| Commit message (Collapse) | Author | Age |
| |
|
| |
|
|
|
| |
And once the security team members changed, we have to send new PR to change this.
|
| |
|
|
|
|
| |
We don't need minijail tooling anymore since we aren't using it
on OSS-Fuzz.
|
|
|
|
| |
Don't install recommended packages if it means installing an
entire gcc toolchain. We don't need it in the runner.
|
|
|
|
|
|
| |
Reduce cifuzz-base size from 846MB to 444MB.
1. Don't install parts of docker that aren't necessary.
2. Use .dockerignore properly.
|
|
|
|
|
| |
* libfido2: update libcbor to v0.8.0
* libfido2: add new zlib dependency
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
The honggfuzz fuzz targets are failing the build checks for reasons
unknown. Disabling for now because I don't know how to debug it.
|
|
|
|
|
|
|
|
| |
* Fixes go coverage with modules
* Golang coverage html report turning off modules
Otherwise, we get the error
working directory is not part of a module
|
| |
|
|
|
|
|
| |
Go needs the toolchain for now, so add it back to base-runner.
We don't actually need the rust toolchain so get rid of it
(saving about 1GB).
|
|
|
|
|
| |
* Rust coverage test
* Workaround to get rust coverage for Suricata
|
|
|
|
|
| |
* [cryptofuzz] Fix build
* [cryptofuzz] Trigger CI
|
|
|
|
|
|
|
|
|
|
| |
Builds are currently broken since running libtiff ./autogen.sh requires
wget
```
autoconf
echo ./autogen.sh: getting config.guess...
./autogen.sh: getting config.guess...
wget -q --timeout=5 -O config/config.guess.tmp https://git.savannah.gnu.org/cgit/config.git/plain/config.guess
```
|
| |
|
|
|
| |
This should fix cifuzz which replaces the checkout
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* output afl++ setup
* update commit id
* update afl++ commit id
* asan + cmplog fix
* update commit id
* update and enhance afl++
* update afl++ commit id, better run asan options
* fix linter
* add debug_afl script
* Update debug_afl
* Update compile_afl
* fix for karchive
* put debug_afl in the docker container
* asan poison fix
Co-authored-by: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* [freeimage] Use the SVN repo instead of the latest source archive.
Requested in https://github.com/google/oss-fuzz/pull/2606#issuecomment-588533038
* fix the path
* fix path again
* more fixes
* should work now!
* test locally
|
|
|
|
|
|
|
| |
For the CMake build, build all dependencies as static libraries first.
To automate this, the Dockerfile uses the Mussels tool.
The HAVE_MMAP variable is explicitly disabled so that malloc is used in
place of mmap, which will yield better fuzzing results.
|
|
|
|
|
|
|
|
|
|
|
|
| |
It seems that due to some recent change in `BUILD` rules, `bazel`
creates a copy of the code tree under
`bazel-tensorflow/external/org_tensorflow` symlink. However, the tree
contains a `bazel-tensorflow` symlink so we get to an infinite symlink
expansion issue. This breaks coverage build.
The fix is simple: before copying `bazel-tensorflow/external` to
`${OUT}` in coverage builds, remove `org_tensorflow` symlink. This is
not an issue for the coverage build since we copy the entire source tree
to the coverage directory in a previous step.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* [teleport] Initial integration
* Minor update to run tests again
* Remove debugging things
* Removed an unfinished file
* Small nit
* Added maintainers
* Update Dockerfile
* Update build.sh
* Update project.yaml
* Updated licenses
Co-authored-by: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
|
| |
|
| |
|
|
|
| |
Related: https://github.com/google/oss-fuzz/issues/5178
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* output afl++ setup
* update commit id
* update afl++ commit id
* asan + cmplog fix
* update commit id
* update and enhance afl++
* update afl++ commit id, better run asan options
* fix linter
* add debug_afl script
* Update debug_afl
* Update compile_afl
* fix for karchive
* put debug_afl in the docker container
Co-authored-by: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
|
|
|
|
|
| |
* add an extra maintainer
* add main_repo line
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
(#5304)
To make that possible these things were also done:
* Rename variables for clarity.
* Rename functions to separate them from jbig2dec's own allocator API.
* Consistently use size_t for all memory statistics.
* Add helper function for checking peak memory use.
* Add helper function for when limit is reached.
* Add helper function for when allocations fail.
* Add helper function for memory statis at end of run (including leak check).
This will help with fixing jbig2dec issue 21675 reported by OSS-fuzz.
|
|
|
|
|
|
| |
Reduce image size by:
1. Not installing go toolchain in final image. Build go tools in
seperate image that doesn't become base-runner.
2. Download the JVM zip in the same step we remove it.
|
| |
|
| |
|
| |
|
|
|
| |
Co-authored-by: Damien Miller <djm@google.com>
|
|
|
|
|
| |
Precompile AFL like we already do for honggfuzz.
This saves about a minute in compilation time of AFL targets by doing it in base-builder
It only adds about 30 MB to the image size.
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Reduce build time by doing the following:
1. Building the second stage clang build with a clang binary we download
from chromium.
2. Changing NPROC to be half of the cores instead of assuming it's 16
cores. This still addresses the OOM when building on GCB but speeds up
local building.
3. Don't install recommended packages and use --depth 1 when possible
(very minor improvements compared to the above).
In all this reduces local build time of base-clang from 32 minutes
to 11 minutes.
Because build times are reduced, it will be easier to
iteratively develop changes needed for #5170
|
| |
|
|
|
| |
Also add tests.
|
|
|
| |
The current hypothesis example is not actually copied into the container. This PR fixes it so the fuzzer builds.
|
|
|
|
| |
We aren't planning on suppoting TSAN on ClusterFuzz.
But we can support in CIFuzz since Skia wants it.
|
|
|
|
|
| |
* [teleport] Initial integration
* Minor update to run tests again
|