diff options
author | 2021-10-08 17:50:56 +0200 | |
---|---|---|
committer | 2021-10-08 15:50:56 +0000 | |
commit | 7b1e0cbc8c280e37ddb87851b686df3bc8ae5c61 (patch) | |
tree | 2cd6a98425ad09ba0ef3fe6593763a8677582134 /projects/php/Dockerfile | |
parent | 7f0580c141cfab380687c29a09ddae718aba1e5c (diff) |
[php] Disable mbstring fuzzer (#6572)
The mbstring fuzzer is really a fuzzer for the oniguruma library
through the PHP mbregex extension. This was important at the time
as the upstream oniguruma project did not have fuzzing and we were
bundling the library (and thus responsible for security backports).
Nowadays we no longer bundle this library and the upstream project
does their own fuzzing, including integration with oss-fuzz:
https://github.com/google/oss-fuzz/tree/master/projects/oniguruma
I haven't really done anything with reports from this fuzzer in a
long time, as issues get addressed upstream. As such, I think it's
safe to drop it on the PHP side.
Diffstat (limited to 'projects/php/Dockerfile')
-rw-r--r-- | projects/php/Dockerfile | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/projects/php/Dockerfile b/projects/php/Dockerfile index a2cb115e..eaae4fd4 100644 --- a/projects/php/Dockerfile +++ b/projects/php/Dockerfile @@ -18,6 +18,5 @@ FROM gcr.io/oss-fuzz-base/base-builder RUN apt-get update && \ apt-get install -y autoconf automake libtool bison re2c pkg-config RUN git clone --depth 1 --branch master https://github.com/php/php-src.git php-src -RUN git clone https://github.com/kkos/oniguruma.git php-src/oniguruma WORKDIR php-src COPY build.sh *.options $SRC/ |