* Submit itoa and ryu.
These two libraries are used by serde_json which, in turn, is used as the
standard JSON parser in various higher level projects. Both itoa and ryu
contain unsafe code, which this fuzzes.
* Update project.yaml
* Update project.yaml
* Update Dockerfile
* Update Dockerfile
* Rejigging ryu/itoa Dockerfiles.
Previously I was following the example of image-png, but that appears not to be
the modern standard. Now following the example of zip-rs instead.
* Fix Dockerfile error
* Further Dockerfile fix.
Co-authored-by: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
As part of https://github.com/openssl/openssl/pull/18355 "Add Reproducible Error Injection"
I want to add an executable testrun.sh script to the fuzz directory.
Ideally I would like to set the executable bit on that file,
but unfortunately this confuses the CIFuzz build.
This excludes *.sh from the find command in build.sh
* infra: fix per-target coverage html generation
When generating coverage reports for single targets we should not
include all fuzz targets (in the $objects var), but only the object
(binary file) for the given target.
Ref: https://github.com/ossf/fuzz-introspector/issues/340
* coverage: remove potential race condition
* ghostscript: add target for new devices
Adds ability to target various devices and a fuzzer that targets
pdfwrite and pxlmono devices. The primary device of interest here is
likely pdfwrite as it's more widely used as far as I know.
* fix review 1
* fix review 2
* nit
* nit
For some reason, there's a local python3 installation on the
oss-fuzz-base image with a pretty old pip version, 19.2.3, which doesn't
have up-to-date wheel platform tags, so, when installing SPDK
dependencies, it tries to compile them instead of using the wheels. The
compilation fails on the grpcio package for some reason.
So, to resolve this, upgrade the local pip version when building the
SPDK image, so that it's able to fetch the pre-compiled packages. This
is a workaround for #7914.
* Add more fuzzer
Fix build script
* Fix formatting for fuzzers
Fix length checking for nonce in fuzz_aead
* Fix fuzzer
- Add more randomization to data input
* Swap from `compile_go_fuzzer` to `compile_native_go_fuzzer`
* Move building to an internal script `fuzz/oss-fuzz-build.sh` to ease addition of new fuzzing methods
* Update `auto_ccs`
* ghostscript: extend fuzzing
- Add two new fuzzers
- One new fuzzer that explore multiple colorings
- One new fuzzer that focuses on PDF exploration
- Add dictionary to PDF fuzzer
- Add small sized PDF seed to PDF fuzzer
- Ensure max_len on multiple coloring fuzzing
* Add myself to auto_ccs
* Fix typo
* set indentation
* add options file
* Address review: split fuzzers and have dict + seed locally
* nit
* clarify prepending of single byte
* fix styling
* clarify comments in all_colors fuzzer
* Addess final review
Using bfd_check_format_matches requires that a returned matching
vector (when return is false and bfd_get_error() is
bfd_error_file_ambiguously_recognized) be freed. Use bfd_check_format
instead.
matclab