New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 843595 link

Starred by 2 users

Issue metadata

Status: Available
Owner: ----
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Chrome
Pri: 2
Type: Feature



Sign in to add a comment

ectool: add fuzzing

Project Member Reported by gwendal@chromium.org, May 16 2018

Issue description

Following https://chromium.googlesource.com/chromiumos/docs/+/master/fuzzing.md, add some fuzz in ectool:

LLVMFuzzerTestOneInput would call ec_command after basic init. (util/comm-host.c)
Most of the payload will be "processed" by the kernel, some will percolate to the EC. I hope - but it is not a given - there won't be any side effects in the EC.
 
Labels: -Type-Bug -Pri-3 OS-Chrome Pri-2 Type-Feature
Cc: metzman@chromium.org cmt...@chromium.org llozano@chromium.org infe...@chromium.org
Owner: egranata@chromium.org
Status: Assigned (was: Untriaged)
This bug has an owner, thus, it's been triaged. Changing status to "assigned".
Cc: gwendal@chromium.org allenwebb@google.com egranata@chromium.org
Components: Tools>Stability>FuzzTarget
Owner: ----
Status: Available (was: Assigned)
Marking it available for fuzzathon. Please feel free to reassign if you want to wrk on it.
Writing a target for ectool will be a bit different than writing a target for one of the platform projects, but it should still be possible. The ebuild for it is located at:
src/third_party/chromiumos-overlay/chromeos-base/ec-utils/ec-utils-9999.ebuild

Sign in to add a comment