Discussion on cybersecurity solution to benefit coturn

81 views

Skip to first unread message

Murali Aniruddhan

unread,

Feb 27, 2024, 4:41:42 PM2/27/24

to TURN Server (Open-Source project)

Hello all,

First of all I would like to mention that I love using coturn and I have also contributed a few memory leak patches to coturn before.

https://github.com/coturn/coturn/pull/1412

https://github.com/coturn/coturn/pull/1411

https://github.com/coturn/coturn/pull/1410

I wanted to discuss with members of the repository if they are interested in a solution that can quickly identify real vulnerabilities in coturn by focused fuzzing on certain program slices. I have added the following link to the research that enables this which was published in ICSE 2024:

https://cs.uwaterloo.ca/~m285xu/assets/publication/fuzz_slice-paper.pdf

If there are code locations in coturn which are not covered by current tests or if new commits require to be tested, our solution FuzzSlice can fuzz these selective code pieces to provide quick information on bugs in them. If anyone from the repository is interested and willing for a quick discussion, I would be happy to meet online as well.

Regards,

Aniruddhan

Reply all

Reply to author

Forward

0 new messages