packageurl-go icon indicating copy to clipboard operation
packageurl-go copied to clipboard

Published 20 hours ago verified publisher icon package-url

Add simple fuzz test

Open imjasonh opened this issue 3 years ago • 1 comments

Signed-off-by: Jason Hall [email protected]

This adds a simple Go fuzz test that checks for inputs that cause FromString to panic. Returned errors are not considered interesting fuzzing inputs, only inputs that panic.

The result is output in testdata/fuzz/FuzzFromString that cause FromString to panic, among them, the string "0", and "?A".

We should fix these panics so that these inputs don't panic, then add them to the repo so that future fuzz attempts know to start with those inputs when generating new potentially interesting inputs.

imjasonh avatar Jul 05 '22 19:07 imjasonh

Friendly ping.

imjasonh avatar Jul 19 '22 16:07 imjasonh

Rebased and resolved conflicts.

imjasonh avatar Jun 22 '23 02:06 imjasonh

thx @imjasonh

shibumi avatar Jun 22 '23 16:06 shibumi