mirror of
https://github.com/curl/curl.git
synced 2024-12-03 06:20:31 +08:00
a14f7152ce
If the default write callback is used and no destination has been set, a NULL pointer would be passed to fwrite()'s 4th argument. OSS-fuzz bug https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3327 (not publicly open yet) Detected by OSS-fuzz Closes #1874 |
||
---|---|---|
.. | ||
curl_fuzz_data | ||
curl_fuzzer.cc | ||
curl_fuzzer.h | ||
generate_corpus.py | ||
Makefile.am | ||
Makefile.inc | ||
README | ||
standalone_fuzz_target_runner.cc | ||
testinput.h |
Fuzz tests ========== The goal is to add tests for *ALL* protocols supported in libcurl. Building the fuzz target ======================== From the CURL root directory: export CC=clang-5.0 export CXX=clang++-5.0 export CFLAGS="-fsanitize=address -fsanitize-address-use-after-scope -fsanitize-coverage=trace-pc-guard,trace-cmp" export CXXFLAGS="-fsanitize=address -fsanitize-address-use-after-scope -fsanitize-coverage=trace-pc-guard,trace-cmp -stdlib=libc++" ./configure --disable-shared --enable-debug --enable-maintainer-mode make -sj cd tests/fuzz (optional) export LIB_FUZZING_ENGINE=<path to libFuzzer.a> make check