[systemd-devel] Malicious tests?

Lennart Poettering lennart at poettering.net
Mon Jan 27 06:07:17 PST 2014


On Sun, 26.01.14 19:44, Tom Horsley (horsley1953 at gmail.com) wrote:

> Does systemd have any tests for malicious behavior?
> 
> People sending bazillions of dbus requests? People
> sending random nonsense dbus requests? I'm just asking
> because you gotta know someone is gonna do it if you
> don't do it first :-).
> 
> I also find that merely sending two systemctl
> disable commands in quick succession totally borks
> my fedora 20 system, so there's your first
> malicious test that doesn't even need a new program
> or script written...
> 
> See:
> 
> https://bugzilla.redhat.com/show_bug.cgi?id=1043212#c45

"systemctl disable" implies a "systemctl daemon-reload" and there
appears to be a bug in that currently.

Nope, we don't hjave a "fuzzing" test suit so far. But of course, we'd
be happy to add support something for this, maybe based on the ChomeOS
dbus fuzzer?

Lennart

-- 
Lennart Poettering, Red Hat


More information about the systemd-devel mailing list