e48e615124
Remove @syoyo as CC ( #8951 )
2022-11-08 13:34:53 -08:00
f2d79d7877
Change label prefix for protobuf projects ( #8944 )
...
Avoid clashing with labels used by envoy in
https://github.com/google/oss-fuzz/blob/master/projects/envoy/project.yaml .
2022-11-08 13:32:18 +11:00
d4362b84e9
fabric: use latest instrumentation ( #8947 )
...
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-07 23:10:12 +00:00
490a91a265
Enable Introspector on Python projects ( #8945 )
2022-11-07 22:48:16 +00:00
693a47fea0
moby: add extended instrumentation ( #8946 )
...
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-07 22:44:27 +00:00
450037bac0
hibernate-orm: Fix build failure ( #8823 )
...
Fix build failure for
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51159
2022-11-07 16:42:45 -05:00
e5a96424a2
Add another Google maintainer for ghostscript ( #8942 )
...
Adding bmgordon@ who is currently looking after printing.
2022-11-07 21:02:05 +00:00
ae9b121213
snakeyaml: Add DefaultYamlFuzzer ( #8941 )
...
Add DefaultYamlFuzzer to test default snakeyaml behavior.
2022-11-07 12:35:23 -08:00
514febd38c
java: Fix bash escaping in memory setting logic ( #8825 )
...
These issues were missed in 5b1953b201
2022-11-07 10:34:37 -08:00
362cb376b2
u-root: fix auto_ccs contact ( #8938 )
...
Updated my mail in the contacts for u-root, since the web login does not
accept my non-Gmail address.
Sorry, I got confused not knowing what exactly counts as an alternative
e-mail address for a Google account.
Signed-off-by: Fabian Wienand <fabian.wienand@9elements.com>
Signed-off-by: Fabian Wienand <fabian.wienand@9elements.com>
2022-11-07 17:56:49 +00:00
d149cddfad
u-root: init project ( #8911 )
...
Following the addition of some fuzzing tests
([#1 ](https://github.com/u-root/u-root/pull/2528 ),
[#2 ](https://github.com/u-root/u-root/pull/2535 ),
[#3 ](https://github.com/u-root/u-root/pull/2536 )) in the u-root project
and [preparations for this
integration](https://github.com/u-root/u-root/pull/2543 ).
You can check out its [website](https://u-root.org/ ) for more info on
the project.
Signed-off-by: Fabian Wienand <fabian.wienand@9elements.com>
Signed-off-by: Fabian Wienand <fabian.wienand@9elements.com>
2022-11-07 08:15:55 -08:00
3f14b420ef
[CFL] Don't print fuzzing logs in realtime ( #8919 )
...
Fixes https://github.com/google/oss-fuzz/issues/8588
2022-11-07 11:11:51 -05:00
8fd6d0c182
Add sha256 to Dockerfile ( #8930 )
...
Same temporary fix as https://github.com/google/oss-fuzz/pull/8914
Seems to be affected by https://github.com/google/oss-fuzz/issues/8915
per failures in
https://github.com/google/oss-fuzz/actions/runs/3396815368/jobs/5648300142
Co-authored-by: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
2022-11-07 16:09:10 +00:00
f0bba2daf6
Add copybara to cc's and and label ( #8929 )
...
Same as https://github.com/google/oss-fuzz/pull/8927 but for
protobuf-python
Co-authored-by: Navidem <navid.emamdoost@gmail.com>
2022-11-07 10:37:46 -05:00
235ff2d274
Replace buganizer cc with protobuf-oss-fuzz ( #8925 )
...
Co-authored-by: Navidem <navid.emamdoost@gmail.com>
2022-11-07 10:37:23 -05:00
51297b4791
jwt-verify-lib: OSS-fuzz integration for bazel project ( #8909 )
...
Following
https://google.github.io/oss-fuzz/getting-started/new-project-guide/bazel/
Signed-off-by: Teju Nareddy <nareddyt@google.com>
Signed-off-by: Teju Nareddy <nareddyt@google.com>
2022-11-07 10:34:03 -05:00
b975afe5e3
[wycheproof] Fix typo ( #8935 )
2022-11-07 09:16:31 -05:00
05b0539525
rekor: add maintainers ( #8936 )
...
@bobcallaway @loosebazooka
Gives @DavidKorczynski and me access to bug reports for Rekor.
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-07 08:50:31 -05:00
e9ca7b1120
Create blackbox fuzzer for wycheproof. ( #8926 )
...
Related: https://github.com/google/oss-fuzz/issues/8034
2022-11-07 07:07:31 -05:00
15ace8b1bc
[boost.json] update the list of dependencies ( #8932 )
...
This should fix
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52484
2022-11-05 18:37:38 +00:00
49a9532c52
pyparsing: update project yaml ( #8931 )
...
Ref:
https://github.com/pyparsing/pyparsing/issues/441#issuecomment-1304457341
2022-11-05 14:42:35 +00:00
24cc6db29b
Add copybara to cc's and and label ( #8928 )
...
Same as https://github.com/google/oss-fuzz/pull/8927 but for upb
2022-11-04 13:13:26 -07:00
7e5b6e9193
Add copybara to cc's and and label ( #8927 )
...
Similar setup as
https://github.com/google/oss-fuzz/blob/master/projects/envoy/project.yaml
2022-11-04 13:12:25 -07:00
2c1633792d
[trafficserver] initial integration ( #8832 )
...
Hello oss-fuzz Team,
FuzzHTTP is not deployed right now due to broken compile system against
coverage and undefined sanitizer.
bug:https://github.com/apache/trafficserver/issues/9158
Signed-off-by: 0x34d <ajsinghyadav00@gmail.com>
Signed-off-by: 0x34d <ajsinghyadav00@gmail.com>
2022-11-04 11:47:06 -04:00
5b2d1fa9ee
Increase cloud build timeout ( #8924 )
2022-11-04 05:24:25 +00:00
db3f1af4d5
cloud-hypervisor: Add new fuzzer ( #8922 )
...
New fuzzer is added for virtio-console.
Signed-off-by: Bo Chen <chen.bo@intel.com>
Signed-off-by: Bo Chen <chen.bo@intel.com>
2022-11-03 21:44:35 +00:00
1a0f2264a5
Remove cpython2 as it is past EOL. ( #8918 )
2022-11-03 12:58:02 -04:00
184b3563c2
infa: bump fuzz introspector ( #8917 )
...
Fixes: https://github.com/google/oss-fuzz/issues/8913
2022-11-03 09:47:22 -07:00
61fad753f2
Temporary fix for upb ( #8914 )
2022-11-03 10:55:07 -04:00
890953f0a0
libvips: remove libjxl dependency ( #8908 )
...
The image formats we've selected to fuzz test libvips with are typically
those likely to originate from untrusted sources, and this very much
includes the web.
libjxl was added as a dependency of libvips around 18 months ago in
anticipation the JPEG-XL format being adopted for the web. A year ago we
added a couple of the libjxl maintainers to help triage OSS-Fuzz issues
as its inclusion generated a relatively large number of new problems,
including one that was later issued a CVE.
https://bugs.chromium.org/p/oss-fuzz/issues/list?q=libvips%20libjxl&can=1
The libvips maintainers would love for JPEG-XL to succeed as a format
and we hope to add libjxl back soon, but for now we would like to remove
it to help reduce the support overhead.
/cc @jcupitt
2022-11-03 11:31:37 +00:00
95a8398fb8
infra: fuzz-introspector; install matplotlib from binary ( #8912 )
...
This avoids compiling certain parts of matplotlib, which speeds up
runtime of fuzz-introspector runs locally by a significant (~5-10min)
time.
Ref:
https://github.com/ossf/fuzz-introspector/pull/579#issuecomment-1300339783
Ref: https://github.com/ossf/fuzz-introspector/issues/465
Signed-off-by: David Korczynski <david@adalogics.com>
Signed-off-by: David Korczynski <david@adalogics.com>
2022-11-02 12:54:18 -07:00
85117f99af
tensorflow: fix build ( #8786 )
...
Fixes: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51443
Signed-off-by: David Korczynski <david@adalogics.com>
Signed-off-by: David Korczynski <david@adalogics.com>
2022-11-02 12:52:47 -07:00
bc81324c01
Bump Fuzz Introspector ( #8907 )
2022-11-01 21:54:34 -07:00
2ba28dc843
moby: add 2 fuzzers ( #8910 )
...
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-01 23:03:22 +00:00
c12585c056
infa: add python fuzz-introspector support ( #8865 )
...
Adds necessary logic for running fuzz-introspector's Python frontend.
Signed-off-by: David Korczynski <david@adalogics.com>
Signed-off-by: David Korczynski <david@adalogics.com>
2022-11-01 11:51:50 -07:00
75764d734e
[clickhouse] Add more fuzzer targets ( #8897 )
...
This is needed to add a new target in a separate PR in the ClickHouse
repository.
2022-11-01 12:05:30 -04:00
ce7e5b3e2f
cilium: update project.yaml ( #8906 )
2022-11-01 15:40:38 +00:00
14a4566d3c
add new project jwt-verify-lib ( #8898 )
...
Initial integration steps following
https://google.github.io/oss-fuzz/getting-started/accepting-new-projects/ .
Note this is a Google-owned project that is used in production,
primarily via Envoy proxy.
2022-11-01 11:29:29 -04:00
d8a33f3ca8
install go1.17 for KubeEdge when building fuzzers ( #8901 )
...
Signed-off-by: vincentgoat <linguohui1@huawei.com>
install go1.17 for KubeEdge when building fuzzers
Fix issue https://github.com/cncf/cncf-fuzzing/issues/232
cc @AdamKorcz
Signed-off-by: vincentgoat <linguohui1@huawei.com>
2022-11-01 14:02:25 +00:00
e6841e12a2
oracle-py-cx: select port from a range ( #8905 )
...
Fixes: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=52934
2022-11-01 13:01:14 +00:00
f476bfaeca
fabric: pin 3rd-party library ( #8904 )
...
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-01 12:45:43 +00:00
9b40d674b2
containerd: don't do shallow clone ( #8902 )
...
The repo is very small and Containerd needs to access older, stable
versions ad-hoc.
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-01 11:40:04 +00:00
d0e871d13e
bluez: refine set up ( #8903 )
...
The current coverage of fuzz_hci is blocked. The coverage of the project
works, but doesn't show up for fuzz_hci. Am not entirely sure why the
reason is, but this commit should fix it.
Signed-off-by: David Korczynski <david@adalogics.com>
Signed-off-by: David Korczynski <david@adalogics.com>
2022-11-01 10:59:56 +00:00
8a7c79fc36
moby: add fuzzer ( #8899 )
...
Signed-off-by: AdamKorcz <adam@adalogics.com>
Signed-off-by: AdamKorcz <adam@adalogics.com>
2022-11-01 00:20:16 +00:00
3574cd480a
zeek: Prune cc list ( #8851 )
...
This prunes a big number of duplicates out of our cc list, since all of
those people get the security@ mails already.
2022-10-31 18:06:49 -04:00
0cd216682e
[antlr4-java] fix build failure ( #8815 )
...
Fixing fuzzing build error
2022-10-31 14:38:48 -04:00
fce6c049c3
initial intigration of tungstenite ( #8805 )
2022-10-31 14:38:19 -04:00
c57a1712eb
Upgrade Atheris ( #8886 )
...
Fixes #8682
2022-10-31 10:27:27 -07:00
c9545fea73
add aojea to kubernetes project ( #8890 )
2022-10-31 14:22:24 +00:00
b8191ed399
pyrsistent: upate project.yaml ( #8896 )
...
Ref:
https://github.com/tobgu/pyrsistent/issues/255#issuecomment-1296137669
2022-10-31 12:26:25 +00:00
jonathanmetzman