Merge dynamic code analysis branch - Githubissues

crocs-muni / CryptoStreams

Tool for generation of data from cryptoprimitives (block and stream ciphers, hash functions). Cryptoprimitives are round-reduced and the data can be configured for multiple testing scenarios.

MIT License

13 stars 9 forks source link

Merge dynamic code analysis branch #100

Open Bender250 opened 6 years ago

Bender250 commented 6 years ago

Using code from https://github.com/crocs-muni/CryptoStreams/tree/dynamic_analysis_CI would be huge addition in secure coding. However, there are multiple issues that blocks accepting the changes into master.

[ ] Fix bugs found by sanitizers.
[ ] Anotate code that causes issues, but it cannot be fixed (external code).
[ ] Modify cmake to simplify the Travis configuration + allow developers to use the sanitizers on their own machines.

Future plans: Cooperation with Red Hat on testing environment, where the undefined behavior can lead to incorrect execution. Use fuzzers from Google?