[webkit-dev] JavaScript fuzzer for security testing

2007-08-04 Thread Boyd Waters
Everyone saw the post about the JavaScript fuzzing tool released by  
Mozilla developers this week:


http://blog.mozilla.com/security/2007/08/02/javascript-fuzzer-available/
http://www.squarefree.com/2007/08/02/introducing-jsfunfuzz/
http://www.squarefree.com/2007/08/02/fuzzing-for-correctness/

Has anyone pointed this tool at WebKit?

 - boyd

Boyd Waters
National Radio Astronomy Observatory
Socorro, New Mexico

___
webkit-dev mailing list
webkit-dev@lists.webkit.org
http://lists.webkit.org/mailman/listinfo/webkit-dev


Re: [webkit-dev] JavaScript fuzzer for security testing

2007-08-04 Thread Maciej Stachowiak


On Aug 4, 2007, at 6:26 PM, Boyd Waters wrote:

Everyone saw the post about the JavaScript fuzzing tool released by  
Mozilla developers this week:


http://blog.mozilla.com/security/2007/08/02/javascript-fuzzer-available/
http://www.squarefree.com/2007/08/02/introducing-jsfunfuzz/
http://www.squarefree.com/2007/08/02/fuzzing-for-correctness/

Has anyone pointed this tool at WebKit?


Yes. It found some minor bugs in the past, but no crashes or potential  
security issues. We've got some bugs in bugzilla on it and we're  
continuing to run the tool.


Regards,
Maciej

___
webkit-dev mailing list
webkit-dev@lists.webkit.org
http://lists.webkit.org/mailman/listinfo/webkit-dev