Fuzzing pyhacl (https://codeberg.org/drlazor8/pyhacl), a package of Cython bindings for HACL* (the High Assurance Cryptographic Library), with fusil we only found one crash.

It turned out to actually be a silly bug in #Cython:

Issue: https://github.com/cython/cython/issues/7263

Fix: https://github.com/cython/cython/pull/7264

Goes to show how fuzzing a C-extension can uncover crashes in many different layers.

Thanks @drlazor8 for taking up the call for C-extensions maintainers to fuzz their code.

#fusil #Python #pyhacl #hacl #fuzzing #fuzzer

Unveiling siotls, a sansio pure #python implementation of #TLS 1.3.

It supports various crypto backends, #openssl and #hacl at the moment.

This is my first time making an open-source library for a wider audience, feedback is welcome, please be kind 🥹

https://codeberg.org/drlazor8/siotls
https://siotls.readthedocs.io/en/stable/index.html