ref: 68e101942114435ffff654258b0c6a759e410377
dir: /README.md/
# Fuzz -- A kernel fuzzer from Plan 9 space ## Dependencies fuzz(1) is tested on the [9front](http://9front.org) operating system and as such uses its libraries and runs against its kernels. Theoretically fuzz could be ported to unix using [plan9port](https://github.com/9fans/plan9port), but this would require a Plan 9 kernel in user space which doesn't really exist outside of [9vx](https://swtch.com/9vx/) which is untested in this regard. ## Building mk ## Installing mk install ## Building in debug mode mk debug ## Usage To perform up to round 5 of fuzzing for the read, write, open, and close calls: fuzz -n 5 read write open close A list of all known system call names can be printed: fuzz ? ## Recommended reading for further development - http://doc.cat-v.org/plan_9/4th_edition/papers/comp - http://doc.cat-v.org/plan_9/programming/c_programming_in_plan_9 - https://lsub.org/who/nemo/9.pdf - http://9.postnix.us/hist/3e/plan9_3e_kernel.tgz - http://doc.cat-v.org/plan_9/misc/adding_a_syscall_to_plan_9/plan9_syscall_howto.pdf - http://aiju.de/plan_9/plan9-syscalls - http://man.cat-v.org/9front/2/intro - http://man.cat-v.org/9front/1/syscall - http://mirror.postnix.us/plan9front/sys/src/cmd/syscall/ - http://mirror.postnix.us/plan9front/sys/src/libc/9syscall/ - http://lsub.org/who/nemo/9.intro.pdf - http://fxr.watson.org/fxr/source/?v=PLAN9 ## Known System Call States If not specified, state is known to be working. -Fd2path -exits -abort -Access -Bind -Chdir -Close -Create -Dup -Fork -Rfork -Fauth -Fversion catches bad args, for future work -Mount -Umount -Noted catches that not notified -Open -Fd2path catches that it is getting bad input -Pread catches a general protection violation -Pwrite catches general protect viol -Read catches general protection violation -Readn catches general protection violation -Remove -Sbrk -*sbrk -Oseek -Swek -*seek -Segattach catches general protection violation -Segbrk catches general protection violation -Segdetach catches general protection violation -Segflush catches general protection violation -Segfree catches general protection violation -Semrelease -Semacquire -Sleep -Tsemacquire -Wait -Waitpid -Write catches general protection violation -Rendezvous catches general protection violation -Dirstat -Dirfstat -Getpid -Getppid -Rerrstr -Sysname