Hi Dmitry,
Thank you for the follow-up. I apologize for the confusion in my previous email.
I’m sorry — I mistakenly wrote 'syz-build' when I actually meant 'syz-env'.
I got them mixed up. It seems my analogy to the Linux kernel's
'make deb-pkg' caused a key misunderstanding regarding my goals.
Let me clarify the initiatives.
1. Clarification on Debian Packaging for syzkaller
It appears there was a misunderstanding about the target of the packaging.
I realize now why my previous explanation was unclear. I was not referring to
packaging the kernel under test into a .deb. You are correct that syzkaller
cannot use kernel .deb files for fuzzing.
My proposal was about packaging the syzkaller tools themselves, the Go binaries
in bin/, such as syz-manager, syz-fuzzer, etc.
The analogy to make deb-pkg was meant to suggest a mechanism within the
syzkaller repository similar to how the Linux kernel handles its own packaging:
| $ cd syzkaller
|
| # builds binaries in bin/
| $ make
|
| # New step: uses scripts in debian/ to package the binaries from bin/
| make deb-pkg # like Linux kernel's 'make deb-pkg'
|
| $ ls *.deb
| syzkaller(build-version-name-with-commit).deb
My initial question was whether contributing these debian/ packaging scripts
upstream would be acceptable. However, I agree with your assessment that
"Package descriptions... probably belong to a distro." This effort is honestly
a much lower priority compared to the discussions around syzbot integration.
I can proceed with managing these scripts downstream in Debian salsa syzkaller
repository. Further work is needed following the code reviews by Debian
community members. The work I performed last year can be found at the following:
Link:
https://salsa.debian.org/ysk/syzkaller/-/tree/debian/debian
>> Since Debian doesn’t have a debug kernel yet, I’m planning to reference syzbot’s
>> config and Fedora’s debug config a lot. I’ll discuss this more later, but it
>> definitely needs thorough discussion. The most important thing is to enable
>> "KCOV", which is missing even in Fedora and Red Hat debug kernels.
>>
>>> Btw we've considered fuzzing the Debian kernel on syzbot. There was
>>> some discussion on debian mailing lists IIRC, but can't find it now.
>>> We did not get a clear signal with respect to interest from the Debian
>>> community, so this did not setup it on syzbot. But we can reconsider.
>>
>> I’ve read the past thread [2] in detail, and it was very helpful.
>>
>> During DebConf25, I suggested to Ben from the Debian kernel team the idea of a
>> dedicated debug kernel package While technically straightforward, it will need
>> consensus within the Debian kernel team. The concept, inspired by syzbot, may be
>> challenging to realize in such fine-grained form, but given Debian’s precedent
>> with RT kernel packages[3], I believe it’s worth pursuing.
>
> There is no need to re-implement syzbot. The idea was to setup Debian
> testing on the syzbot.
2. Debian Debug Kernel and syzbot Integration
Yes, exactly. I made this confusing. I completely agree, and my focus remains
on providing the necessary foundation (a debug kernel) to enable effective
testing of Debian on the existing syzbot infrastructure.
On that note, I'm happy to share a brief update: the Debian Kernel Team
understands the necessity of this effort, and we are actively discussing the
best approach to create and maintain this debug kernel package. It's fortunate
that there's interest and collaboration on this front.
I have been greatly benefiting from syzkaller, and I plan to keep proposing
this to the Debian community. I also intend to bring it up at the next meeting.
>> [2] Debian kernel testing on syzbot
>> [3] Debian RT Kernel Config and trixie RT kernel
Thank you!
Yunseong