Closed
Bug 348483
Opened 18 years ago
Closed 3 years ago
[meta] Fuzzer that makes random XBL bindings
Categories
(Core :: Fuzzing, defect)
Core
Fuzzing
Tracking
()
RESOLVED
FIXED
People
(Reporter: jruderman, Unassigned)
References
(Depends on 1 open bug)
Details
(Keywords: meta, sec-other, Whiteboard: [sg:nse meta])
Attachments
(2 obsolete files)
This fuzzer makes random XBL bindings by copying DOM subtrees into <xbl:content> part of new bindings. Sometimes it adds an <xbl:children/> somewhere in its copy of the subtree.
It assumes you have a copy of http://www.software.hixie.ch/utilities/cgi/test-tools/delayed-file.pl at http://localhost/cgi-bin/delayed-file.pl. (I couldn't figure out how to get XBL working in a data: or javascript: URL due to the need for #bindingid at the end of the URL. Another alternative was creating a file for each binding and encouraging the use of a RAM disk.)
So far it has only found one bug, bug 348049. That bug is a security hole.
|
Reporter | |
Comment 1•18 years ago
|
||
|
||
Updated•18 years ago
|
Whiteboard: [sg:nse meta]
|
|
Reporter | |
Comment 2•18 years ago
|
||
Attachment #233423 -
Attachment is obsolete: true
|
|
||
Comment 3•18 years ago
|
||
Shouldn't have security bugs assigned to nobody. Jesse can own his test bugs
Assignee: nobody → jruderman
|
|
Reporter | |
Comment 4•18 years ago
|
||
> It assumes you have a copy of
> http://www.software.hixie.ch/utilities/cgi/test-tools/delayed-file.pl at
> http://localhost/cgi-bin/delayed-file.pl. (I couldn't figure out how to get
> XBL working in a data: or javascript: URL due to the need for #bindingid at the
> end of the URL. Another alternative was creating a file for each binding and
> encouraging the use of a RAM disk.)
See bug 243917, "Not possible to use data url scheme to embed xbl file into html", which is marked as invalid :(
|
|
Reporter | |
Comment 5•18 years ago
|
||
Comment on attachment 242979 [details]
fuzzer-bindings.js 3.0
New version in bug 339948.
Attachment #242979 -
Attachment is obsolete: true
|
|
Reporter | |
Comment 6•9 years ago
|
||
Remote XBL, along with remote XUL, was disabled in bug 546857. As a result, this module of DOMFuzz no longer exists.
Group: core-security
|
||
Updated•8 years ago
|
Component: Tracking → Platform Fuzzing Team
|
||
Comment 7•3 years ago
|
||
The bug assignee didn't login in Bugzilla in the last 7 months.
:decoder, could you have a look please?
For more information, please visit auto_nag documentation.
Assignee: jruderman → nobody
Flags: needinfo?(choller)
|
|
||
Updated•3 years ago
|
Summary: Fuzzer that makes random XBL bindings → [meta] Fuzzer that makes random XBL bindings
|
||
Updated•3 years ago
|
Status: NEW → RESOLVED
Closed: 3 years ago
Flags: needinfo?(choller)
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•