7 Nov
2017
7 Nov
'17
10:30 a.m.
Hello,
just a quick note that I am working right now on a small quality assurance
project for Kamailio.
I started to "fuzz" the Kamailio HEAD core and essential modules with afl [1].
The fuzzing is running since the weekend, so far over 3 million malformed
messages has been tested without big findings. I found a few hangs - places
where Kamailio should respond but somehow don't manage to do so, but no crash
so far. This shows nicely the stability that we have in the parser.
There are some small changes (appr. less than 100 lines diff) necessary to
fuzz Kamailio with afl. After I finish this project I will need to clean up the
changes and it could be commited to the core (probably with some #ifdefs).
Best regards,
Henning Westerholt
[1] http://lcamtuf.coredump.cx/afl/
7 Nov
7 Nov
2:43 p.m.
Hello,
On 07.11.17 08:30, Henning Westerholt wrote:
Hello,
just a quick note that I am working right now on a small quality assurance
project for Kamailio.
I started to "fuzz" the Kamailio HEAD core and essential modules with afl [1].
The fuzzing is running since the weekend, so far over 3 million malformed
messages has been tested without big findings. I found a few hangs - places
where Kamailio should respond but somehow don't manage to do so, but no crash
so far. This shows nicely the stability that we have in the parser.
There are some small changes (appr. less than 100 lines diff) necessary to
fuzz Kamailio with afl. After I finish this project I will need to clean up the
changes and it could be commited to the core (probably with some #ifdefs).
[1] http://lcamtuf.coredump.cx/afl/
thanks for taking time for this, very useful indeed ...
Cheers,
Daniel
--
Daniel-Constantin Mierla
www.twitter.com/miconda -- www.linkedin.com/in/miconda
Kamailio Advanced Training, Nov 13-15, 2017, in Berlin - www.asipto.com
Kamailio World Conference - www.kamailioworld.com
2572
days inactive
2572
days old
1 comments
2 participants
participants (2)
-
Daniel-Constantin Mierla -
Henning Westerholt