oss-fuzz/infra/constants.py

# Copyright 2021 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#      http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
################################################################################
"""Constants for OSS-Fuzz."""

DEFAULT_EXTERNAL_BUILD_INTEGRATION_PATH = '.clusterfuzzlite'

DEFAULT_LANGUAGE = 'c++'
DEFAULT_SANITIZER = 'address'
DEFAULT_ARCHITECTURE = 'x86_64'
DEFAULT_ENGINE = 'libfuzzer'
LANGUAGES = [
    'c',
    'c++',
    'go',
    'javascript',
    'jvm',
    'python',
    'rust',
    'swift',
    'ruby',
]
LANGUAGES_WITH_COVERAGE_SUPPORT = [
    'c', 'c++', 'go', 'jvm', 'python', 'rust', 'swift', 'javascript', 'ruby'
]
SANITIZERS = [
    'address',
    'none',
    'memory',
    'undefined',
    'thread',
    'coverage',
    'introspector',
    'hwaddress',
]
ARCHITECTURES = ['i386', 'x86_64', 'aarch64']
ENGINES = ['libfuzzer', 'afl', 'honggfuzz', 'centipede', 'none', 'wycheproof']
[infra][NFC] Use one source of truth for engines, languages etc. (#6163) Do this only where it makes sense. For example, since CIFuzz doesn't support dataflow, maintain a separate source of truth. 2021-08-05 00:04:55 +00:00			`# Copyright 2021 Google LLC`
			`#`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`#`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`#`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`
			`#`
			`################################################################################`
			`"""Constants for OSS-Fuzz."""`

			`DEFAULT_EXTERNAL_BUILD_INTEGRATION_PATH = '.clusterfuzzlite'`

			`DEFAULT_LANGUAGE = 'c++'`
			`DEFAULT_SANITIZER = 'address'`
			`DEFAULT_ARCHITECTURE = 'x86_64'`
			`DEFAULT_ENGINE = 'libfuzzer'`
			`LANGUAGES = [`
			`'c',`
			`'c++',`
			`'go',`
Prepare for JavaScript fuzzing (#8325) Prepare for JavaScript fuzzing Related: #8324 2022-08-23 21:41:42 +00:00			`'javascript',`
[infra][NFC] Use one source of truth for engines, languages etc. (#6163) Do this only where it makes sense. For example, since CIFuzz doesn't support dataflow, maintain a separate source of truth. 2021-08-05 00:04:55 +00:00			`'jvm',`
			`'python',`
			`'rust',`
			`'swift',`
Adding Ruby Support into OSS-Fuzz via Ruzzy (#12034) This is a follow-up to the discussions held during our Monthly Fuzzing Collaboration meetings and directly relates to issue #11967. This Pull Request integrates Ruzzy support for Ruby fuzzing into OSS-Fuzz. Ruzzy is a coverage-guided fuzzer for pure Ruby code and Ruby C extensions, developed by Matt (@mschwager) at Trail of Bits. More information on Ruzzy can be found in the blog post titled "[Introducing Ruzzy, a coverage-guided Ruby fuzzer](https://blog.trailofbits.com/2024/03/29/introducing-ruzzy-a-coverage-guided-ruby-fuzzer/)". The first commit of this PR integrates Ruby support into the OSS-Fuzz project via Ruzzy, while the second one includes the Ox project as an example of its usage. The first commit introduces changes in the infra directory, most notably by adding the base-builder-ruby docker and the ruby install script. Two scripts, ruzzy-build and ruzzy, have been added to base-builder-ruby and base-runner respectively. The former creates scripts that start harnesses with the latter one, and the latter is simply a wrapper for ruby with LD_PRELOAD. In order to prevent the duplication of many gigabytes of data, we use separate installation directories for RubyGem. Technically, Ruzzy can be installed in the default directory without any performance disadvantage, but having a separate directory may facilitate troubleshooting. This implementation was arrived at through testing a few ideas. If you have suggestions for further improvements, please let me know. I am currently addressing my concerns in the related issue. Using the provided scripts isn't necessary but it does simplify the process. Installation directories are set using environment variables in the Dockerfiles, making it transparent for users. The second commit simply adds a project to illustrate how straightforward the integration process is. You can test it using the standard helper commands. Fixes: #11967 Co-authored-by: mschwager <matt.schwager@trailofbits.com> --------- Co-authored-by: mschwager <matt.schwager@trailofbits.com> 2024-07-02 12:33:01 +00:00			`'ruby',`
[infra][NFC] Use one source of truth for engines, languages etc. (#6163) Do this only where it makes sense. For example, since CIFuzz doesn't support dataflow, maintain a separate source of truth. 2021-08-05 00:04:55 +00:00			`]`
infra: add Python coverage support (#7298) * infra: add Python coverage support * update python coverage helper script * nits * switch from commands to python * pin coverage package * switch to single quote strings throughout * nit * fix style * fix style * fix ci * fix ci 2022-04-06 14:31:34 +00:00			`LANGUAGES_WITH_COVERAGE_SUPPORT = [`
Adding Ruby Support into OSS-Fuzz via Ruzzy (#12034) This is a follow-up to the discussions held during our Monthly Fuzzing Collaboration meetings and directly relates to issue #11967. This Pull Request integrates Ruzzy support for Ruby fuzzing into OSS-Fuzz. Ruzzy is a coverage-guided fuzzer for pure Ruby code and Ruby C extensions, developed by Matt (@mschwager) at Trail of Bits. More information on Ruzzy can be found in the blog post titled "[Introducing Ruzzy, a coverage-guided Ruby fuzzer](https://blog.trailofbits.com/2024/03/29/introducing-ruzzy-a-coverage-guided-ruby-fuzzer/)". The first commit of this PR integrates Ruby support into the OSS-Fuzz project via Ruzzy, while the second one includes the Ox project as an example of its usage. The first commit introduces changes in the infra directory, most notably by adding the base-builder-ruby docker and the ruby install script. Two scripts, ruzzy-build and ruzzy, have been added to base-builder-ruby and base-runner respectively. The former creates scripts that start harnesses with the latter one, and the latter is simply a wrapper for ruby with LD_PRELOAD. In order to prevent the duplication of many gigabytes of data, we use separate installation directories for RubyGem. Technically, Ruzzy can be installed in the default directory without any performance disadvantage, but having a separate directory may facilitate troubleshooting. This implementation was arrived at through testing a few ideas. If you have suggestions for further improvements, please let me know. I am currently addressing my concerns in the related issue. Using the provided scripts isn't necessary but it does simplify the process. Installation directories are set using environment variables in the Dockerfiles, making it transparent for users. The second commit simply adds a project to illustrate how straightforward the integration process is. You can test it using the standard helper commands. Fixes: #11967 Co-authored-by: mschwager <matt.schwager@trailofbits.com> --------- Co-authored-by: mschwager <matt.schwager@trailofbits.com> 2024-07-02 12:33:01 +00:00			`'c', 'c++', 'go', 'jvm', 'python', 'rust', 'swift', 'javascript', 'ruby'`
infra: add Python coverage support (#7298) * infra: add Python coverage support * update python coverage helper script * nits * switch from commands to python * pin coverage package * switch to single quote strings throughout * nit * fix style * fix style * fix ci * fix ci 2022-04-06 14:31:34 +00:00			`]`
infra: add coverage sanitizer option (#6171) * infra: add coverage sanitizer option * fix lint 2021-08-05 18:53:20 +00:00			`SANITIZERS = [`
[Incomplete] Support building targets with HWAsan (#8190) Note that these targets still fail immediately. Related: #8164 2022-08-09 02:57:59 +00:00			`'address',`
			`'none',`
			`'memory',`
			`'undefined',`
			`'thread',`
			`'coverage',`
			`'introspector',`
			`'hwaddress',`
infra: add coverage sanitizer option (#6171) * infra: add coverage sanitizer option * fix lint 2021-08-05 18:53:20 +00:00			`]`
[NFC] Add initial support for AArch64 (#8165) Related: https://github.com/google/oss-fuzz/issues/8164 2022-08-05 17:57:43 +00:00			`ARCHITECTURES = ['i386', 'x86_64', 'aarch64']`
Centipede integration (#8046) * Add Centipede as a fuzzer * Specify dictionary param of Centipede * Update docs * Mark Centipede as experimental * More accurate description * Remove garbage * Simplify code * Move mkdir to dockerfile * Add the weak.c trick * Install deps with Centipede's script & uninstall new deps * Fix doc * Reuse libweak_sancov_stubs.so * Reorganise flags * format * Consistent file type * Reuse the weak references defined in Centipede * Replace the shared library of weak symbols with a static one * Correct the place to call mkdir * Allow 2G of SHM for Centipede * Create dirs in run_fuzzer * Keep Centipede up-to-date * Avoid duplicating Centipede's binary * The params of Centipede and their explanations * The engine info of centipede * Save the target binary (with san) in a subdir of the project * Set the target (with san) dir in check_build * Create the target (with san) first to avoid side-effects * Fic clone * Fix format * Add periods * Fix comments * Fix dirs * Fix parameters * Adding Centipede as a fuzzing engine for Scarecrow * Add CI support * Represent sanitizer with a variable * Remove the unnecessary definition of FUZZER_OUT * Reorganise binary directories * format * A minor note * Present issues with dirs that alread exist * Use os.path.join to join path * Make a function to get the out/ in check build * Reusing existing flags in .bazel * Avoid hardcoding sanitizer, set rss_limit_mb=4096, leave address_space_limit_mb disabled * Better ways to add bazel build options * A better way to add bazel flags * Remove redundant --bazelrc * Better Cohesion * Avoid code duplication * Simplify code * Exit on crash 2022-09-06 02:34:58 +00:00			`ENGINES = ['libfuzzer', 'afl', 'honggfuzz', 'centipede', 'none', 'wycheproof']`