Skip to content

Latest commit

 

History

History

fuzz

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
testdata
testdata
 
 
utils
utils
 
 
Dockerfile.fuzz
Dockerfile.fuzz
 
 
README.md
README.md
 
 
aggregate_controller_fuzzer.go
aggregate_controller_fuzzer.go
 
 
analyzer_fuzzer.go
analyzer_fuzzer.go
 
 
autoregistration_controller_fuzzer.go
autoregistration_controller_fuzzer.go
 
 
bootstrap_fuzzer.go
bootstrap_fuzzer.go
 
 
compare_fuzzer.go
compare_fuzzer.go
 
 
config_validation_fuzzer.go
config_validation_fuzzer.go
 
 
crd_roundtrip_fuzzer.go
crd_roundtrip_fuzzer.go
 
 
fuzz.go
fuzz.go
 
 
inject_fuzzer.go
inject_fuzzer.go
 
 
kube_crd_fuzzer.go
kube_crd_fuzzer.go
 
 
kube_ingress_fuzzer.go
kube_ingress_fuzzer.go
 
 
mesh_fuzzer.go
mesh_fuzzer.go
 
 
misc_fuzzers.go
misc_fuzzers.go
 
 
oss_fuzz_build.sh
oss_fuzz_build.sh
 
 
pilot_model_fuzzer.go
pilot_model_fuzzer.go
 
 
pilot_networking_fuzzer.go
pilot_networking_fuzzer.go
 
 
pilot_security_fuzzer.go
pilot_security_fuzzer.go
 
 
pkg_util_fuzzer.go
pkg_util_fuzzer.go
 
 
pki_fuzzer.go
pki_fuzzer.go
 
 
regression_test.go
regression_test.go
 
 
security_fuzzer.go
security_fuzzer.go
 
 
v1alpha3_fuzzer.go
v1alpha3_fuzzer.go
 
 
xds_fuzzer.go
xds_fuzzer.go
 
 

README.md

Istio fuzzing

Istio has a series of fuzzers that run continuously through OSS-fuzz.

Native fuzzers

While many jobs are still using the old go-fuzz style fuzzers, using Go 1.18 native fuzzing is preferred. These should be written alongside standard test packages. Currently, these cannot be in <pkg>_test packages; instead move them to a file under <pkg>.

Fuzz jobs will be run in unit test mode automatically (i.e. run once) and as part of OSS-fuzz.

Local testing

To run the fuzzers, follow these steps:

git clone --depth=1 https://github.com/google/oss-fuzz.git
cd oss-fuzz
python infra/helper.py build_image istio
python infra/helper.py build_fuzzers istio ~/go/src/istio.io/istio

Reproduce failure:

python infra/helper.py reproduce istio FuzzX ~/Downloads/clusterfuzz-testcase-minimized-FuzzX-1234

Run:

python infra/helper.py run_fuzzer istio FuzzValidateMeshConfig