Gitiles
Code Review Sign In
gerrit.devboardsforandroid.linaro.org / platform / external / u-boot / a73f3ba91f15e08d6a7ec8cf0408aed517d22bb1
commita73f3ba91f15e08d6a7ec8cf0408aed517d22bb1[log] [tgz]
authorAndrew Scull <ascull@google.com>Mon May 30 10:00:13 2022 +0000
committerTom Rini <trini@konsulko.com>Thu Jun 23 12:58:19 2022 -0400
tree7a942f93d9884d9c1fd7b905c1a2078f8207d18b
parent0518e7a28fdbaf27cda7a43d1a52d457536e1d9b [diff]
fuzz: virtio: Add fuzzer for vring

Add a fuzzer to test the vring handling code against unexpected
mutations from the virtio device.

After building the sandbox with CONFIG_FUZZ=y, the fuzzer can be invoked
with by:

   UBOOT_SB_FUZZ_TEST=fuzz_vring ./u-boot

This fuzzer finds unvalidated inputs in the vring driver that allow a
buggy or malicious device to make the driver chase wild pointers.

Signed-off-by: Andrew Scull <ascull@google.com>
2 files changed
tree: 7a942f93d9884d9c1fd7b905c1a2078f8207d18b
  1. .github/
  2. api/
  3. arch/
  4. board/
  5. boot/
  6. cmd/
  7. common/
  8. configs/
  9. disk/
  10. doc/
  11. drivers/
  12. dts/
  13. env/
  14. examples/
  15. fs/
  16. include/
  17. lib/
  18. Licenses/
  19. net/
  20. post/
  21. scripts/
  22. test/
  23. tools/
  24. .azure-pipelines.yml
  25. .checkpatch.conf
  26. .get_maintainer.conf
  27. .gitattributes
  28. .gitignore
  29. .gitlab-ci.yml
  30. .mailmap
  31. .readthedocs.yml
  32. config.mk
  33. Kbuild
  34. Kconfig
  35. MAINTAINERS
  36. Makefile
  37. README