History log of /PHP-8.2/sapi/fuzzer/fuzzer-execute.c (Results 1 – 11 of 11)
Revision (<<< Hide revision tags) (Show revision tags >>>) Date Author Comments
# 9d0c0186 22-Sep-2021 Nikita Popov

Make sure dummy file for fuzzing exists


# cd4243dd 01-Sep-2020 Nikita Popov

Add fuzzer for function JIT

This is a basic fuzzer for the function JIT, which looks for
crashes and sanitizer violations only, and does not try to detect
differing behavior yet.


# 93a88a1d 26-Aug-2021 Nikita Popov

Limit internal function args during fuzzing

Restrict the size of string arguments in the hope of avoiding some
very common timeouts with pcre. If this doesn't work, the functions
nee

Limit internal function args during fuzzing

Restrict the size of string arguments in the hope of avoiding some
very common timeouts with pcre. If this doesn't work, the functions
need to be disabled entirely.

show more ...


# cae80ef5 26-Aug-2021 Nikita Popov

Limit internal function calls in execute fuzzer

Infinite recursion might occur purely through internal functions,
without reentering the executor.


# ef938d5e 07-May-2021 Nikita Popov

Revert "Disable destructors on fuzzer bailout"

This reverts commit ed33262dbbc9a39c43c5de75be6aa89c1a3a71a8.

With adjusted bailout handling in fibers, this should no longer
be n

Revert "Disable destructors on fuzzer bailout"

This reverts commit ed33262dbbc9a39c43c5de75be6aa89c1a3a71a8.

With adjusted bailout handling in fibers, this should no longer
be necessary.

show more ...


# ed33262d 06-May-2021 Nikita Popov

Disable destructors on fuzzer bailout

This is what we normally do for fatal errors. The reason why this
became necessary now, is that a bailout can switch from a fiber
back to the ma

Disable destructors on fuzzer bailout

This is what we normally do for fatal errors. The reason why this
became necessary now, is that a bailout can switch from a fiber
back to the main stack. In that case we do not want to try
destroying the fiber.

Fixes oss-fuzz #33917.

show more ...


# 01b3fc03 06-May-2021 KsaR

Update http->https in license (#6945)

1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https.
2. Update few license 3.0 to 3.01 as

Update http->https in license (#6945)

1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https.
2. Update few license 3.0 to 3.01 as 3.0 states "php 5.1.1, 4.1.1, and earlier".
3. In some license comments is "at through the world-wide-web" while most is without "at", so deleted.
4. fixed indentation in some files before |

show more ...


# af0ba0b2 07-Sep-2020 Nikita Popov

Reduce input size limit in execute fuzzer

We only have 4 Zend test cases > 8k. Large inputs tend to just
make things slower.


# 9475bcbe 07-Sep-2020 Nikita Popov

Avoid large eval inputs in fuzzer

While we limit the size of the main compilation input, the size
of eval inputs was not limited. This could result in stack
overflows, e.g. oss-fuzz

Avoid large eval inputs in fuzzer

While we limit the size of the main compilation input, the size
of eval inputs was not limited. This could result in stack
overflows, e.g. oss-fuzz #25464.

show more ...


# f0dfdca0 28-Aug-2020 Nikita Popov

Fix execute fuzzer on i386

Opcode handlers use the FASTCALL calling convention...


Revision tags: php-7.3.13RC1, php-7.2.26RC1, php-7.4.0, php-7.2.25, php-7.3.12, php-7.4.0RC6, php-7.3.12RC1, php-7.2.25RC1, php-7.4.0RC5, php-7.1.33, php-7.2.24, php-7.3.11, php-7.4.0RC4
# c29838c5 09-Oct-2019 Nikita Popov

Add experimental "execute" fuzzer

This is an end-to-end fuzzer that executes arbitrary PHP code.

We replace the executor with a finite-step executor to avoid
getting stuck in lo

Add experimental "execute" fuzzer

This is an end-to-end fuzzer that executes arbitrary PHP code.

We replace the executor with a finite-step executor to avoid
getting stuck in loops or recursion.

show more ...