Skip to content
This repository has been archived by the owner on Feb 12, 2022. It is now read-only.

Integrating with OSS-Fuzz #136

Open
Google-Autofuzz opened this issue Feb 27, 2020 · 0 comments
Open

Integrating with OSS-Fuzz #136

Google-Autofuzz opened this issue Feb 27, 2020 · 0 comments

Comments

@Google-Autofuzz
Copy link

Greetings libsignal-protocol-c developers and contributors,

We’re reaching out because your project is an important part of the open source ecosystem, and we’d like to invite you to integrate with our fuzzing service, OSS-Fuzz. OSS-Fuzz is a free fuzzing infrastructure you can use to identify security vulnerabilities and stability bugs in your project. OSS-Fuzz will:

  • Continuously run at scale all the fuzzers you write.
  • Alert you when it finds issues.
  • Automatically close issues after they’ve been fixed by a commit.

Many widely used open source projects like OpenSSL, FFmpeg, LibreOffice, and ImageMagick are fuzzing via OSS-Fuzz, which helps them find and remediate critical issues.

Even though typical integrations can be done in < 100 LoC, we have a reward program in place which aims to recognize folks who are not just contributing to open source, but are also working hard to make it more secure.

We want to stress that anyone who meets the eligibility criteria and integrates a project with OSS-Fuzz is eligible for a reward.

To help you getting started, we can attach our internal fuzzer for your project that you are welcome to use directly, or to use it as a starting point.

If you're not interested in integrating with OSS-Fuzz, it would be helpful for us to understand why—lack of interest, lack of time, or something else—so we can better support projects like yours in the future.

If we’ve missed your question in our FAQ, feel free to reply or reach out to us at [email protected].

Thanks!

Tommy
OSS-Fuzz Team
ddworken added a commit to ddworken/libsignal-protocol-c that referenced this issue May 18, 2020
@ddworken
Add libfuzzer integration for libsignal-protocol-c
fb11253 
Now building and running the tests will create a new `fuzzer` target that
fuzzes deserialization and decryption with libfuzzer. As part of ctest
this will automatically run for 2048 iterations (takes 3 seconds on my
computer) in order to ensure that the fuzzer stays up to date. The fuzzer
can be run manually in order to fuzz for more iterations.

I've run this fuzzer for ~10 million iterations on my own computer and have
not found anything yet. But, my ultimate goal with this PR is to integrate
this repository with OSSFuzz per signalapp#136.

Note that tests/fuzzing_corpus/ includes an initial corpus for fuzzing so
that the fuzzer has somewhere to start. This was seeded with a couple of
valid serialized ciphertexts but the majority of it was synthesized by the
fuzzer over time.
@ddworken ddworken mentioned this issue May 18, 2020
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Google-Autofuzz