#
b45e7a61 |
| 22-Jan-2024 |
Dmitry Stogov |
Wrap cleanup function call with zend_try. Fizes oss-fuzz #65911 |
#
b5db594f |
| 27-Apr-2022 |
George Peter Banyard |
Refacto php_module_startup() (#8303) It only ever uses at most 1 additional modules |
#
b7409d3a |
| 22-Sep-2021 |
Nikita Popov |
Disable chdir in execute fuzzers We don't want the current working directory to change during fuzzing, as that breaks corpus access unless an absolute path is used. I'm not sure why
Disable chdir in execute fuzzers We don't want the current working directory to change during fuzzing, as that breaks corpus access unless an absolute path is used. I'm not sure why this issue never came up before.
show more ...
|
#
cd4243dd |
| 01-Sep-2020 |
Nikita Popov |
Add fuzzer for function JIT This is a basic fuzzer for the function JIT, which looks for crashes and sanitizer violations only, and does not try to detect differing behavior yet. |
#
0f926815 |
| 30-Aug-2021 |
Nikita Popov |
Fix strict-prototypes warning |
#
01b3fc03 |
| 06-May-2021 |
KsaR |
Update http->https in license (#6945) 1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https. 2. Update few license 3.0 to 3.01 as
Update http->https in license (#6945) 1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https. 2. Update few license 3.0 to 3.01 as 3.0 states "php 5.1.1, 4.1.1, and earlier". 3. In some license comments is "at through the world-wide-web" while most is without "at", so deleted. 4. fixed indentation in some files before |
show more ...
|
#
dfe8dbdc |
| 15-Apr-2021 |
Nikita Popov |
Destroy file handle earlier in execute fuzzer I'm not quite sure why this is relevant, but if matches what other code does and fixes oss-fuzz #32517. |
#
5da23eb4 |
| 26-Mar-2021 |
Nikita Popov |
Free static variables in execute fuzzer Fixes a leak in the seed corpus. |
#
c732ab40 |
| 16-Mar-2021 |
Dmitry Stogov |
Change Zend Stream API to use zend_string* instead of char*. This allows to eliminate re-calculation of string lenght and hash value. See the detailed list of changes in UPGRADING.INTERN
Change Zend Stream API to use zend_string* instead of char*. This allows to eliminate re-calculation of string lenght and hash value. See the detailed list of changes in UPGRADING.INTERNALS.
show more ...
|
#
3e01f5af |
| 15-Jan-2021 |
Nikita Popov |
Replace zend_bool uses with bool We're starting to see a mix between uses of zend_bool and bool. Replace all usages with the standard bool type everywhere. Of course, zend_bool
Replace zend_bool uses with bool We're starting to see a mix between uses of zend_bool and bool. Replace all usages with the standard bool type everywhere. Of course, zend_bool is retained as an alias.
show more ...
|
#
2f95af99 |
| 04-Sep-2020 |
Nikita Popov |
Disable InfiniteIterator class while fuzzing The combination of LimitIterator and InfiniteIterator can cause effectively infinite loops that bypass the executor step limit. |
#
05cd31ef |
| 02-Sep-2020 |
Nikita Popov |
Extend function blacklist in execute fuzzer Add pfsockopen and stream_socket_server. |
#
bb1d0319 |
| 27-Aug-2020 |
Nikita Popov |
Fix typo This was supposed to include the header, not the C file... |
#
a88226d1 |
| 27-Aug-2020 |
Nikita Popov |
Generate execute corpus in generate_all.php And add crypt() to the function blacklist, it can be very slow. |
Revision tags: php-7.3.13RC1, php-7.2.26RC1, php-7.4.0, php-7.2.25, php-7.3.12, php-7.4.0RC6, php-7.3.12RC1, php-7.2.25RC1, php-7.4.0RC5, php-7.1.33, php-7.2.24, php-7.3.11, php-7.4.0RC4 |
|
#
c29838c5 |
| 09-Oct-2019 |
Nikita Popov |
Add experimental "execute" fuzzer This is an end-to-end fuzzer that executes arbitrary PHP code. We replace the executor with a finite-step executor to avoid getting stuck in lo
Add experimental "execute" fuzzer This is an end-to-end fuzzer that executes arbitrary PHP code. We replace the executor with a finite-step executor to avoid getting stuck in loops or recursion.
show more ...
|
#
b0b83617 |
| 30-Jun-2020 |
Nikita Popov |
Extract some common fuzzer code |
#
88355dd3 |
| 07-Jun-2020 |
twosee |
Constify char * arguments of APIs Closes GH-5676. |
#
dabc28d1 |
| 21-Dec-2019 |
Christoph M. Becker |
Fix #78880: Spelling error report We fix the most often occuring typos according to a recent codespell report[1] in tests, code comments and documentation. [1] <https://fossies.
Fix #78880: Spelling error report We fix the most often occuring typos according to a recent codespell report[1] in tests, code comments and documentation. [1] <https://fossies.org/linux/test/php-src-master-f8f48ce.191129.tar.gz/codespell.html>.
show more ...
|
#
991a0250 |
| 02-Nov-2019 |
Nikita Popov |
Reduce oniguruma retry limit in fuzzer For some patterns matching may take quite long even at retry limit 100000 and it seems that this is not easy to fix on the oniguruma side.
Reduce oniguruma retry limit in fuzzer For some patterns matching may take quite long even at retry limit 100000 and it seems that this is not easy to fix on the oniguruma side. Reduce the retry limit by another factor of 10 in hope of reducing timeouts.
show more ...
|
#
bd21e202 |
| 08-Oct-2019 |
Nikita Popov |
Reduce oniguruma limits in fuzzing sapi The defaults are fairly conservative and may still take quite a bit to match a single expression. Reduce them by a factor of 10x to speed up f
Reduce oniguruma limits in fuzzing sapi The defaults are fairly conservative and may still take quite a bit to match a single expression. Reduce them by a factor of 10x to speed up fuzzing.
show more ...
|
Revision tags: php-7.3.11RC1, php-7.2.24RC1, php-7.4.0RC3 |
|
#
7e295da8 |
| 26-Sep-2019 |
Nikita Popov |
Limit max length for parser fuzzer We're getting some very large inputs (~500KB) on OSS-Fuzz, which slot down performance a lot. Let's try limiting this, starting with a still fairly
Limit max length for parser fuzzer We're getting some very large inputs (~500KB) on OSS-Fuzz, which slot down performance a lot. Let's try limiting this, starting with a still fairly large value of 64KB. Also remove the max_execution_time limit, so that slow test cases cause a genuine libfuzzer timeout and we may investigate them.
show more ...
|
#
5d6e923d |
| 24-Sep-2019 |
Gabriel Caruso |
Remove mention of PHP major version in Copyright headers Closes GH-4732. |
Revision tags: php-7.2.23, php-7.3.10, php-7.4.0RC2 |
|
#
c4e2ca60 |
| 13-Sep-2019 |
Nikita Popov |
Various improvements to fuzzer SAPIs |
Revision tags: php-7.2.23RC1, php-7.3.10RC1, php-7.4.0RC1, php-7.1.32, php-7.2.22, php-7.3.9, php-7.4.0beta4, php-7.2.22RC1, php-7.3.9RC1, php-7.4.0beta2, php-7.1.31 |
|
#
41f45647 |
| 31-Jul-2019 |
Stanislav Malyshev |
Add fuzzer SAPIs to the core |