Fuzzing Chrome Service

[lu...@google.com]

Hi all,

I currently have a chrome service that is parsing some potentially malicious HTTP requests in an separate process and I would like to now fuzz that functionality. Is there some particular fuzzing framework that we generally use in chromium?

I found https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/efficient_fuzzer.md, is this still current or is there a new workflow that I should be following instead?

Thanks!
Luum

[Joe Mason]

Yes, I believe libfuzzer is still the thing to use. https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/getting_started.md is the main doc about it, the one you linked is a followup.

--

Username too long and annoying? I'm also j...@google.com.

[Jonathan Metzman]

+1 

https://chromium.googlesource.com/chromium/src/+/master/testing/libfuzzer/getting_started.md is our doc on fuzzing using libfuzzer (generally the preferred method) in Chrome.

There are some links to our other fuzzing docs here.

You can send an email to chrome-...@google.com if you have questions.

--
You received this message because you are subscribed to the Google Groups "Security-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to security-dev+unsubscribe@chromium.org.