This is also why the oss-fuzz integration hasn't done anything. Mosh just
has a yaml file in there, with no build definitions or fuzz targets. See:
https://github.com/google/oss-fuzz/blob/master/docs/new_project_guide.md#overview
https://github.com/google/oss-fuzz/blob/master/README.md#accepting-n
Hi Keith,
Thanks for the detailed response.
Just to make sure I understood correctly, there are two main steps for
continuous fuzzing integration for Mosh:
1) Writing the appropriate libFuzzer targets.
2) Integrating with Continuous Fuzzing platform that will fuzz those
targets in parallel to th
Hello Yevgeny,
Thanks for getting in touch. We were included in the oss-fuzz repository,
but I'm not sure anybody ever actually did the work of integrating Mosh or
fuzzing it. (People have separately fuzzed the terminal emulator and found
some overcautious assertions that we ended up removing; see
