FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian Development

 
 
LinkBack Thread Tools
 
Old 02-11-2008, 07:46 AM
Pierre Chifflier
 
Default Bug#465204: ITP: fusil -- Fuzzing program to test applications

Package: wnpp
Severity: wishlist
Owner: Pierre Chifflier <pollux@debian.org>

* Package name : fusil
Version : 0.7
Upstream Author : Victor Stinner <victor.stinner@haypocalc.com>
* URL : http://fusil.hachoir.org
* License : GPLv2
Programming Lang: Python
Description : Fuzzing program to test applications

Fusil project is a fuzzing program for any project type (remote
process, fake HTTP server, fuzz network socket, etc.). Fusil
implementation is based on multi-agent system architecture.
Fusil is able to crash ClamAV, Image Magick, libc printf(), Mplayer,
PHP, RPM, xterm, libc gettext, libc environment variables, libpoppler
(pdf), vim, etc

-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.24-1-amd64 (SMP w/1 CPU core)
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash



--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 02-11-2008, 11:08 AM
Guus Sliepen
 
Default Bug#465204: ITP: fusil -- Fuzzing program to test applications

On Mon, Feb 11, 2008 at 09:46:48AM +0100, Pierre Chifflier wrote:

> * Package name : fusil
> * URL : http://fusil.hachoir.org
> Description : Fuzzing program to test applications
>
> Fusil project is a fuzzing program for any project type (remote
> process, fake HTTP server, fuzz network socket, etc.). Fusil
> implementation is based on multi-agent system architecture.
> Fusil is able to crash ClamAV, Image Magick, libc printf(), Mplayer,
> PHP, RPM, xterm, libc gettext, libc environment variables, libpoppler
> (pdf), vim, etc

The description is very unclear to me. After looking at the Fusil
website, I have some understanding of what fusil does. It is not a
stand-alone program like fuzz or zzuf that work directly with any
program. It rather is a framework that allows you to write Python
scripts that specifically target a certain program. You should mention
that in the long description.

The part about the implementation being based on a multi-agent system
architecture is not useful information. "multi-agent" is a bit of a
buzzword that can mean many things. Furthermore, it is not useful for a
user of a program to know whether it is implemented in C, with a
multi-agent system or with bananas.

The list of programs and libraries that Fusil can crash will change over
time, since the whole point of Fusil is to find bugs so one can fix
them. If you want to mention it, change the sentence to the past or
perfect tense, like "Fusil was able to..." or "Fusil has been used
to...".

--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus@debian.org>
 
Old 02-11-2008, 12:18 PM
Pierre Chifflier
 
Default Bug#465204: ITP: fusil -- Fuzzing program to test applications

On Mon, Feb 11, 2008 at 01:08:38PM +0100, Guus Sliepen wrote:
> The description is very unclear to me. After looking at the Fusil
> website, I have some understanding of what fusil does. It is not a
> stand-alone program like fuzz or zzuf that work directly with any
> program. It rather is a framework that allows you to write Python
> scripts that specifically target a certain program. You should mention
> that in the long description.
>
> The part about the implementation being based on a multi-agent system
> architecture is not useful information. "multi-agent" is a bit of a
> buzzword that can mean many things. Furthermore, it is not useful for a
> user of a program to know whether it is implemented in C, with a
> multi-agent system or with bananas.
>
> The list of programs and libraries that Fusil can crash will change over
> time, since the whole point of Fusil is to find bugs so one can fix
> them. If you want to mention it, change the sentence to the past or
> perfect tense, like "Fusil was able to..." or "Fusil has been used
> to...".
>

Right, the previous description was not clear. I have reworded it, from
the README file, and from the author description:

Fusil is a fuzzing framework designed to expose bugs in software by
changing random bits of its input.
It helps to start process with a prepared environment (limit memory,
environment variables, redirect stdout, etc.), start network client or
server, and create mangled files. Fusil has many probes to detect
program crash: watch process exit code, watch process stdout and syslog
for text patterns (eg. "segmentation fault"), watch session duration,
watch cpu usage (process and system load), etc.
.
Fusil is based on a modular architecture. It computes a session score
used to guess fuzzing parameters like number of injected errors to
input files.
.
Available fuzzing projects: ClamAV, Firefox (contains an HTTP server),
gettext, gstreamer, identify, libc_env, libc_printf, libexif,
linux_syscall, mplayer, php, poppler, vim, xterm.

Regards,
Pierre


--
To UNSUBSCRIBE, email to debian-devel-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
 
Old 02-11-2008, 07:52 PM
Guus Sliepen
 
Default Bug#465204: ITP: fusil -- Fuzzing program to test applications

On Mon, Feb 11, 2008 at 02:18:05PM +0100, Pierre Chifflier wrote:

> > The description is very unclear to me.
[...]
> Right, the previous description was not clear. I have reworded it, from
> the README file, and from the author description:
>
> Fusil is a fuzzing framework designed to expose bugs in software by
> changing random bits of its input.
> It helps to start process with a prepared environment (limit memory,
> environment variables, redirect stdout, etc.), start network client or
> server, and create mangled files. Fusil has many probes to detect
> program crash: watch process exit code, watch process stdout and syslog
> for text patterns (eg. "segmentation fault"), watch session duration,
> watch cpu usage (process and system load), etc.
> .
> Fusil is based on a modular architecture. It computes a session score
> used to guess fuzzing parameters like number of injected errors to
> input files.
> .
> Available fuzzing projects: ClamAV, Firefox (contains an HTTP server),
> gettext, gstreamer, identify, libc_env, libc_printf, libexif,
> linux_syscall, mplayer, php, poppler, vim, xterm.

Wow, that is much better! The only remark I have is that you can define
your own fuzzing projects, I would replace "Available" in the last
paragraph by "Pre-defined" or something equivalent.

Upstream should put your description on their front page

--
Met vriendelijke groet / with kind regards,
Guus Sliepen <guus@debian.org>
 

Thread Tools




All times are GMT. The time now is 02:54 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org