Fuzzing for Security (The Chromium Blog)

Fuzzing for Security (The Chromium Blog)

[Posted also as a comment to the Chromium blog entry]

Interesting timing. I just released couple of minutes ago a toolkit for (semi-)automated fuzzing of Linux kernel filesystem implementations.

Obviously it's much smaller scale, but being able to run an entirely automated system that checks out git HEADs of kernel trees and to automatically bisect crashes before firing away report emails has been a goal in my mind.

Currently it must still be invoked manually; the scripts in the toolkit take care of running repeated fuzz tests in a KVM virtual machine and minimizing bit-differences of crashing test cases to pristine filesystem images.

The announcement is here: http://www.spinics.net/lists/linux-ext4/msg31856.html