archived-php-src

mirror of https://github.com/php/php-src.git synced 2026-03-28 02:02:32 +01:00

Author	SHA1	Message	Date
Nikita Popov	318fe06042	Create memory stream in exif fuzzer At least one segfault observed because temp file creation failed. Switch to using a memory stream, which should be more robust, and more efficient for that matter.	2020-02-19 10:24:12 +01:00
Christoph M. Becker	dabc28d182	Fix #78880 : Spelling error report We fix the most often occuring typos according to a recent codespell report[1] in tests, code comments and documentation. [1] <https://fossies.org/linux/test/php-src-master-f8f48ce.191129.tar.gz/codespell.html>.	2019-12-21 11:58:00 +01:00
Nikita Popov	7df8f952ae	Further reduce parse depth limit in mbstring fuzzer Depth limit of 1024 still causes optimize_node stack overflows when running under asan.	2019-12-14 22:43:15 +01:00
Nikita Popov	9de4f87aca	Limit parse depth in mbstring fuzzer The default depth of 4096 is large enough to cause optimize_node stack overflows under asan. Reduce to 1024.	2019-12-13 16:09:28 +01:00
Nikita Popov	11649a6d77	Reduce size limit in parser fuzzer Avoid stack overflows during compilation of deeply nested expressions.	2019-11-07 21:20:34 +01:00
Nikita Popov	991a0250b5	Reduce oniguruma retry limit in fuzzer For some patterns matching may take quite long even at retry limit 100000 and it seems that this is not easy to fix on the oniguruma side. Reduce the retry limit by another factor of 10 in hope of reducing timeouts.	2019-11-02 10:40:41 +01:00
Nikita Popov	f1aff654be	Use php stream in exif fuzzer This has the main benefit that we don't go through the realpath cache, which will cause leak checking to be disabled.	2019-10-10 12:33:15 +02:00
Nikita Popov	bd21e202b9	Reduce oniguruma limits in fuzzing sapi The defaults are fairly conservative and may still take quite a bit to match a single expression. Reduce them by a factor of 10x to speed up fuzzing.	2019-10-08 17:38:49 +02:00
Fabien Villepinte	76c8f2ed34	Fix regex in generate_parser_corpus.php The next section after --FILE-- is not necessarily --EXPECT--. Accept any section. Closes GH-4770.	2019-10-02 16:56:41 +02:00
Nikita Popov	872a759f88	Limit input size in exif fuzzer Probably still too much...	2019-10-01 18:29:23 +02:00
Nikita Popov	4d49ec208e	Add --enable-fuzzer-msan flag To build fuzzers with memory sanitizer.	2019-10-01 13:04:47 +02:00
Nikita Popov	15761ef359	Pass mode to open() in exif fuzzer Funny how despite all those sanitizers running, nothing ever caught this...	2019-09-30 18:23:47 +02:00
Nikita Popov	61f8f68a79	Make fuzzing sapi i386 compatible * Avoid an unnecessary -lstdc++ dependency. It's not going to be used in the end anyway, and is an unnecessary hassle to set up. * Use $LIB_FUZZING_ENGINE instead of hardcoding -lFuzzingEngine.	2019-09-27 23:58:48 +02:00
Nikita Popov	7e295da81c	Limit max length for parser fuzzer We're getting some very large inputs (~500KB) on OSS-Fuzz, which slot down performance a lot. Let's try limiting this, starting with a still fairly large value of 64KB. Also remove the max_execution_time limit, so that slow test cases cause a genuine libfuzzer timeout and we may investigate them.	2019-09-26 10:45:47 +02:00
Gabriel Caruso	5d6e923d46	Remove mention of PHP major version in Copyright headers Closes GH-4732.	2019-09-25 14:51:43 +02:00
Nikita Popov	1fe47ad233	Add new entries for exif and unserialize fuzzing corpus	2019-09-24 12:34:30 +02:00
Nikita Popov	418d243e37	Change instructions to use oniguruma from git Some bugs are already fixed there. [ci skip]	2019-09-18 14:56:25 +02:00
Nikita Popov	d7b4cdff3f	Add instructions for building an instrumented libonig [ci skip]	2019-09-18 12:49:42 +02:00
Nikita Popov	c1adb7a74e	Move scripts out of corpus/ directory	2019-09-16 20:18:29 +02:00
Nikita Popov	c4e2ca607f	Various improvements to fuzzer SAPIs	2019-09-16 16:04:10 +02:00
Stanislav Malyshev	41f45647f9	Add fuzzer SAPIs to the core	2019-09-16 16:04:09 +02:00

21 Commits