Re: Fuzzing

To: atf-devel%NetBSD.org@localhost
Subject: Re: Fuzzing
From: Emmanuel Fleury <fleury%labri.fr@localhost>
Date: Tue, 14 Jun 2011 09:15:22 +0200

On 06/14/2011 04:08 AM, Jukka Ruohonen wrote:
> 
> I don't think something like this requires a profound design document.
> A lot has been however written about fuzzing in the literature. Basically
> you just feed random garbage as input to applications, system calls, library
> routines, etc. A great deal of security bugs is (still today) found by this
> way.

In my view of ATF, I really wouldn't expect that a fuzzer lie in it...

On the contrary, I would just expect that the framework allow me to
select the fuzzer that I like and only help me to plug it easily on my
test suites and feed them with random data if I want to.

Remember the "Small is beautiful" mojo... ATF wants to be a test
framework and only a test framework (no more).

Thus, everything generating inputs to feed the tests may be considered
as external (fuzzers included), in my humble opinion.

Regards
-- 
Emmanuel Fleury

You can present the material, but you can't make me care.
  -- Calvin & Hobbes (Bill Waterson)

Follow-Ups:
- Re: Fuzzing
  - From: Jukka Ruohonen

References:
- Fuzzing
  - From: Jukka Ruohonen
- Re: Fuzzing
  - From: Julio Merino
- Re: Fuzzing
  - From: Jukka Ruohonen

Prev by Date: Re: Fuzzing
Next by Date: Re: Fuzzing
Previous by Thread: Re: Fuzzing
Next by Thread: Re: Fuzzing
Indexes:

Home | Main Index | Thread Index | Old Index