OMNI-CORE LogoOMNI-CORE
omni-mdxomni-3D (soon)Open SourceAbout
GitHubDocumentation
OMNI-CORE

Knowledge must flow freely to shape the future.

Ecosystem

  • omni-mdx
  • omni-3D

Resources

  • Documentation
  • Interactive Playground

Legal & Open Source

  • GitHub Organization
  • Notice

TOAQ GROUP © 2024 - 2026

Released under the MIT License.

Navigation

Getting Started

  • Introduction
    • Web & Next.js
    • Python Engine
    • Build from Source
  • Syntax Guide

Web Integration

  • Next.js Integration
  • Binary AST Transfer
  • Custom Components
  • Unified & Plugins Ecosystem Integration
    • Basic App Router
    • Advanced Rendering
    • Live Client Editor

Python

  • Introduction & Core Engine
    • Basic Parsing & Traversal
    • Advanced Analysis & RAG
    • Native Qt Rendering
    • HTML & Web Rendering
    • Basic Parsing
    • Advanced Analysis
    • HTML Rendering
    • Qt Rendering

Architecture & Core

    • Design Philosophy
    • The Rendering Pipeline
    • Lexing & Tokenization
    • AST Node Design
    • Math & JSX Handling
    • Protocol Specification
    • Zero-Copy Decoding
    • Memory Lifecycle
    • WASM Bindings (Browser)
    • Node.js Native Addons
    • Python Bindings (PyO3)
  • Security
    • Benchmarks
    • Fuzzing Results
Docs
Architecture
Performance
Fuzzing Results

Fuzzing Results

Last Updated March 28, 2026

Fuzzing is an automated testing technique that floods the parser with millions of random, malformed, or extreme inputs to identify security vulnerabilities, memory leaks, or crashes (panic).

For Omni-MDX, we used cargo-fuzz (based on libFuzzer) to validate the robustness of the Rust engine.

Fuzzing Targets

We have set up two separate test harnesses to cover the entire attack surface.

1. Parsing Logic

Target the JSX and MDX parser state machine using only valid UTF-8 sequences.
Target: fuzz_parse.rs

  • Objective: Detect infinite recursion, out-of-bounds index errors, and logical errors in component nesting.
  • Contract: The parser must return a graceful Err, but must never panic.

2. Data Integrity

Injects raw byte sequences, including invalid or truncated UTF-8 characters.
Target: fuzz_utf8.rs

  • Objective: Verify that the FFI layer and the engine do not crash when they encounter corrupted characters (Mojibake).

Test Results

The tests were run on an Apple Silicon (M1) architecture to achieve maximum code coverage.

Metricfuzz_parsefuzz_utf8
Iterations+ 1.9 million+ 430,000
Unique paths36,11121,205
Checkpoints6,8645,471
Crashes detected00

Fixes & Improvements

Thanks to this fuzzing campaign, we were able to identify and fix critical vulnerabilities before they reached production:

1. Fix: Out-of-Bounds Index (JSX)

The fuzzer discovered a borderline case where a JSX tag ending abruptly with an equal sign (e.g., <A A=) caused a crash.

  • Solution: Added a bounds check (i >= len) before reading the attribute value.

2. Detection of “Markdown Bomb”

The fuzz_utf8 test revealed that a specific sequence of extremely nested lists and dashes could overload the processor (Denial of Service).

  • Solution: Implementation of a security preprocessor (Shield) that rejects documents with a list nesting depth greater than 64 levels.

3. Unicode Support

Validation of robustness against truncated multibyte characters (emojis, kanji), ensuring that the parser never attempts to split a character in the middle of its bytes.

ℹ️ Information
Performance Note: Despite these additional security checks, the engine maintains its parsing speed thanks to the extensive use of Cow<'a, str> and zero-copy.
Boosted by omni-mdx native node

On this page

  • Fuzzing Targets
  • 1. Parsing Logic
  • 2. Data Integrity
  • Test Results
  • Fixes & Improvements
  • 1. Fix: Out-of-Bounds Index (JSX)
  • 2. Detection of “Markdown Bomb”
  • 3. Unicode Support
Edit this page on GitHub

Caught a typo or want to improve the docs? Submitting a PR is the best way to help!