u-boot

Embedded_Projects/u-boot

Fork 0

Commit Graph

Author	SHA1	Message	Date
Andrew Scull	a73f3ba91f	fuzz: virtio: Add fuzzer for vring Add a fuzzer to test the vring handling code against unexpected mutations from the virtio device. After building the sandbox with CONFIG_FUZZ=y, the fuzzer can be invoked with by: UBOOT_SB_FUZZ_TEST=fuzz_vring ./u-boot This fuzzer finds unvalidated inputs in the vring driver that allow a buggy or malicious device to make the driver chase wild pointers. Signed-off-by: Andrew Scull <ascull@google.com>	2022-06-23 12:58:19 -04:00
Andrew Scull	36f641c54e	test: fuzz: Add framework for fuzzing Add the basic infrastructure for declaring fuzz tests and a command to invoke them. Signed-off-by: Andrew Scull <ascull@google.com> Reviewed-by: Simon Glass <sjg@chromium.org>	2022-06-23 12:58:18 -04:00

Author

SHA1

Message

Date

Andrew Scull

a73f3ba91f

fuzz: virtio: Add fuzzer for vring

Add a fuzzer to test the vring handling code against unexpected
mutations from the virtio device.

After building the sandbox with CONFIG_FUZZ=y, the fuzzer can be invoked
with by:

   UBOOT_SB_FUZZ_TEST=fuzz_vring ./u-boot

This fuzzer finds unvalidated inputs in the vring driver that allow a
buggy or malicious device to make the driver chase wild pointers.

Signed-off-by: Andrew Scull <ascull@google.com>

2022-06-23 12:58:19 -04:00

Andrew Scull

36f641c54e

test: fuzz: Add framework for fuzzing

Add the basic infrastructure for declaring fuzz tests and a command to
invoke them.

Signed-off-by: Andrew Scull <ascull@google.com>
Reviewed-by: Simon Glass <sjg@chromium.org>

2022-06-23 12:58:18 -04:00

2 Commits