Re: [gsoc] syscall/libc fuzzer proposal

To: Mateusz Kocielski <m.kocielski%gmail.com@localhost>
Subject: Re: [gsoc] syscall/libc fuzzer proposal
From: Thor Lancelot Simon <tls%panix.com@localhost>
Date: Sat, 20 Mar 2010 19:54:35 -0400

On Sat, Mar 20, 2010 at 08:53:12PM +0200, Mateusz Kocielski wrote:
> 2010/3/20 Thor Lancelot Simon <tls%panix.com@localhost>:
> > What is the benefit of this when compared to existing static-analysis
> > tools such as Coverity Scan, splint, or the Clang static analyzer? ?Will
> > this cover any cases they don't? ?If so, which ones?
> 
> Undecidability is the limit for static-analysis. Consider following program:

I did.  Doesn't GCC's existing SSP, FORTIFY_SOURCE, and/or mudflap mode
already catch such cases?  (I am pretty sure Coverity would also catch
them at compile time).

Thor

References:
- [gsoc] syscall/libc fuzzer proposal
  - From: Mateusz Kocielski
- Re: [gsoc] syscall/libc fuzzer proposal
  - From: Thor Lancelot Simon
- Re: [gsoc] syscall/libc fuzzer proposal
  - From: Mateusz Kocielski

Prev by Date: Re: [gsoc] syscall/libc fuzzer proposal
Next by Date: MIPS SoC systems (was: Dead ports [Re: config(5) break down])
Previous by Thread: Re: [gsoc] syscall/libc fuzzer proposal
Next by Thread: Re: [gsoc] syscall/libc fuzzer proposal
Indexes:

Home | Main Index | Thread Index | Old Index