Local fuzzing fails - Githubissues

google / OpenSK

OpenSK is an open-source implementation for security keys written in Rust that supports both FIDO U2F and FIDO2 standards.

Apache License 2.0

3k stars 291 forks source link

Closed kaczmarczyck closed 1 year ago

kaczmarczyck commented 2 years ago

The latest version of cargo fuzz does not work with our toolchain. As a workaround, install an older version

cargo +stable install cargo-fuzz --version ^0.10

or fuzz with a slightly newer toolchain:

cargo +nightly-2021-12-25 fuzz run fuzz_target_process_ctap2_make_credential

This will be fixed after a bigger refactoring to make the CTAP code independent from specific hardware and Tock.

kaczmarczyck commented 1 year ago

Fixed, the CTAP library can be fuzzed with versions > 0.10 now.

Example call:

cd libraries/opensk
cargo fuzz run fuzz_target_process_ctap2_get_assertion