On Sat, Apr 28, 2012 at 04:39:04AM +0300, Sami Liedes wrote: > This is an announcement of the first release of the Berserker toolkit > for (semi-)automated fuzz testing and testcase minimization of Linux > kernel filesystem implementations. This looks interesting, and it's very necessary to find these bugs in filesystem drivers to improve the security around virtualization and untrusted disk images. I wrote something similar a while back, trying to use systemtap to do feedback-directed fuzz testing. By putting a tracepoint on every line in the filesystem module, you can find out how many lines of code are actually executed when mounting/using the fuzzed filesystem and use that as a cost function for feedback (maximizing the # of lines executed, rather than blindly fuzzing). Unfortunately it doesn't work yet because of a bug in Linux[1]. Anyway I was going to say: why not use libguestfs to provide a simpler framework for running KVM and the fuzzer? Rich. [1] https://bugzilla.redhat.com/show_bug.cgi?id=713248 -- Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones virt-top is 'top' for virtual machines. Tiny program with many powerful monitoring features, net stats, disk stats, logging, etc. http://et.redhat.com/~rjones/virt-top -- To unsubscribe from this list: send the line "unsubscribe linux-fsdevel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
