Fuzzing rpcbind

My idea was to fuzz rpcbind, which should be easy enough. I used apt-get source rpcbind and apt-get source libtirpc. The first problem was getting libtirpc to compile, which needed the following magic command: autoreconf --install. Both packages can be compiled with clang. But the main issue was that rpcbind/…

FFW Honggmode Update: Hang recovery

FFW utilizes Honggfuzz to observe the target. Honggfuzz will identify crashes and also code coverage in the target. The communication between FFW and Honggfuzz is performed via a local unix socket: Overall the following communication protocol is implemented: Honggfuzz will start the target server. When it is ready it will…

Initial Blog Entry

Blog #7 now live.…