Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fuzz parse_elf #22121

Closed
wants to merge 1 commit into from
Closed

fuzz parse_elf #22121

wants to merge 1 commit into from

Conversation

evverx
Copy link
Member

@evverx evverx commented Jan 14, 2022

This is the fuzzer from
#21454 (comment).
I finally got it to compile.

The fuzzer isn't supposed to be merged because it's kind of kludgy
due to that part of the code not being test-friendly in general.
But it should be enough to start fuzzing parse_elf. Happy fuzzing!

To get it to work either elfutils has to be compiled with libFuzzer
and passed via LD_LIBRARY_PATH='path-to-libelf;path-to-libdw' or
a corpus of some kind should be prepared to keep it going.

@evverx
fuzz parse_elf
16413ff 
This is the fuzzer from
systemd#21454 (comment).
I finally got it to compile.

The fuzzer isn't supposed to be merged because it's kind of kludgy
due to that part of the code not being test-friendly in general.
But it should be enough to start fuzzing parse_elf. Happy fuzzing!

To get it to work either elfutils has to be compiled with libFuzzer
and passed via LD_LIBRARY_PATH='path-to-libelf;path-to-libdw' or
a corpus of some kind should be prepared to keep it going.
@evverx evverx mentioned this pull request Jan 14, 2022
Merged
@evverx
Copy link
Member Author

evverx commented Dec 21, 2022

Generally I turn off this part of systemd (along with systemd-coredump) so I'm not particularly interested in fuzzing it any more. I think it can be closed.

elfutils itself has been fuzzed and tested since 2021 and its coverage has been extended far from what systemd uses so as long as it's >= 0.187 it should no longer include stuff like https://sourceware.org/git/?p=elfutils.git;a=commit;h=3038ee821b29147f2b036372937747f150f2f755 and https://sourceware.org/git/?p=elfutils.git;a=commit;h=db862a11910a5d4c007c549c2b4ce4cad62f242b.

@evverx evverx closed this Dec 21, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dont-merge 💣
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@evverx