Project

General

Profile

Feature #2859

Oss-fuzz integration

Added by Philippe Antoine 20 days ago.

Status:
New
Priority:
Normal
Target version:
-
Effort:
Difficulty:
Label:

Description

Here is a high level overview of what it would take (some steps overlap each other) :
- Identify the fuzz targets (ie the kind of inputs : packets, rules file, configuration file, etc…), see what has already been done for afl
- Write the fuzz targets, a code sample processing the input with suricata functions
- Compile the fuzz targets, ie compile some parts of Suricata as a static library
- Run, debug and profile
- Create corpuses, ie look into the tests for examples of input data
- Integrate into oss-fuzz (google repo)
- Fix found bugs
- Integrate tests with sanitizer support into CI

Also available in: Atom PDF