From: arnold@skeeve.com
To: tuhs@tuhs.org, ralph@inputplus.co.uk
Subject: [TUHS] Re: A fuzzy awk. (Was: The 'usage: ...' message.)
Date: Mon, 20 May 2024 05:58:51 -0600 [thread overview]
Message-ID: <202405201158.44KBwpi6166059@freefriends.org> (raw)
In-Reply-To: <20240520092013.21BD01FB2F@orac.inputplus.co.uk>
Ralph Corderoy <ralph@inputplus.co.uk> wrote:
> This is the first time I've heard of making life difficult for fuzzers
> so I'm curious...
I was making life easier for me. :-)
> I'm assuming you agree the eventual core dump was a bug somewhere to be
> fixed, and probably was.
Not really. Hugely syntactically invalid programs can end up causing
memory corruption as necessary data structures don't get built correctly
(or at all); since they're invalid, subsequent bits of gawk that expect
valid data structures end up not working. These are "bugs" that can't
happen when using the tool correctly.
> Stopping on the first error lessens the ‘attack surface’ for the
> fuzzer. Do you think there remains a bug which would bite a user which
> the fuzzer might have found more easily before the shrunken surface?
No.
I don't have any examples handy, but you can look back through the
bug-gawk archives for some examples of these reports. The number
of true bugs that fuzzers have caught (if any!) could be counted
on one hand.
Sometimes they like to claim that the "bugs" they find could cause
denial of service attacks. That's also specious, gawk isn't used for
long-running server kinds of programs.
The joys of being a Free Software Maintainer.
Arnold
P.S. I don't claim that gawk is bug-free. But I do think that there
are qualitatively different kinds of bugs, and bug reports.
next prev parent reply other threads:[~2024-05-20 11:59 UTC|newest]
Thread overview: 20+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-05-19 23:08 [TUHS] The 'usage: ...' message. (Was: On Bloat...) Douglas McIlroy
2024-05-20 0:58 ` [TUHS] " Rob Pike
2024-05-20 3:19 ` arnold
2024-05-20 3:43 ` Warner Losh
2024-05-20 4:46 ` arnold
2024-05-20 9:20 ` [TUHS] A fuzzy awk. (Was: The 'usage: ...' message.) Ralph Corderoy
2024-05-20 11:58 ` arnold [this message]
2024-05-20 13:10 ` [TUHS] " Chet Ramey
2024-05-20 13:30 ` [TUHS] Re: A fuzzy awk Ralph Corderoy
2024-05-20 13:48 ` Chet Ramey
2024-05-20 3:54 ` [TUHS] Re: The 'usage: ...' message. (Was: On Bloat...) Bakul Shah via TUHS
2024-05-20 14:23 ` Clem Cole
2024-05-20 17:30 ` Greg A. Woods
2024-05-20 20:10 ` John Levine
2024-05-21 1:14 ` John Cowan
2024-05-20 17:40 ` Stuff Received
2024-05-20 13:06 [TUHS] A fuzzy awk. (Was: The 'usage: ...' message.) Douglas McIlroy
2024-05-20 13:14 ` [TUHS] " arnold
2024-05-20 14:00 ` G. Branden Robinson
2024-05-20 13:25 ` Chet Ramey
2024-05-20 16:06 ` Paul Winalski
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=202405201158.44KBwpi6166059@freefriends.org \
--to=arnold@skeeve.com \
--cc=ralph@inputplus.co.uk \
--cc=tuhs@tuhs.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).