Skip to main content

Google Launches OSS-Fuzz In Beta

Software experts and open source advocates are applauding Google’s latest “make the world better” offering, its OSS-Fuzz tool. Still in beta, OSS-Fuzz is already a game changer in helping debug open source software with almost instantaneous results, allowing developers to pop back into their code, make an adjustment, and solve the problem.
“Open source software is the backbone of the many apps, sites, services, and networked things that make up ‘the internet.’ It is important that the open source foundation be stable, secure, and reliable, as cracks and weaknesses impact all who build on it,” the team announced in a blog post on the tool last week. “OSS-Fuzz’s goal is to make common software infrastructure more secure and stable by combining modern fuzzing techniques with scaleable distributed execution.”

For the uninitiated, “fuzzing” is “when bits of randomly generated code is inputted into programs as a means to discover code and security flaws,” according to a detailed explanation of the new tool from ThreatPost. OSS-Fuzz runs continuously, seeking out the flaws by inserting its own code to see where the problems lie. It’s much like running dye through a water system to see where the leaks are, only when it comes to open source software and its “everybody welcome” design, those flaws are not one-time fixes. Every new user who adds to the software could potentially be bringing faulty code with him, hence the need to check and recheck with fuzzing.

OSS-Fuzz has already found more than 150 bugs in key software titles and is available for public use, however the software has to be revamped for each software it’s being expected to fuzz. Google itself is currently using the tool to keep its Chrome browser safe and secure. Best of all, Google is welcoming any and all contributions to its tool from user experience. Software developers can submit their projects directly to Google in order to help the team continue building OSS-Fuzz.

Comments

Post a Comment

Popular posts from this blog

Motorola event next month, could be foldable phone launch

Motorola has been working on a foldable phone for months now, according to numerous leaks this year. Fortunately, it seems like we won’t have to wait too long for the device. The manufacturer has sent out press invites to a November 13 launch event, and Android Central‘s invitation includes a teaser GIF (seen below). This teaser apparently shows an old flip phone transforming into what could be the new Motorola foldable phone. This all suggests that we’ll finally see the company’s leaked RAZR foldable phone at the event. Previous leaks paint a picture of a pricey device with upper mid-range specs. The Motorola foldable phone is tipped to arrive with a Snapdragon 710 processor (no flagship chipset here), 4GB or 6GB of RAM, and 64GB or 128GB of storage. The phone is also expected to arrive with a 2,730mAh battery, which is definitely small for a smartphone (foldable or not). As for details related to the foldable design itself, we’re apparently looking at a 6.2-inch OLED s
Post a Comment
Read more

Lenovo Yoga Book with Halo keyboard launching in India on December 13

Lenovo Yoga Book, the tablet hybrid will launch in India on December 13. The company has sent out media invites for an event where the company will announce its hybrid tablet with a never seen before design.   Lenovo Yoga Book running Android or Windows was first showcased at IFA 2016. Lenovo says Yoga Book is the thinnest laptop hybrid and it is unlike anything else available in the market. Under the heart of Lenovo Yoga Book is an uninspiring Intel Atom x5-Z8550 processor, which Lenovo finds as a common thread in the world of Android and Windows. The device features a 10.1-inch IPS LED display with a full HD resolution of 1920 x 1200 pixels. The interesting part, however, is the other half of the device which basically skips traditional keyboard for a Halo effect. Yes, the keyboard is literally called Halo keyboard and it appears on demand, similar to the virtual keyboard on your smartphone.   Lenovo Yoga Book's Halo surface also accepts Pen input which allows
Post a Comment
Read more

Cyanogen Inc. shuts down services and OS; open-source CyanogenMod project will remain

Sneaking the big news on the long holiday weekend,  Cyanogen Inc.  has announced discontinuation of the operating system and all services by December 31. Per the official statement, CyanogenMod OS and source code will remain available for the community. The ambitious startup aimed to build a better version of Android, but the software received lukewarm response because the OEMs didn’t want to ditch the Google ecosystem. And then, there were issues with partners like OnePlus who ditched the alliance immediately after the first outing with OnePlus One. The announcement was made in a very uncharacteristic and brief bog post: As part of the ongoing consolidation of Cyanogen, all services and Cyanogen-supported nightly builds will be discontinued no later than 12/31/16. The open source project and source code will remain available for anyone who wants to build CyanogenMod personally. While surprising, the announcement isn’t shocking, really. The company had recently lai
Post a Comment
Read more