[Dailydave] Month of Kernel Bugs and fsfuzzer release (0.6)
Jared DeMott
demottja at msu.edu
Tue Oct 24 19:45:25 Local tim 2006
> One of the issues is that some filesystems perform CRC calculation and
> other tricks (hint: mtd code). Thus, the time before you're actually
> able to find a bug, increases (as most probably the generated output
> won't pass the CRC validation).
>
Ah, yes, this is a general fuzzing issue I've been thinking about. I've
done a bit of research trying to figure out with what heuristics to
fuzz. And than it hit me: even more important than finding a "good"
long string, for example, is how to get it properly delivered. The
"test harness" + "knowledge of where the test ends up" is almost more
important than the "test" if you will.
>
More information about the Dailydave
mailing list