Skip to content
/ 2015-Fuzzing-and-Mozilla Public
forked from nth10sd/2015-Fuzzing-and-Mozilla

Slides on fuzzing and Mozilla in 2015 (updated for 2016), and where fuzzing sits in a Mozilla workflow.

License

View license
0 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

idkwim/2015-Fuzzing-and-Mozilla

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

94 Commits

pictures

pictures

 
 

scripts

scripts

 
 

themes/mozilla

themes/mozilla

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

index.html

index.html

 
 

license.txt

license.txt

 
 

Repository files navigation

Slides on fuzzing and Mozilla in 2016 (originally for 2015)

... and where fuzzing sits in a Mozilla workflow.

View it online in various languages:
  1. English
  2. Chinese (Simplified)
  3. Chinese (Traditional)
  4. Japanese

Pull requests for corrections and additional translations are most welcome!

Talk description

This presentation describes where fuzzing sits in a Mozilla development workflow in 2016 (originally for 2015).

It will mention how you can leverage it in your workflow to make development more efficient, and will not cover fuzzing itself in detail.

Abstract

The Mozilla Gecko platform has many moving parts. With the move into Firefox OS, there are increasingly more areas which need testing to ensure good quality and safety of the users.

In this presentation, Senior Security Engineer Gary Kwong will describe how fuzzing can be leveraged in the Mozilla development workflow. Gary will talk about fuzzing tools, suggested automation building blocks and ways to start deploying fuzzing quickly.

A case study on the success of the fuzzing team working together with the JavaScript team will be described. Furthermore, he will also cover the potential pitfalls of this approach and conditions under which fuzzing can be most effective.

To obtain slide template:
# Change the following variables as desired.
TREES_LOCATION=~/trees/
NEW_REPO_NAME=2015-fuzzing-and-mozilla
REMOTE_REPO_LOCATION=git@github.com:nth10sd/mozilla-presentation-templates.git
FILES_TO_BE_IGNORED="*.key *.zip README.md html5/pictures/* html5/firefox-os-pick-and-mix* html5/mozilla-mission.html"
TEMP_REPO_NAME=tmpRepo

# Clone to temporary repository.
git clone $REMOTE_REPO_LOCATION $TREES_LOCATION/$TEMP_REPO_NAME
cd $TREES_LOCATION/$TEMP_REPO_NAME

# Prune unneeded files that are not part of the HTML5 template, as well as media files from the template.
# Adapted from http://stackoverflow.com/a/3910697/445241
git filter-branch --prune-empty --index-filter "git rm --cached --ignore-unmatch $FILES_TO_BE_IGNORED" HEAD
git clone $TREES_LOCATION/$TEMP_REPO_NAME $TREES_LOCATION/$NEW_REPO_NAME
cd $TREES_LOCATION/$NEW_REPO_NAME/

# Make .git smaller, from http://stackoverflow.com/a/17864475/445241
rm -rf .git/refs/original/ && git reflog expire --all && git gc --aggressive --prune=now
git reflog expire --all --expire-unreachable=0
git repack -A -d
git prune

# We should have a smaller .git, without unwanted files.
du -h .git

# Remove temporary repository.
rm -rf $TREES_LOCATION/$TEMP_REPO_NAME

# Move from html5 subdirectory to the main directory. You will have to commit this change later.
git mv html5/* .
rmdir html5

ls

About

Slides on fuzzing and Mozilla in 2015 (updated for 2016), and where fuzzing sits in a Mozilla workflow.

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • HTML 66.3%
  • CSS 22.4%
  • JavaScript 11.3%