Dailydave mailing list archives
Re: Month of Kernel Bugs and fsfuzzer release (0.6)
From: Jared DeMott <demottja () msu edu>
Date: Tue, 24 Oct 2006 15:45:25 -0400
One of the issues is that some filesystems perform CRC calculation and other tricks (hint: mtd code). Thus, the time before you're actually able to find a bug, increases (as most probably the generated output won't pass the CRC validation).
Ah, yes, this is a general fuzzing issue I've been thinking about. I've done a bit of research trying to figure out with what heuristics to fuzz. And than it hit me: even more important than finding a "good" long string, for example, is how to get it properly delivered. The "test harness" + "knowledge of where the test ends up" is almost more important than the "test" if you will.
_______________________________________________ Dailydave mailing list Dailydave () lists immunitysec com http://lists.immunitysec.com/mailman/listinfo/dailydave
Current thread:
- Month of Kernel Bugs and fsfuzzer release (0.6) L . M . H . (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) Evgeny Legerov (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) L . M . H . (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) Evgeny Legerov (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) L . M . H . (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) Jared DeMott (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) L . M . H . (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) L . M . H . (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) Evgeny Legerov (Oct 24)
- Re: Month of Kernel Bugs and fsfuzzer release (0.6) endrazine (Oct 26)