Hello,
just a quick note that I am working right now on a small quality assurance project for Kamailio.
I started to "fuzz" the Kamailio HEAD core and essential modules with afl [1]. The fuzzing is running since the weekend, so far over 3 million malformed messages has been tested without big findings. I found a few hangs - places where Kamailio should respond but somehow don't manage to do so, but no crash so far. This shows nicely the stability that we have in the parser.
There are some small changes (appr. less than 100 lines diff) necessary to fuzz Kamailio with afl. After I finish this project I will need to clean up the changes and it could be commited to the core (probably with some #ifdefs).
Best regards,
Henning Westerholt
Hello,
On 07.11.17 08:30, Henning Westerholt wrote:
Hello,
just a quick note that I am working right now on a small quality assurance project for Kamailio.
I started to "fuzz" the Kamailio HEAD core and essential modules with afl [1]. The fuzzing is running since the weekend, so far over 3 million malformed messages has been tested without big findings. I found a few hangs - places where Kamailio should respond but somehow don't manage to do so, but no crash so far. This shows nicely the stability that we have in the parser.
There are some small changes (appr. less than 100 lines diff) necessary to fuzz Kamailio with afl. After I finish this project I will need to clean up the changes and it could be commited to the core (probably with some #ifdefs).
thanks for taking time for this, very useful indeed ...
Cheers, Daniel
-
Daniel-Constantin Mierla -
Henning Westerholt