syntribos

Test for string validation vulnerabilities

Registered by Rahul U Nair

See if the API returns a stacktrace / other error when unicode strings are used, possible fuzz strings can be found at https://github.com/cneill/tempest-lib/blob/master/tempest_lib/common/utils/security_utils.py#L324-L332

Blueprint information

Status:
Complete
Approver:
None
Priority:
High
Drafter:
Rahul U Nair
Direction:
Needs approval
Assignee:
Rahul U Nair
Definition:
Approved
Series goal:
None
Implementation:
Implemented
Milestone target:
None
Started by
Rahul U Nair
Completed by
Rahul U Nair

Related branches

Sprints

Whiteboard

Gerrit topic: https://review.openstack.org/#q,topic:bp/unicode-vulnerabilities,n,z

Addressed by: https://review.openstack.org/317092
    Added tests to test for possible Unicode vulnerabilities

Gerrit topic: https://review.openstack.org/#q,topic:bp/testing-string-validation,n,z

Addressed by: https://review.openstack.org/318186
    Added String Validation Checks

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.
Edit subscription

Subscribers

No subscribers.