Rooba
/
oss-fuzz
mirror of https://github.com/google/oss-fuzz.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,357 Commits 189 Branches 0 Tags 109 MiB
Commit Graph

1724 Commits

Author SHA1 Message Date
Mike Aizatsky 9d98005257 copying options file 2016-12-28 14:09:39 -08:00
Mike Aizatsky 7d911ec094 [infra] replacing wget with ADD where possible 2016-12-28 14:09:09 -08:00
Abhishek Arya 6086188f2d Create ftfuzzer.options 2016-12-28 14:07:27 -08:00
Mike Aizatsky 0952c4aa6e [freetype2] move less frequently changed files up 2016-12-28 14:01:23 -08:00
Mike Aizatsky 3e817c4298 [json] using fuzzers from the source repo 
Thanks @nlohmann for adding them.
 2016-12-28 12:01:01 -08:00
Mike Aizatsky b4279ffd59 [libass] fixing fribidi linking and discovery 2016-12-28 10:39:49 -08:00
Mike Aizatsky 14e613045f [ffmpeg] more undefined vars 2016-12-28 10:31:50 -08:00
Oleg Oshmyan 3ecd63581b [libass] adding more developer emails (#223) 
Corresponding to GitHub users @wm4, @astiob and @MrSmile.
 2016-12-28 09:08:23 -08:00
Abhishek Arya 659e1a2d92 Update project.yaml 2016-12-28 06:36:37 -08:00
Abhishek Arya 74e80885ee Update project.yaml 2016-12-28 06:36:24 -08:00
Alex Gaynor 57795ec502 [gnutls] If the upstream repo has a corpus, include it (#222) 2016-12-28 06:33:59 -08:00
Kostya Serebryany 0f558ce6e4 the actual Dockerfile/build.sh for llvm_libcxxabi (#221) 2016-12-27 22:52:46 -08:00
Kostya Serebryany be6097aae0 add llvm_libcxxabi (#220) 2016-12-27 21:02:26 -08:00
Mike Aizatsky 64f8b6593d [ffmpeg] LDFLAGS is not present 2016-12-27 16:22:12 -08:00
Mike Aizatsky ce0b39b2e4 [libjpeg-turbo] enabling ubsan 2016-12-27 15:46:19 -08:00
Alex Gaynor c3a44cb1e3 Don't overflow on multiplication in the libjpeg_turbo fuzzer (#218) 2016-12-27 15:32:54 -08:00
Mike Aizatsky f228f66a86 [libass] installing fribidi to /work 2016-12-27 13:34:04 -08:00
Mike Aizatsky bc2d9d6c3f [libyaml] current directory is already libyaml 2016-12-27 13:17:36 -08:00
Abhishek Arya 6e8ad03842 Update build.sh 2016-12-27 12:05:36 -08:00
Kostya Serebryany a74e294fca [freetype2] add ots seed file for the freetype2 fuzzer (#217) 2016-12-27 11:42:52 -08:00
Abhishek Arya 453c5709c8 Update Dockerfile 2016-12-24 07:39:26 -08:00
Abhishek Arya 7176de02b3 Add test corpus from libjpeg-turbo repo 2016-12-24 07:37:23 -08:00
Kurt Roeckx 4190b47e0e openssl: call configure with --debug (#214) 
Otherwise NDEBUG is set, and the asserts don't trigger.
 2016-12-24 07:07:31 -08:00
Kostya Serebryany c050be7602 Update project.yaml 2016-12-23 17:30:18 -08:00
Caolán McNamara aba6616a66 Integrate libreoffice (#213) 2016-12-21 14:05:33 -08:00
Roland Knall a4a436883b Add new email to wireshark project config (#208) 
Add Roland Knall to the CC list as wireshark core developer
 2016-12-20 05:54:09 -08:00
Dario Lombardo 68be12fced Add new email to wireshark. (#207) 
Add Dario Lombardo to the CC list as wireshark core developer.
 2016-12-20 05:44:35 -08:00
inferno-chromium e6bf5e178a Update project.yaml 2016-12-19 18:16:19 -08:00
Moshe Kaplan 0f88acb939 Add Wireshark (#161) 
* Add Wireshark

* Update project.yaml

* Update project.yaml

* Update project.yaml
 2016-12-19 18:15:19 -08:00
Nikos Mavrogiannopoulos f533331c69 [gnutls] updated primary contact email (#204) 
That is, in order to be able to access the issues opened.
 2016-12-19 07:21:06 -08:00
Jack Lloyd 89b7e9c419 Update build scripts for Botan (#200) 
Botan's fuzzers now have builtin maximums where necessary, instead of relying on
max len option. So the code to generate the .options files goes. Suggested by
@kcc in #150

Use corpus for the common formats, seems to help with initial coverage at least.

Disables Botan's pool allocator at build time, since it hides things from ASan.
The fuzzer driver already tries to disable it at runtime in LLVMFuzzerInitialize,
but the Clusterfuzz coverage report indicates that this init function is not
ever called, and the pool allocator ends up being used.
 2016-12-16 20:03:39 -08:00
Mike Aizatsky 6a1d6b0d54 [openssl] use clang++ for linking #195 (#198) 2016-12-16 14:46:19 -08:00
Mike Aizatsky f2b8cb5508 [openssl] adding ubsan runtime to libraries for undefined sanitizer 
Fixes #195.
 2016-12-16 13:41:13 -08:00
Kurt Roeckx ebcac4696b Disable ubsan again (#197) 
It has link errors for some unknown reason.
 2016-12-16 10:46:49 -08:00
Costa Tsaousis 467769a23a add netdata (#193) 2016-12-15 14:56:29 -08:00
Mike Aizatsky 1934aa4358 [openssl] forgot to copy options file in #190 2016-12-15 14:18:12 -08:00
Kurt Roeckx c63c01e0fe Openssl update (#190) 
* Openssl: Enable more configure options

This enables all the options that are off by default but that we still
want to test.

* openssl: Enable undefined sanitizer.

* openssl: Add the security security contact as auto Cc

* openssl: bignum: limit to 2048 bytes
 2016-12-15 14:04:03 -08:00
Mike Aizatsky e4c8ca54d6 [expat] enabling experimental memory sanitizer #59 2016-12-15 13:13:31 -08:00
inferno-chromium 250261a3f3 Update build.sh 2016-12-15 12:53:48 -08:00
inferno-chromium 36ac161d1d Update Dockerfile 2016-12-15 12:52:28 -08:00
inferno-chromium a92ee6cb92 Delete re2_fuzzer.options 2016-12-15 12:40:04 -08:00
Alex Gaynor f4121e3f61 Move the gnutls fuzzers to their own repo. (#188) 
Also add two new ones.
 2016-12-15 12:01:36 -08:00
Tobias Brunner 12a616fc2d Add strongSwan (#184) 2016-12-15 08:31:05 -08:00
Max Moroz 848a1dd74b [c-ares] Use the second fuzzer + its seed corpus from c-ares repo. (#185) 2016-12-15 07:48:03 -08:00
Mike Aizatsky 74eb465532 [icu] disabling leak detection while building 
There seem to be leaks in icu tools:

LD_LIBRARY_PATH=../lib:../stubdata:../tools/ctestfw:$LD_LIBRARY_PATH  ../bin/genrb --usePoolBundle -k -i ./out/build/icudt58l -s /src/icu/source/data/locales -d ./out/build/icudt58l ar.txt

=================================================================
==7719==ERROR: LeakSanitizer: detected memory leaks

Direct leak of 64 byte(s) in 1 object(s) allocated from:
    #0 0x4d3368 in malloc /src/llvm/projects/compiler-rt/lib/asan/asan_malloc_linux.cc:64
    #1 0x5154fb in ucbuf_open /src/icu/source/tools/toolutil/ucbuf.cpp:469:36
    #2 0x50d4b3 in main /src/icu/source/tools/gendict/gendict.cpp:316:19
    #3 0x7ff77f72582f in __libc_start_main (/lib/x86_64-linux-gnu/libc.so.6+0x2082f)
 2016-12-13 15:31:59 -08:00
Mike Aizatsky 529d81f550 [boringssl] enabling undefined sanitizer 2016-12-13 13:36:05 -08:00
Mike Aizatsky f5dcb53893 [tpm2] adding tpm2 maintainers 2016-12-13 11:36:21 -08:00
Mike Aizatsky 37ffa07246 [infra] enabling trace-pc-guard for the guinea pig target #84 2016-12-13 11:33:08 -08:00
inferno-chromium eecbd2f63d Revert "Use Google Fonts in Harfbuzz's seed corpus." (#177) 
This reverts commit e72ae23208.
 2016-12-13 11:14:19 -08:00
inferno-chromium bb7d8e0a81 Update project.yaml 2016-12-13 07:32:13 -08:00
Abhishek Arya e72ae23208 Use Google Fonts in Harfbuzz's seed corpus. 2016-12-12 13:25:42 -08:00
inferno-chromium c70d95f68c Add seed corpus for harfbuzz (#173) 
* Add seed corpus from harfbuzz repo.
 2016-12-12 11:39:59 -08:00
inferno-chromium 20c48c6e08 Add seed corpus for curl fuzzer. Also update length for tests. (#172) 2016-12-12 10:19:45 -08:00
Abhishek Arya 53e91abc89 Re-add ares_create_query_fuzzer.cc. 2016-12-12 07:23:11 -08:00
Alexander Færøy 261a6bff3f Add irssi. (#169) 2016-12-11 18:29:36 -08:00
inferno-chromium c8d5d1853a Update project.yaml 2016-12-11 13:21:14 -08:00
inferno-chromium 5f314f365e Use c-ares fuzzer from its repo. (#167) 2016-12-11 13:17:56 -08:00
Alex Gaynor 6b27f9b7fa [gnutls] use an initial corpus for x509 (#164) 
* [gnutls] use an initial corpus for x509

and add OpenSSL's corpus for client transcripts

* Use --depth=1 on clones
 2016-12-10 09:28:26 -08:00
inferno-chromium 0ad5352198 Update project.yaml 2016-12-10 06:39:08 -08:00
Joseph Bisch 33394abb36 Fix weechat project.yaml typo (#163) 2016-12-09 21:13:22 -08:00
inferno-chromium afc2ba2d0f Update project.yaml 2016-12-09 07:40:48 -08:00
Alex Gaynor ed2ee1adac [In progress] Fuzzer for GNUTLS (#135) 
* First cut at gnutls. Doesn't actually find coverage.

* link everything right

* pipes are not sockets

* send not write

* these are not used

* stick this here

* this doesn't exit

* remove jenkinsfile

* move to the right dir

* project file

* update for more recent conventions

* ugh, typo

* new lib

* docs take forever

* name it client fuzzer

* stick a cert store on there!

* add a timeout, ugh

* Shtudown the right side instead of using a timeout

* Use boringssl's test corpus

* simplify grabbing the tarballs

* statically link things. pthread is still dynamically linked because I was not able to make it work

* Added an x509 parser fuzzer

* update for the lastest convention
 2016-12-09 07:36:42 -08:00
inferno-chromium 2dfb5a675e Update project.yaml 2016-12-08 18:55:46 -08:00
Mike Aizatsky 3565f8eb34 Delete Jenkinsfile 2016-12-08 13:58:48 -08:00
Mike Aizatsky 9a71ee9fb3 [json] enabling undefined sanitizer 2016-12-08 13:50:40 -08:00
Mike Aizatsky 881dc1167d [brotli] remove executable bit from archive 2016-12-08 13:45:14 -08:00
Kurt Roeckx 1e6cf3d328 Use libFuzzingEngine instead of libfuzzer (#155) 
Fixes: #153
 2016-12-08 12:16:41 -08:00
inferno-chromium 00e0b89627 Update Dockerfile 2016-12-08 06:58:24 -08:00
Jack Lloyd 278a542f83 Add botan fuzzer scripts (#150) 2016-12-08 06:57:57 -08:00
Eugene Kliuchnikov f85e64b57a Add brotli fuzzer (#143) 
* Add brotli fuzzer

* Add brotli fuzzer

* Move fuzzer code to brotli repository
 2016-12-08 06:41:39 -08:00
Mike Aizatsky 91f2079c24 Update project.yaml 2016-12-07 13:21:14 -08:00
Mike Aizatsky 6976f15a7d [tpm2] enabling undefined sanitizer 2016-12-07 11:53:06 -08:00
Mike Aizatsky 3dd707ed58 [infra] using -lFuzzingEngine instead of -lfuzzer 2016-12-07 11:41:08 -08:00
Kostya Serebryany a709c5b77b Update project.yaml 2016-12-07 10:03:42 -08:00
Kuang-che Wu 7048975d6a Fix parallel make command (#144) 
'make -j' will make targets parallelly. In other words, "clean" may run after "all" for 'make -j clean all' line.
 2016-12-07 06:47:37 -08:00
Kuang-che Wu 62004e9306 Fix typo, s/CCFLAGS/CFLAGS/ (#145) 2016-12-07 06:47:03 -08:00
Mike Aizatsky ecc3c98b3e typo 2016-12-06 13:51:34 -08:00
Mike Aizatsky ad781264a1 [lcms] added primary contact 2016-12-06 13:45:08 -08:00
Mike Aizatsky 924b41d903 [harfbuzz] using fuzzer from harfbuzz repo 2016-12-06 12:12:56 -08:00
inferno-chromium e880c1bc6d Update project.yaml 2016-12-06 10:40:21 -08:00
Emanuele Zattin 77019a7cbe Application for realm-core (#137) 2016-12-06 10:39:45 -08:00
Andreas Schneider 4518205e3b Add libssh project (#138) 2016-12-06 08:45:23 -08:00
Paul Wankadia 19fa8b2048 Use the fuzzer distributed with RE2. (#136) 
Fixes #82.
 2016-12-06 07:59:26 -08:00
inferno-chromium ca9715a55a Fix email issue causing exception. 2016-12-05 22:28:50 -08:00
txtsd b49ba4d18f Add WeeChat (#132) 2016-12-05 19:28:00 -08:00
Frederik Deweerdt 3d1f0ec340 Add H2O (#134) 2016-12-05 12:59:09 -08:00
Mike Aizatsky 9102ce4282 Delete Jenkinsfile 2016-12-04 11:15:55 -08:00
inferno-chromium 96d156fbb8 Update project.yaml (#130) 2016-12-03 21:30:08 -08:00
inferno-chromium d729d3e0b5 Rename project.yml to project.yaml 2016-12-03 21:26:09 -08:00
Mike Aizatsky 2b4f854485 Update project.yaml 2016-12-02 19:46:55 -08:00
Matt Johnston 480fef93ad Add Dropbear SSH (#122) 
thanks!
 2016-12-02 15:06:46 -08:00
Kurt Roeckx 8643f53190 OpenSSL: Use -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION (#126) 
This should make the server fuzzer more reproducible.

Depends on https://github.com/openssl/openssl/pull/2023
 2016-12-02 11:26:53 -08:00
Mike Aizatsky 635073e584 Update project.yaml 2016-12-02 10:51:21 -08:00
Mike Aizatsky 7196647036 Update project.yaml 2016-12-02 10:44:23 -08:00
Jack Lloyd 792cadb29e This is a pull request to add Botan TLS library to OSS-Fuzz submitted (#121) 
by primary maintainer. Two colloborating developers CCed.

Jack Lloyd
jack@randombit.net
Google Account: jack.lloyd@gmail.com
GitHub: randombit
 2016-12-02 10:16:07 -08:00
Mike Aizatsky a3df6b8862 [json] switching json to develop branch 
According to nlohmann@ this is where development happens
 2016-12-02 09:42:42 -08:00
Niels Lohmann 89f10b46a1 added contact email (#124) 
I am the maintainer of [JSON for Modern C++](https://github.com/nlohmann/json). I just wanted to open a pull request to add my project, and now I am thrilled that it is already here :-)
 2016-12-02 08:57:12 -08:00
Oliver Chang e69a25d84b Revert "coreutils: add build script" (#123) 2016-12-02 08:09:27 -08:00
Ruediger Meier acb19ee42f add util-linux project (#120) 
util-linux is the major collection of standard Linux utilities and
libraries. It's used by most Linux distributions during system
init (sysvinit, openrc, systemd) and by users or admins.

I've set my committer email address as primary contact and the
project maintainer (Karel Zak) on CC.

These are the official links to the project:

MAILING LIST:
      E-MAIL: util-linux@vger.kernel.org
      URL:    http://vger.kernel.org/vger-lists.html#util-linux

DOWNLOAD:
      ftp://ftp.kernel.org/pub/linux/utils/util-linux/

SOURCE CODE:
      Web interface:
          http://git.kernel.org/cgit/utils/util-linux/util-linux.git
          https://github.com/karelzak/util-linux

Signed-off-by: Ruediger Meier <ruediger.meier@ga-group.nl>
 2016-12-02 07:33:01 -08:00
sfrost 8f00854286 Add the PostgreSQL Project (#119) 
This is a pull request to add the PostgreSQL project to OSS-Fuzz
submitted by a long-time PostgreSQL Major Contributor and PostgreSQL
Committer who is also a member of the PostgreSQL Security team:

Stephen Frost
sfrost@snowman.net
sfrost@postgresql.org
Google account: frost.stephen.p@gmail.com
Github: sfrost
 2016-12-02 06:36:54 -08:00
Pádraig Brady 8d6a33cc18 coreutils: add build script (#118) 
Tested like:

  export PROJECT_NAME='coreutils'
  python infra/helper.py build_image $PROJECT_NAME
  python infra/helper.py build_fuzzers $PROJECT_NAME
  python infra/helper.py run_fuzzer $PROJECT_NAME \
    usr/local/bin/od -t fF -t fD -t fL /dev/null
 2016-12-02 06:34:30 -08:00
Alex Gaynor 9c61f4fd50 Drop FUZZER_LDFLAGS from the libyaml fuzzer (#116) 
It is no longer required
 2016-12-02 06:31:48 -08:00
Caolán McNamara dca782ed44 Add libreoffice as a project (#112) 2016-12-02 11:02:59 +01:00
Alex Gaynor 0ab119d1a1 Add the libyaml fuzzer (#115) 
* libyaml fuzzer

* Update for new modern conventions

* added seed corpus

* added a dictionary

* mark myself as the primary contact

* Rename

* --depth on git clone

* rename

* consistency

* Other URL is better
 2016-12-01 18:06:48 -08:00
Nima Fatemi cb2ecc10a9 Nominating Tor (#114) 2016-12-01 17:12:31 -08:00
Keith Winstein 4ca0fc4035 Add project.yaml for Mosh (mobile shell) (#113) 2016-12-01 15:45:01 -08:00
Alex Gaynor 80534fe832 Propose libyaml as a project (#107) 2016-12-01 13:36:00 -08:00
inferno-chromium 4f4b0605ea Update project.yaml 2016-12-01 12:38:04 -08:00
Gary Kramlich 0a12768bb8 Add pidgin as a project (#111) 2016-12-01 12:37:43 -08:00
Oliver Chang cb7197e7f5 Rename node.js to nodejs. 2016-12-01 12:19:46 -08:00
Jean-Marc Valin 41e364045b Adding Opus (#110) 2016-12-01 12:07:54 -08:00
Mikeal Rogers b139799558 Submitting Node.js to OSS Fuzz (#109) 2016-12-01 11:46:02 -08:00
Pádraig Brady 87b1012f21 add coreutils basic config (#106) 2016-12-01 09:55:02 -08:00
inferno-chromium d37a62b865 Update project.yaml 2016-12-01 07:22:19 -08:00
inferno-chromium 7823a752b8 Update project.yaml 2016-11-30 14:45:54 -08:00
Alex Gaynor 346e9700b3 Expand the corpus used by the libjpeg-turbo fuzzer (#104) 2016-11-29 20:06:51 -08:00
Mike Aizatsky cb6ea8bee1 [woff2] git is too old, removing shallow-submodules 2016-11-29 18:59:44 -08:00
Mike Aizatsky afcf8f9690 [ffmpeg] some repos do not like depth=1 2016-11-29 18:58:53 -08:00
Mike Aizatsky cf248c4759 [infra] making shallow git clones. fixes #42 2016-11-29 12:55:45 -08:00
inferno-chromium fdb2b2aa5f Update build.sh 2016-11-29 11:37:20 -08:00
Mike Aizatsky 8fd42612bc [infra] using projects/ dir 2016-11-29 11:37:09 -08:00
Mike Aizatsky 879120437d [infra] build.sh cleanup 2016-11-29 11:33:42 -08:00
Mike Aizatsky a1f645866d [infra] target.yaml -> project.yaml 2016-11-29 11:03:26 -08:00
Mike Aizatsky a143b9b39a [infra] renaming targets/ to projects/ 2016-11-29 10:55:25 -08:00