lua-users home
lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index] 

In this case bugs are defined as the sanitizers integrated into LLVM,
which essentially revolves around memory corruption bugs. Example bugs
include overflows of various sorts, such as:
- stack-based buffer overflows
- heap-based buffer overflows
- global-buffer overflows

Other memory corruption bugs are also detected such as use-after frees,
double frees and bugs of this nature. The sanitizers can also detect
memory leaks as well and undefined behaviour such as signed integer
overflows.

In case you are unfamiliar with sanitizers, these are the ones I am
speaking of:

Address sanitizer: https://clang.llvm.org/docs/AddressSanitizer.html
Memory sanitizer: https://clang.llvm.org/docs/MemorySanitizer.html
Undefined behaviour sanitizer:
https://clang.llvm.org/docs/UndefinedBehaviorSanitizer.html

Kind regards,

David

On 19/11/2020 13:45, Roberto Ierusalimschy wrote:

I have worked on Lua security recently with the intentions of setting up
continuous fuzzing of Lua by way of OSS-Fuzz. The goal is to use
automated test-case generation by way of fuzzing to catch any
undesirable bugs in Lua.

[...]

Would you be happy to integrate Lua into this project? If so, the only
thing I would need is an email(s) that will receive the bug-reports, or,
alternatively a "go" from the maintainers that bugs should be made
visible to the public when found. I am happy to maintain the fuzzer and
infrastructure from the OSS-Fuzz side of things.

Sounds interesting, bug how bugs are defined, or who decides that some
specific behavior is a bug?

-- Roberto
ADA Logics Ltd is registered in England. No: 11624074.
Registered office: 266 Banbury Road, Post Box 292,
OX2 7DL, Oxford, Oxfordshire , United Kingdom

ADA Logics Ltd is registered in England. No: 11624074.
Registered office: 266 Banbury Road, Post Box 292,
OX2 7DL, Oxford, Oxfordshire , United Kingdom