ATF-devel archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]



The so-called "fuzzing" has long been a standard practice in the domain of
security research. While pooka@ recently added some basic routines and some
skepticism has been expressed previously [1], would there be interest from
the ATF developer(s) to add a basic "atf-fuzz(3) API" and a "fuzzer binary"? 
When looking at some existing applications (e.g. [2]), writing such a
"fuzzer binary" does not seem that difficult.

My main interest would be to test common applications in /bin, /usr/bin,
/sbin, and /usr/sbin. That is, with a fuzzer, basic "black box" test coverage
can be quickly and effortlessly gained.

- Jukka.

[1] Though, IMO, unwarranted:

[2] See

Home | Main Index | Thread Index | Old Index