders and files

Latest commit

History

Repository files navigation

SOAAP tools for Chromium

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages