Skip to main content

Google Launches OSS-Fuzz In Beta

Software experts and open source advocates are applauding Google’s latest “make the world better” offering, its OSS-Fuzz tool. Still in beta, OSS-Fuzz is already a game changer in helping debug open source software with almost instantaneous results, allowing developers to pop back into their code, make an adjustment, and solve the problem.
“Open source software is the backbone of the many apps, sites, services, and networked things that make up ‘the internet.’ It is important that the open source foundation be stable, secure, and reliable, as cracks and weaknesses impact all who build on it,” the team announced in a blog post on the tool last week. “OSS-Fuzz’s goal is to make common software infrastructure more secure and stable by combining modern fuzzing techniques with scaleable distributed execution.”

For the uninitiated, “fuzzing” is “when bits of randomly generated code is inputted into programs as a means to discover code and security flaws,” according to a detailed explanation of the new tool from ThreatPost. OSS-Fuzz runs continuously, seeking out the flaws by inserting its own code to see where the problems lie. It’s much like running dye through a water system to see where the leaks are, only when it comes to open source software and its “everybody welcome” design, those flaws are not one-time fixes. Every new user who adds to the software could potentially be bringing faulty code with him, hence the need to check and recheck with fuzzing.

OSS-Fuzz has already found more than 150 bugs in key software titles and is available for public use, however the software has to be revamped for each software it’s being expected to fuzz. Google itself is currently using the tool to keep its Chrome browser safe and secure. Best of all, Google is welcoming any and all contributions to its tool from user experience. Software developers can submit their projects directly to Google in order to help the team continue building OSS-Fuzz.

Comments

Post a Comment

Popular posts from this blog

Lenovo Yoga Book with Halo keyboard launching in India on December 13

Lenovo Yoga Book, the tablet hybrid will launch in India on December 13. The company has sent out media invites for an event where the company will announce its hybrid tablet with a never seen before design.   Lenovo Yoga Book running Android or Windows was first showcased at IFA 2016. Lenovo says Yoga Book is the thinnest laptop hybrid and it is unlike anything else available in the market. Under the heart of Lenovo Yoga Book is an uninspiring Intel Atom x5-Z8550 processor, which Lenovo finds as a common thread in the world of Android and Windows. The device features a 10.1-inch IPS LED display with a full HD resolution of 1920 x 1200 pixels. The interesting part, however, is the other half of the device which basically skips traditional keyboard for a Halo effect. Yes, the keyboard is literally called Halo keyboard and it appears on demand, similar to the virtual keyboard on your smartphone.   Lenovo Yoga Book's Halo surface also accepts Pen inpu...
Post a Comment
Read more

Some Android app updates could cut their file sizes by 65 percent or more

As any Android smartphone owner knows, updates from the  Google Play Store  can come quite frequently for many popular apps. They can also use up data if updates are conducted on a cellular network. Today, Google announced a new approach for Android app downloads. The good news is this method could solve the problem of using a ton of data for such updates. In a blog post, Google describes the new approach, which it calls File-by-File patching. In the old days, Android apps were updated by downloading the app’s entire APK file. In 2016, the company began using the bsdiff algorithm to cut app file size updates by 47 percent. File-by-File patching can go even further, reducing app updates by an average of 65 percent. In fact, some app updates could be cut down by as much as 90 percent with this method. Normally, an APK file is compressed using a technology called Deflate, but Google says any change to the app’s original uncompressed content “can make the compres...
Post a Comment
Read more

Will anyone be sad to lose Samsung’s physical home button?

The physical home button is a smartphone facet that’s slowly becoming extinct. In 2016, the flagship devices from Google, Sony, LG, and Huawei all lacked such a button on their hardware. Meanwhile, Samsung has been holding onto the physical home button – it was still in place on its most recent flagship, the ill-fated  Galaxy Note 7  – though the company is expected to ditch it on its upcoming flagship, the  Galaxy S8 . But what impact will losing physical home buttons have? To answer that, let’s first explore its origins. The move to touchscreens Though it wasn’t the first device to make use of a touchscreen, much can be attributed to the original iPhone for popularizing it. When numbers and letters could be drawn on a display, there was no longer a need for a traditional keyboard setup, meaning screens were able to occupy a larger space on the handset without increasing the size of the body overall. What’s more, the keys could be contextual: when using the d...
Post a Comment
Read more