Closed Bug 343943 Opened 18 years ago Closed 3 years ago

[meta] HTML Element and Attribute fuzzer

Categories

(Core :: Fuzzing, defect)

Product:
Core
Component:
Fuzzing
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED INACTIVE

People

(Reporter: jruderman, Unassigned)

References

(Depends on 34 open bugs)

Details

(Keywords: meta, sec-other, Whiteboard: [sg:nse meta])

Attachments

(3 obsolete files)

This fuzzer creates random HTML elements and attributes, based on a list I made while looking at the HTML 4 and HTML 3.2 DTDs. It also removes attributes, creates text nodes, and does StirDOM-like things. So far, I have discovered six bugs with it: bug 343540, bug 343588, bug 343596, bug 343599, bug 343850, and bug 343940. It requires fuzz.js, which you can get from bug 339948.
While this fuzzer knows which attributes are typical for each element and which values are typical for each attribute, it violates each of these (picking a random attribute or a value that makes sense only for a different attribute) one fifth of the time.
Attached file HTML Element and Attribute fuzzer 2.0.3 (obsolete) (deleted) —
Attached file HTML Element and Attribute fuzzer 2.0.4 (obsolete) (deleted) —
* Added <marquee> and <blink>. * Made various tweaks that will hopefully result in finding bugs more quickly and having easier reductions.
Attachment #228509 - Attachment is obsolete: true
Bug 344486 has a similar fuzzer for XUL.
I could use this as a 'plugin' for bug 321107 (as many other fuzzers, probably).
Whiteboard: [sg:nse meta]
Attached file HTML Element and Attribute fuzzer 3.0 (obsolete) (deleted) —
Attachment #229055 - Attachment is obsolete: true
Shouldn't have security bugs assigned to nobody. Jesse can own his test bugs
Assignee: nobody → jruderman
Depends on: 364688
Depends on: 366012
Depends on: 366556
Depends on: 370872
Depends on: 370940
Comment on attachment 242974 [details] HTML Element and Attribute fuzzer 3.0 New version in bug 339948.
Attachment #242974 - Attachment is obsolete: true
Depends on: 371466
Depends on: 372553
Depends on: 375562
Depends on: 377535
Depends on: 378993
Depends on: 379090
Depends on: 379418
Depends on: 379917
Depends on: 385246
Depends on: 386566
Depends on: 386690
Depends on: 386799
Depends on: 388175
Depends on: 388700
Depends on: 388712
Depends on: 390975
Depends on: 395628
Depends on: 396367
Depends on: 397007
Depends on: 397206
Depends on: 397209
Depends on: 397518
Depends on: 398043
Depends on: 398157
Depends on: 398462
Depends on: 400322
Depends on: 401160
Depends on: 403148
Depends on: 403175
Depends on: 403454
Depends on: 403569
Depends on: 403574
Depends on: 403579
Depends on: 404133
Depends on: 404146
Depends on: 404491
Depends on: 408304
Depends on: 408749
Depends on: 408899
Depends on: 411882
Depends on: 413587
Depends on: 414170
Depends on: 414689
Depends on: 415394
Depends on: 416845
Depends on: 417384
Depends on: 421174
Depends on: 423269
Depends on: 430744
Depends on: 438266
Depends on: 441680
Depends on: 443546
Depends on: 444431
Depends on: 450319
Depends on: 451323
Depends on: 453747
Depends on: 455643
Depends on: 457537
Depends on: 461906
Depends on: 461909
Depends on: 462878
Depends on: 463350
Depends on: 464197
Depends on: 465832
Depends on: 466607
Depends on: 466945
Depends on: 467141
Depends on: 467210
Depends on: 467647
Depends on: 467686
Depends on: 467881
Depends on: 468160
Depends on: 468715
Depends on: 468763
Depends on: 471147
Depends on: 472590
Depends on: 472919
Depends on: 474744
Depends on: 475193
Depends on: 475285
Depends on: 477935
Depends on: 478135
Depends on: 478170
Depends on: 479931
Depends on: 481136
Depends on: 483324
Depends on: 486549
Depends on: 486585
Depends on: 487659
Depends on: 488390
Depends on: 489925
Depends on: 490760
Depends on: 492014
Depends on: 492112
Depends on: 493613
Depends on: 493915
Depends on: 495543
Depends on: 495892
Depends on: 499604
Depends on: 499741
Depends on: 500788
Depends on: 501535
Depends on: 503989
Depends on: 505324
Depends on: 509536
Depends on: 509547
Depends on: 512743
Depends on: 512890
Depends on: 515255
Depends on: 515257
Depends on: 515829
Depends on: 516819
Depends on: 518739
Depends on: 519031
Depends on: 522388
Depends on: 522515
Depends on: 531542
Depends on: 535926
Depends on: 536654
Depends on: 537645
Depends on: 538207
Depends on: 542437
Depends on: 544453
Depends on: 549160
Depends on: 551631
Depends on: 559231
Depends on: 563514
Depends on: 564099
Depends on: 565611
Depends on: 567292
Depends on: 569012
Depends on: 569022
Depends on: 570082
Depends on: 570566
Depends on: 570884
Depends on: 571159
Depends on: 571428
Depends on: 571653
Depends on: 571798
Depends on: 571823
Depends on: 571959
Depends on: 572571
Depends on: 573426
Depends on: 574898
Depends on: 576612
Depends on: 580129
Depends on: 580140
Depends on: 580351
Depends on: 580494
Depends on: 580507
Depends on: 581218
Depends on: 588278
Depends on: 590387
Depends on: 593305
Depends on: 594634
Depends on: 595606
Depends on: 596785
Depends on: 597924
Depends on: 597935
Depends on: 600020
Depends on: 601405
Depends on: 602117
Depends on: 608295
Depends on: 610956
Depends on: 611922
Depends on: 612213
Depends on: 612994
Depends on: 614144
Depends on: 614149
Depends on: 614633
Depends on: 615012
Depends on: 615146
Depends on: 615781
Depends on: 616027
Depends on: 620078
Depends on: 622314
Depends on: 623125
Depends on: 624217
Depends on: 634291
Depends on: 635346
Depends on: 639733
Depends on: 650501
Depends on: 655858
Depends on: 662185
Depends on: 662215
Depends on: 673757
Depends on: 674223
Depends on: 674224
Depends on: 675525
Depends on: 678929
Depends on: 678936
Depends on: 682460
Depends on: 683714
Depends on: 690639
Depends on: 693237
Depends on: 693238
Depends on: 699365
Depends on: 700017
Depends on: 700031
Depends on: 706249
Depends on: 709954
Depends on: 711864
Depends on: 717818
Depends on: 722003
Depends on: 728933
Depends on: 736825
Depends on: 745530
Depends on: 745818
Depends on: 751129
Depends on: 752150
Depends on: 752764
Depends on: 753162
Depends on: 762726
Depends on: 763828
Depends on: 766025
Depends on: 766434
Depends on: 767251
Depends on: 768087
Depends on: 771842
Depends on: 773533
Depends on: 776375
Depends on: 779694
Depends on: 780969
Depends on: 786854
Depends on: 788252
Depends on: 790830
Depends on: 797009
Depends on: 797677
Depends on: 801511
Depends on: 811226
Depends on: 812654
Depends on: 813905
Depends on: 815043
Depends on: 815276
Depends on: 822647
Depends on: 822734
Depends on: 822776
Depends on: 829428
Depends on: 836890
Depends on: 836925
Depends on: 836946
Depends on: 840216
Depends on: 840688
Depends on: 841205
Depends on: 841914
Depends on: 841916
Depends on: 844496
Depends on: 844529
Depends on: 845055
Depends on: 847127
Depends on: 849597
Depends on: 856262
Depends on: 856265
Depends on: 860494
Depends on: 861117
Depends on: 866665
Depends on: 867263
Depends on: 873300
Depends on: 884251
Depends on: 885024
Depends on: 886208
Depends on: 893331
Depends on: 893332
Depends on: 944909
Depends on: 948181
Depends on: 949926
Depends on: 949927
Depends on: 951893
Depends on: 973384
Depends on: 973559
Depends on: 987222
Depends on: 994740
Depends on: 1001258
Depends on: 1001889
Depends on: 1005580
Depends on: 1013623
Depends on: 1017896
Depends on: 1018529
Depends on: 1022869
Depends on: 1032654
Depends on: 1034314
Depends on: 1034369
Depends on: 1035248
Depends on: 1037271
Depends on: 1042396
Depends on: 1071930
Depends on: 1144398
Depends on: 1153782
Depends on: 1158412
No longer blocks: fuzz
Depends on: 1186768
Depends on: 1187207
Depends on: 1222280
Depends on: 1227498
Depends on: 1228801
Depends on: 1228882
Depends on: 1229424
Depends on: 1230115
Depends on: 1230639
Depends on: 1230686
Depends on: 1230704
Depends on: 1233148
Depends on: 1243560
Depends on: 1244894
Depends on: 1248230
Depends on: 1257730
Depends on: 1258071
Depends on: 1267099
Depends on: 1274144
Depends on: 1281419
Depends on: 1281965
Depends on: 1281972
Component: Tracking → Platform Fuzzing Team
Depends on: 1282985
Summary: HTML Element and Attribute fuzzer → [meta] HTML Element and Attribute fuzzer

The bug assignee didn't login in Bugzilla in the last 7 months.
:decoder, could you have a look please?
For more information, please visit auto_nag documentation.

Assignee: jruderman → nobody
Flags: needinfo?(choller)
Status: NEW → RESOLVED
Closed: 3 years ago
Flags: needinfo?(choller)
Resolution: --- → INACTIVE
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: