Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 22 Nov 2017 08:34:23 -0800
From: Michal Zalewski <lcamtuf@...edump.cx>
To: oss-security <oss-security@...ts.openwall.com>
Subject: Re: Go programming language invalid modular
 exponentiation result (Exp() in math/big pkg)

> Is this fuzzer freely available?  I'd love to try it out on the bignum
> support I added to the CHICKEN Scheme implementation for its upcoming
> new major release (probably somewhere mid-2018).  Being able to release
> it with a bit higher confidence in its correctness would be nice, as this
> is almost all brand new code.

Not the same tool, but Hanno released a bignum fuzzer that found quite
a few issues back in the day:

https://github.com/hannob/bignum-fuzz/

/mz

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.