[sr-dev] fuzzing kamailio core and essential modules
Daniel-Constantin Mierla
miconda at gmail.com
Tue Nov 7 12:43:54 CET 2017
Hello,
On 07.11.17 08:30, Henning Westerholt wrote:
> Hello,
>
> just a quick note that I am working right now on a small quality assurance
> project for Kamailio.
>
> I started to "fuzz" the Kamailio HEAD core and essential modules with afl [1].
> The fuzzing is running since the weekend, so far over 3 million malformed
> messages has been tested without big findings. I found a few hangs - places
> where Kamailio should respond but somehow don't manage to do so, but no crash
> so far. This shows nicely the stability that we have in the parser.
>
> There are some small changes (appr. less than 100 lines diff) necessary to
> fuzz Kamailio with afl. After I finish this project I will need to clean up the
> changes and it could be commited to the core (probably with some #ifdefs).
>
> [1] http://lcamtuf.coredump.cx/afl/
>
thanks for taking time for this, very useful indeed ...
Cheers,
Daniel
--
Daniel-Constantin Mierla
www.twitter.com/miconda -- www.linkedin.com/in/miconda
Kamailio Advanced Training, Nov 13-15, 2017, in Berlin - www.asipto.com
Kamailio World Conference - www.kamailioworld.com
More information about the sr-dev
mailing list