fwupd: Initial integration for possible acceptance #4823
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Thanks for your pull request. It looks like this may be your first contribution to a Google open source project (if not, look below for help). Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA). 📝 Please visit https://cla.developers.google.com/ to sign. Once you've signed (or fixed any issues), please reply here with What to do if you already signed the CLAIndividual signers
Corporate signers
ℹ️ Googlers: Go here for more info. |
The fwupd daemon is a firmware installer deployed onto tens (hundreds?) of millions of devices. It parses untrusted firmware blobs from OEMs, ODMs and IHVs writing using dozens of different protocols. See https://fwupd.org/ for a whole ton more details about the project. Using the LVFS we've deployed at least 22 million updates in the last few years, although that number could be a lot higher in reality as we allow the LVFS to be anonymously mirrored and for fwupd to be run without phoning home. We used to fuzz with afl but recently switched to honggfuzz which found an additional 17 critical warnings or crashes. Hence my interest in oss-fuzz! My actual email address richard@hughsie.com is aliased to the email address given here, and I can confirm I'm the upstream maintainer. The github project has 1.1k stars and 172 forks if that means anything in reality. The fwupd project is used by almost all distributions, *including* ChromeOS.
|
@googlebot I signed it! I've repushed this with my corporate email address as Red Hat already has a company CLA agreement with Google. I've just been added onto the CLA group. Any questions welcome, thanks! |
|
Your project serves a noble purpose with updating firmware. Happy to accept this project, welcome to OSS-Fuzz. |
inferno-chromium
approved these changes
Dec 12, 2020
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The fwupd daemon is a firmware installer deployed onto tens (hundreds?) of
millions of devices. It parses untrusted firmware blobs from OEMs, ODMs and
IHVs writing using dozens of different protocols.
See https://fwupd.org/ for a whole ton more details about the project.
Using the LVFS we've deployed at least 22 million updates in the last few years,
although that number could be a lot higher in reality as we allow the LVFS to
be anonymously mirrored and for fwupd to be run without phoning home.
We used to fuzz with afl but recently switched to honggfuzz which found an
additional 17 critical warnings or crashes. Hence my interest in oss-fuzz!
My actual email address richard@hughsie.com is aliased to the email address
given here, and I can confirm I'm the upstream maintainer. The github project
has 1.1k stars and 172 forks if that means anything in reality.
The fwupd project is used by almost all distributions, including ChromeOS.