kmx git

Commit	Date	Message
c6c6d8af	2024-12-11T16:24:23	fuzz: Mutate fuzz data chunks separately Implement a custom mutator that takes a list of fixed-size chunks which are mutated with a given probability. This makes sure that values like parser options or failure position are mutated regularly even as the fuzz data grows large. Values can also be adjusted temporarily to make the fuzzer focus on failure injection, for example. Thanks to David Kilzer for the idea.
f5257d92	2024-12-11T16:24:43	fuzz: Fix failure injection in schema fuzzer
fd359a7e	2024-12-10T15:54:12	fuzz: Start to fuzz XML Schema validator
9f652e57	2024-11-25T19:41:33	fuzz: Inject IO failures We use the same counter for injecting malloc and IO failures. This mostly renames several functions and variables.
780e432a	2024-06-11T16:58:09	fuzz: Move to per-context error handler
116d8c01	2024-06-11T15:48:32	fuzz: Move to per-context resource loader
caa8bb38	2024-05-19T19:31:54	fuzz: Move back to xmlSetExternalEntityLoader xmlParserInputBufferCreateFilenameDefault can't report malloc failures.
b3cb41be	2024-05-13T12:18:08	fuzz: Add xmllint fuzzer
30d83977	2024-01-04T15:18:14	fuzz: Disable catalogs The catalogs API doesn't report OOM errors. It's basically impossible to use it safely in its current form.
e115194e	2023-12-10T18:32:21	fuzz: Check malloc failure reports in XML fuzzers
42322eba	2023-03-08T13:59:03	fuzz: Inject random malloc failures Fixes #344.
85c817a2	2021-02-22T21:28:21	Improve fuzzer stability - Add more calls to xmlInitializeCatalog. - Call xmlResetLastError after fuzzing each input.
9086988f	2020-12-16T15:41:52	Enforce maximum length of fuzz input Remove the libfuzzer max_len option which doesn't apply to other fuzzing engines. Enforce the maximum length directly in the fuzz targets. For the xml target, lower the maximum when expanding entities to avoid timeout and OOM errors.
eac1c7e2	2020-06-21T14:42:00	Fuzz target for XML Schemas This only tests the schema parser for now.

c6c6d8af

2024-12-11T16:24:23

fuzz: Mutate fuzz data chunks separately Implement a custom mutator that takes a list of fixed-size chunks which are mutated with a given probability. This makes sure that values like parser options or failure position are mutated regularly even as the fuzz data grows large. Values can also be adjusted temporarily to make the fuzzer focus on failure injection, for example. Thanks to David Kilzer for the idea.

f5257d92

2024-12-11T16:24:43

fuzz: Fix failure injection in schema fuzzer

fd359a7e

2024-12-10T15:54:12

fuzz: Start to fuzz XML Schema validator

9f652e57

2024-11-25T19:41:33

fuzz: Inject IO failures We use the same counter for injecting malloc and IO failures. This mostly renames several functions and variables.

780e432a

2024-06-11T16:58:09

fuzz: Move to per-context error handler

116d8c01

2024-06-11T15:48:32

fuzz: Move to per-context resource loader

caa8bb38

2024-05-19T19:31:54

fuzz: Move back to xmlSetExternalEntityLoader xmlParserInputBufferCreateFilenameDefault can't report malloc failures.

b3cb41be

2024-05-13T12:18:08

fuzz: Add xmllint fuzzer

30d83977

2024-01-04T15:18:14

fuzz: Disable catalogs The catalogs API doesn't report OOM errors. It's basically impossible to use it safely in its current form.

e115194e

2023-12-10T18:32:21

fuzz: Check malloc failure reports in XML fuzzers

42322eba

2023-03-08T13:59:03

fuzz: Inject random malloc failures Fixes #344.

85c817a2

2021-02-22T21:28:21

Improve fuzzer stability - Add more calls to xmlInitializeCatalog. - Call xmlResetLastError after fuzzing each input.

9086988f

2020-12-16T15:41:52

Enforce maximum length of fuzz input Remove the libfuzzer max_len option which doesn't apply to other fuzzing engines. Enforce the maximum length directly in the fuzz targets. For the xml target, lower the maximum when expanding entities to avoid timeout and OOM errors.

eac1c7e2

2020-06-21T14:42:00

Fuzz target for XML Schemas This only tests the schema parser for now.

kc3-lang/libxml2/fuzz/schema.c

fuzz/schema.c

Log