[Libreoffice] RFC: Idea for fuzz-testing filters
Malte Timmermann
malte_timmermann at gmx.com
Mon Oct 10 09:49:06 PDT 2011
Hi Marc,
On 05.10.2011 14:55, Marc-André Laverdière wrote:
> Why bother about this? Why not use what's available out there? Well...
> - Fuzzgrind isn't well documented and won't work out of the box,
> - zzuf has too many bells and whistles, and won't guarantee that every
> byte has been messed up with. I used it to generate a lot of cases, and
> it fills a disk quickly enough
> - Peachfuzz and others that rely on a specification: well, we have file
> formats with hundreds of pages specified.
I suggest using the "CERT Basic Fuzzing Framework":
> http://www.cert.org/blogs/certcc/2010/05/cert_basic_fuzzing_framework.html
It looks very promising, and is quite easy to use (once you created a
good start script for using it with OOo).
Actually, CERT did test it also with OOo.
Malte.
More information about the LibreOffice
mailing list