Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / oss-fuzz / 8216f278e4f9c602299266177a92d22650a7035e / . / README.md
blob: 6d41d04f4ffeee0d77e383c1a6a42ec4ddb7cf43 [file] [log] [blame] [view]
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]1# OSS-Fuzz: Continuous Fuzzing for Open Source Software
Mike Aizatsky8f24df72016-10-25 14:31:45 -0700[diff] [blame]2
3[Fuzz testing](https://en.wikipedia.org/wiki/Fuzz_testing) is a well-known
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]4technique for uncovering programming errors in software.
5Many of these detectable errors, like [buffer overflow](https://en.wikipedia.org/wiki/Buffer_overflow), can have serious security implications. Google found [hundreds](https://bugs.chromium.org/p/chromium/issues/list?can=1&q=label%3AStability-LibFuzzer+-status%3ADuplicate%2CWontFix) of security vulnerabilities and stability bugs by deploying
Kostya Serebryanyb48c72b2016-11-18 16:47:25 -0800[diff] [blame]6[guided in-process fuzzing of Chrome components](https://security.googleblog.com/2016/08/guided-in-process-fuzzing-of-chrome.html)
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]7and, and we now want to share that service with the open source community.
Mike Aizatsky8f24df72016-10-25 14:31:45 -0700[diff] [blame]8
inferno-chromiuma660ca32016-11-23 08:35:07 -0800[diff] [blame]9In cooperation with the [Core Infrastructure Initiative](https://www.coreinfrastructure.org/),
10OSS-Fuzz aims to make common open source software more secure and stable by
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]11combining modern fuzzing techniques with scalable,
Kostya Serebryanyb48c72b2016-11-18 16:47:25 -0800[diff] [blame]12distributed execution.
13
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]14We support the [libFuzzer](http://llvm.org/docs/LibFuzzer.html) and [AFL](http://lcamtuf.coredump.cx/afl/) fuzzing engines
15in combination with [Sanitizers](https://github.com/google/sanitizers), as well as
16[ClusterFuzz](https://github.com/google/clusterfuzz),
17a distributed fuzzer execution environment and reporting tool.
Mike Aizatsky8f24df72016-10-25 14:31:45 -0700[diff] [blame]18
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]19Currently, OSS-Fuzz supports C and C++ code, though other languages supported by [LLVM](http://llvm.org) may work too.
Kostya Serebryany229ffae2016-12-02 20:41:47 -0800[diff] [blame]20
kplybon8216f272019-08-08 10:12:25 -0400[diff] [blame^]21## Overview
22![OSS-Fuzz process diagram](docs/images/process.png)
23
24##Documentation
25Read our [detailed documentation](https://google.github.io/oss-fuzz) to learn how to use OSS-Fuzz.
Max Morozaa9c2572018-12-11 13:56:48 -0800[diff] [blame]26
Oliver Chang9e0c1432016-10-25 20:44:34 -0700[diff] [blame]27## Trophies
Abhishek Aryacf4af862019-08-07 07:37:16 -0700[diff] [blame]28As of August 2019, OSS-Fuzz has found [~14,000] bugs in over [200] open source
29projects.
Mike Aizatsky26819642016-10-06 14:02:52 -0700[diff] [blame]30
Abhishek Aryacf4af862019-08-07 07:37:16 -0700[diff] [blame]31[~14,000]: https://bugs.chromium.org/p/oss-fuzz/issues/list?can=1&q=-status%3AWontFix%2CDuplicate+-Infra
32[200]: https://github.com/google/oss-fuzz/tree/master/projects
Mike Aizatsky26819642016-10-06 14:02:52 -0700[diff] [blame]33
Abhishek Aryacf4af862019-08-07 07:37:16 -0700[diff] [blame]34## Blog posts
35
36* 2016-12-01 ([1](https://opensource.googleblog.com/2016/12/announcing-oss-fuzz-continuous-fuzzing.html),
37[2](https://testing.googleblog.com/2016/12/announcing-oss-fuzz-continuous-fuzzing.html),
38[3](https://security.googleblog.com/2016/12/announcing-oss-fuzz-continuous-fuzzing.html))
39* 2017-05-08 ([1](https://opensource.googleblog.com/2017/05/oss-fuzz-five-months-later-and.html),
40[2](https://testing.googleblog.com/2017/05/oss-fuzz-five-months-later-and.html),
41[3](https://security.googleblog.com/2017/05/oss-fuzz-five-months-later-and.html))
42* 2018-11-06 ([1](https://security.googleblog.com/2018/11/a-new-chapter-for-oss-fuzz.html))
43
44