the code bases are massive, 10s of millions of lines + all the 3rd party libraries, and these bugs are tiny and very hard to find. these are the kind of mistakes that cause memory corruption exploits:
indexing an array at 1 instead of 0
freeing an object, then using that object somewhere else
freeing an object twice
these bugs are rarely even found by humans, but automated fuzzing. it’ll find the most obscure complicated edge-cases that cause these conditions, which a human can’t find by reading the code
:niggy: /
npub1d0…jahqw
2023-09-12 18:43:36
in reply to nevent1q…efge
Author Public Key
npub1d0npefkxtfkcptjdawvwkfu58japhjfaljt4hqtpq2xqn8pt2nwqdjahqwPublished at
2023-09-12 18:43:36Event JSON
{
"id": "ad060996e45251667a4af524f02674666e62bda7ecee3056906bbbd0015fab03",
"pubkey": "6be61ca6c65a6d80ae4deb98eb27943cba1bc93dfc975b8161028c099c2b54dc",
"created_at": 1694544216,
"kind": 1,
"tags": [
[
"p",
"e8dadc8e34f3914e49a4d4113383b3f3445d90e33ab4286b61da4c444178fb83",
"wss://relay.mostr.pub"
],
[
"p",
"79c2cae114ea28a981e7559b4fe7854a473521a8d22a66bbab9fa248eb820ff6",
"wss://relay.mostr.pub"
],
[
"e",
"3aa27575b4456023c09a5d3b452b23a7c7032b73eff7fb7d9ba6661f47a5c43e",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://poa.st/objects/b8eb1701-0bf8-4bcd-8d29-716e9287b337",
"activitypub"
]
],
"content": "the code bases are massive, 10s of millions of lines + all the 3rd party libraries, and these bugs are tiny and very hard to find. these are the kind of mistakes that cause memory corruption exploits:\n\nindexing an array at 1 instead of 0\nfreeing an object, then using that object somewhere else\nfreeing an object twice\n\nthese bugs are rarely even found by humans, but automated fuzzing. it’ll find the most obscure complicated edge-cases that cause these conditions, which a human can’t find by reading the code",
"sig": "ff48087b464bd61a2eb7300599f2c3f6996902af809105e401d70de7294d14910628507e293647e3da804be8fdf15cebeb1f3f33f6f7b385f5eb91d1235c9ef2"
}