Rooba
/
oss-fuzz
mirror of https://github.com/google/oss-fuzz.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,506 Commits 188 Branches 0 Tags 117 MiB
Commit Graph

3506 Commits

Author SHA1 Message Date
Bhargava Shastry 66faf75fb3 Solidity: Use release build (#2848) 2019-09-18 12:04:32 -07:00
Even Rouault 49c3d46ddb [GDAL] Add new GDAL developer to the list of authorized viewers (#2847) 2019-09-18 07:14:43 -07:00
Nikita Popov 88e3c3e420 Switch email address to use gmail (#2842) 
Switch auto_ccs entry to my gmail address, as authentication in the bug tracker does not work otherwise.
 2019-09-18 07:11:08 -07:00
Bhargava Shastry 7aa1d7b9a3 solidity: Use cmake toolchain file (#2841) 2019-09-17 14:15:03 -07:00
Stanislav Malyshev 44e7362ff5 fuzzer has been merged into upstream repo, no need to check out extra repo anymore (#2839) 2019-09-17 07:52:40 -07:00
Max Moroz d1ed6b87a7
[docs] Add "Integrating a Go project" documentation page (#2714). (#2837) 
* [docs] Add "Integrating a Go project" documentation page (#2714).

* rephrase go-fuzz mode description
 2019-09-17 07:15:22 -07:00
Stanislav Malyshev 8b911bf10c Add Nikita Popov to CC addresses for PHP issues (#2840) 2019-09-17 06:54:28 -07:00
Josh Bleecher Snyder ba3947ee40 [golang] add my email to project.yaml (#2838) 
Updates #2825
 2019-09-16 14:31:13 -07:00
Thomas Orgis 356f2b9476 mpg123: limit fuzzer runtime (#2832) 
* mpg123: limit runtime of decode_fuzzer

To avoid spurious timeout reports, the test shall end after 10000 MPEG frames
or 1 MiB of data, which should both be reasonable numbers. The timeout
report motivating this had 500K with 140k bad frames. The limit of
10000 frames corresponds to a normal radio song as MP3 stream.

* mpg123: limit runtime of read_fuzzer

This applies the same logic as the decode fuzzer: stop decoding after
10000 MPEG frames or 1 MiB of input data. We could debate a bigger
limit on the data size, but we do want compact testcases, right?
 2019-09-16 07:06:25 -07:00
Bhargava Shastry 9e6a3ca660 solidity: Add and link solc against z3 (#2835) 2019-09-16 07:04:26 -07:00
Guido Vranken 67dde67647 [cryptofuzz] Compile OpenSSL 1.0.2/noasm with -DPURIFY (#2833) 
This prevents MSAN false positives in its bignum code.
 2019-09-15 15:01:43 -07:00
Sebastian Rasmussen 2f79af92cc [jbig2dec]: Remove debug commands included by accident. (#2831) 2019-09-13 13:19:09 -07:00
Sebastian Rasmussen b70dfdbb22 [jbig2dec] Add jbig2dec fuzzer (#2815) (#2816) 2019-09-13 10:06:12 -07:00
Catena cyber 9917e148ea Adds botan to ecc differential fuzzer (#2830) 2019-09-13 09:52:40 -07:00
Janne Grunau f986fafb8e dav1d: add i386 as fuzzing architecture (#2824) 
Meson requires a cross file for compiling i386 on x86_64. This
unfortunately needs to be generated on the fly to honor oss-fuzz'
compiler and compiler flags.
Supercedes #2823.
 2019-09-12 12:29:02 -07:00
Joseph Bisch a30a76c93f Fix irssi build (#2785) 2019-09-11 18:33:27 -07:00
Christoph Diehl 7b4370c2fb [Firefox] Remove redundant environment variables (#2822) 2019-09-10 16:46:44 -07:00
Stanislav Malyshev b45c95203d Fix PHP build - needs PIC flag now (#2821) 2019-09-10 06:41:33 -07:00
Tyson Smith e400bcf861 [openh264] Enable i386 architecture fuzzing (#2820) 
* [openh264] Add i386 architecture

* [openh264] Install libc++1:i386

* [openh264] Remove libc++1:i386 and libc++-dev:i386
 2019-09-09 22:35:40 -07:00
Abhishek Arya 0a3b5ee36a
Remove non-working i386 config from libsodium 2019-09-09 21:07:34 -07:00
Max Moroz ccfb73427f
[infra] Skip code coverage job for gofuzz projects (#2714). (#2818) 2019-09-09 08:47:58 -07:00
tbeu 8b7ac94de7 Prefer ideal integration with OSS-Fuzz (#2814) 2019-09-08 20:38:18 -07:00
jonathanmetzman 62c65ca878
Add SPIRV projects for blackbox fuzzing with GraphicsFuzz (#2812) 2019-09-06 13:49:09 -07:00
Max Moroz 16125ac2bc
[libxml2] Use FuzzedDataProvider isntead of byte_stream. (#2809) 2019-09-06 09:56:42 -07:00
Max Moroz 227ee9f107
[mpg123] Use FuzzedDataProvider instead of byte_stream. (#2810) 2019-09-06 09:47:12 -07:00
Max Moroz bae6ad36a6
[docs] Recommend using "gsutil -m cp -r" instead of "gsutil -m rsync". (#2811) 2019-09-06 08:44:15 -07:00
Catena cyber f9c4318e38 [libhtp] Adds dependency to libhtp project : liblzma (#2808) 2019-09-06 07:29:08 -07:00
Yang Gao 7f8013db10 gRPC improvements (#2807) 2019-09-05 21:31:52 -07:00
Randy 1144fe75e2 [libspng] download and statically link zlib (#2797) 
* [libspng] enable i386 builds

* use pip to install newer version of meson

* fix build

* fix build

* fix meson install process

* install zlib:i386

* fix 32-bit build

* use cross-file for i386 build

* switch to cmake

* cd back to top-level after build

* dummy commit

* switch to meson

* fix up paths in crossfile

* dummy commit

* add -m32 LDFLAGS for i386 build

* remove LDFLAGS, force repo update

* print contents of crossfile

* replace cflags/ldflags in crossfile with env vars

Meson ignores environment variables for cross-builds

* dummy commit

* remove 32-bit build code

* remove i386 architecture

* update files

* Bring back zlib1g-dev as it is needed
 2019-09-05 21:30:42 -07:00
jonathanmetzman bfaf92aae7
Use $LIB_FUZZING_ENGINE instead of -lFuzzingEngine in 4 different projects (#2805) 
Migrate golang, libvips, unicorn, libpcap
 2019-09-05 15:09:59 -07:00
Harish Mahendrakar e631820d74 [libavc, libhevc, libmpeg2] Enable memory sanitizers (#2806) 2019-09-05 14:48:09 -07:00
kplybon 5791d29005 [Docs]: Copy edit Advanced Topics section. (#2799) 
* [Docs]: Copy edit Advanced Topics section.

* Minor tweaks addressing Max's comments.

* Add context for Code Coverage
 2019-09-05 13:21:13 -07:00
Stefan Profanter 8455f8b854 [open62541] Add additional user (#2804) 2019-09-05 07:45:07 -07:00
Damien Miller 8483aa8b88 enable (brand new) sshsig options parsing fuzzer (#2803) 2019-09-05 07:19:16 -07:00
Konstantin Munichev a4374a23bc [iroha] Add Hyperledger Iroha project (#2753) 
* [Iroha] Add initial Dockerfile and build.sh

* Single fuzzing target; grpc timeout bumper

Signed-off-by: Konstantin Munichev <toobwn@gmail.com>

* Build fuzzing in a single thread

Signed-off-by: Konstantin Munichev <toobwn@gmail.com>
 2019-09-05 06:45:22 -07:00
Damien Miller f508b116de [openssh] add sshsig fuzzer (#2802) 2019-09-04 21:47:42 -07:00
Ammar Askar 3bce510ef1 [docs] Document shiny new badge in the docs (#2700) 
* [docs] Document shiny new badge in the docs

Use monorail project link instead of build logs

Monorail link has advantage of showing previously found bugs.
It also shows any build failures (though the issue may be hard to find in long-lasting build failures).
The link sorts by date a bug was opened, thus some verified bugs will be shown before more recently opened ones.
 2019-09-04 20:50:17 -07:00
Christoph Diehl d4e5d489e4 Add demuxers to Firefox project (#2801) 2019-09-04 17:40:21 -07:00
Jonathan Foote ac9b0d9e6e [picotls] remove asn-1 fuzzer (#2800) 2019-09-04 13:13:16 -07:00
Nick Terrell adbae7d467 zstd: lz4: Update auto_ccs (#2796) 2019-09-04 10:48:25 -07:00
Benoît Blanchon 6017766afd [arduinojson] Update fuzzers' path (#2793) 
The code of the fuzzers moved from `fuzzing/` to `extras/fuzzing/`.
See https://github.com/bblanchon/ArduinoJson/issues/1011
 2019-09-04 07:45:50 -07:00
tbeu d2aad464b7 Build with hdf5 and zlib support (#2794) 2019-09-04 07:45:26 -07:00
Even Rouault ed5f4a337a [libtiff] Fix build (#2798) 
* [libtiff] Fix build

The https://raw.githubusercontent.com/mcarpenter/afl/master/dictionaries/tiff.dict
resource has just disappeared.

* Update Dockerfile
 2019-09-04 07:33:45 -07:00
Abhishek Arya 7b75f75533
Add vendor_ccs for Android libs. (#2795) 2019-09-03 15:35:07 -07:00
Catena cyber b889b43350 Use latest developements for ntp project (#2787) 2019-09-03 07:52:24 -07:00
Janne Grunau a1a80dd3c4 dav1d: adapt build to upstream changes (#2791) 
dav1d renamed the options build_asm and build_tools. build_asm=false
is no longer needed since the upstream fuzzer target disables the asm
code path when it runs under memory sanitizer.
Use enable_tools=false to skip building the dav1d CLI tools.
 2019-09-01 22:55:21 -07:00
jonathanmetzman ec331c1c6a
Try again to unbreak librawspeed by actually using gold (#2786) 2019-08-30 17:34:51 -07:00
Guido Vranken 5a2952267a [cryptofuzz] Add Botan (#2780) 2019-08-30 15:00:49 -07:00
jonathanmetzman 824f9f3928
Fix librawspeed build (#2784) 2019-08-30 11:29:20 -07:00
Catena cyber 0da05c8768 Avoids minijail issue with ntp project (#2783) 
* Avoids minihail issue with ntp

* Readds flag for afl
 2019-08-30 07:13:39 -07:00