* Btrfs fails desatrerous on fuzzy tests
@ 2016-04-12 14:24 Juergen Sauer
2016-04-25 12:44 ` David Sterba
0 siblings, 1 reply; 2+ messages in thread
From: Juergen Sauer @ 2016-04-12 14:24 UTC (permalink / raw)
To: linux-btrfs
[-- Attachment #1.1: Type: text/plain, Size: 662 bytes --]
Hi!
do you know this paper ?
http://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016.pdf
It was rushing through the Linux press sites in Germany, see also [german]:
http://www.pro-linux.de/news/1/23449/fuzzy-test-f%C3%BCr-dateisysteme-vorgestellt.html
mit freundlichen Grüßen
Jürgen Sauer
--
Jürgen Sauer - automatiX GmbH,
+49-4209-4699, juergen.sauer@automatix.de
Geschäftsführer: Jürgen Sauer,
Gerichtstand: Amtsgericht Walsrode • HRB 120986
Ust-Id: DE191468481 • St.Nr.: 36/211/08000
GPG Public Key zur Signaturprüfung:
http://www.automatix.de/juergen_sauer_publickey.gpg
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 181 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: Btrfs fails desatrerous on fuzzy tests
2016-04-12 14:24 Btrfs fails desatrerous on fuzzy tests Juergen Sauer
@ 2016-04-25 12:44 ` David Sterba
0 siblings, 0 replies; 2+ messages in thread
From: David Sterba @ 2016-04-25 12:44 UTC (permalink / raw)
To: service; +Cc: linux-btrfs
On Tue, Apr 12, 2016 at 04:24:32PM +0200, Juergen Sauer wrote:
> Hi!
> do you know this paper ?
>
> http://events.linuxfoundation.org/sites/events/files/slides/AFL%20filesystem%20fuzzing%2C%20Vault%202016.pdf
Yes. There were several bugreports resulting from the fuzzing, all fixed
in 4.5 and IIRC all of them happen during mount. Thus the awkwardly low
amount of time to trigger the bugs. The fuzzing suite is not yet
released and instrumenting all the code is not all trivial, but the
Oracle guys promised to do a release but at least we have the generated
images in the btrfs-progs testsuite.
I'm curious about this level of fuzzing as it can help to make the error
handling more robust, but we'll be never able to completely defend
against crafted images. For example we can detect a missing extent
mapping when looking for it, but we cannot distinguish that from an
existing but wrong mapping. That would be like doing a full filesystem
integrity check all the time (because we cannot trust any data we read
from disk). There are exceptions where there's enough information cached
or available from other contexts, but overall too hard to fix. And this
applies to all filesystem.s
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2016-04-25 12:44 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-04-12 14:24 Btrfs fails desatrerous on fuzzy tests Juergen Sauer
2016-04-25 12:44 ` David Sterba
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).