mirror of https://github.com/reactos/syzkaller.git synced 2024-11-30 23:00:29 +00:00

syzkaller is an unsupervised coverage-guided kernel fuzzer

Go to file

Dmitry Vyukov a20097eafe syz-manager, syz-fuzzer: allow re-minimizing/re-smashing inputs By default we don't re-minimize/re-smash programs from corpus, it takes lots of time on start and is unnecessary. However, when we improve/fix minimization/smashing, we may want to. Introduce corpus database versions and allow to re-minimize/re-smash on version bumps.		2017-12-18 14:10:56 +01:00
dashboard	dashboard/app: allow fragment links to namespaces	2017-12-12 14:55:43 +01:00
docs	Update found_bugs.md	2017-12-16 08:25:34 +01:00
executor	prog: use dense indexes for copyout instructions	2017-12-17 11:39:14 +01:00
Godeps	vendor: update all packages	2017-08-08 10:54:24 +02:00
pkg	syz-manager, syz-fuzzer: allow re-minimizing/re-smashing inputs	2017-12-18 14:10:56 +01:00
prog	prog: use dense indexes for copyout instructions	2017-12-17 11:39:14 +01:00
sys	prog: don't serialize output data args	2017-12-17 11:39:14 +01:00
syz-ci	syz-ci: combine build.ID from both kernel tag and syzkaller commit	2017-12-06 13:12:38 +01:00
syz-fuzzer	syz-manager, syz-fuzzer: allow re-minimizing/re-smashing inputs	2017-12-18 14:10:56 +01:00
syz-hub	syz-manager: don't save/send to dashboard repros from hub	2017-08-07 16:40:18 +02:00
syz-manager	syz-manager, syz-fuzzer: allow re-minimizing/re-smashing inputs	2017-12-18 14:10:56 +01:00
tools	syz-fuzzer: refactor	2017-12-18 09:50:17 +01:00
vendor	vendor/golang.org/x/net/context/: fix fmt with Go 1.8	2017-08-10 14:35:07 +02:00
vm	vm/qemu: respect cpu config parameter	2017-12-17 11:39:14 +01:00
.clang-format	buildbot: add .travis.yml	2017-07-28 13:25:48 +02:00
.gitignore	sys: check in generated files	2017-06-13 15:55:31 +02:00
.travis.yml	makefile: move diff check to makefile from travis script	2017-11-20 18:22:40 +01:00
AUTHORS	syz-manager: add simple email support	2017-12-14 08:57:27 +01:00
CONTRIBUTORS	syz-manager: add simple email support	2017-12-14 08:57:27 +01:00
LICENSE	initial commit	2015-10-12 10:16:57 +02:00
Makefile	sys: move test syscalls to a separate target	2017-12-17 11:39:14 +01:00
README.md	docs: add found_bugs for akaros	2017-11-01 20:41:02 +03:00

README.md

syzkaller - kernel fuzzer

syzkaller is an unsupervised coverage-guided kernel fuzzer. Linux kernel fuzzing has the most support, akaros, freebsd, fuchsia, netbsd and windows are supported to varying degrees.

The project mailing list is syzkaller@googlegroups.com. You can subscribe to it with a google account or by sending an email to syzkaller+subscribe@googlegroups.com.

List of found bugs.

Documentation

Initially, syzkaller was developed with Linux kernel fuzzing in mind, but now it's being extended to support other OS kernels as well. Most of the documentation at this moment is related to the Linux kernel. For other OS kernels check: Akaros, FreeBSD, Fuchsia, NetBSD, Windows.

External Articles

Kernel QA with syzkaller and qemu (tutorial on how to setup syzkaller with qemu)
Syzkaller crash DEMO (tutorial on how to extend syzkaller with new syscalls)
Coverage-guided kernel fuzzing with syzkaller (by David Drysdale)
ubsan, kasan, syzkaller und co (video) (by Florian Westphal)
Debugging a kernel crash found by syzkaller (by Quentin Casasnovas)
Linux Plumbers 2016 talk slides
syzkaller: the next gen kernel fuzzer (basics of operations, tutorial on how to run syzkaller and how to extend it to fuzz new drivers)

Disclaimer

This is not an official Google product.