diff options
author | Evgeny Vereshchagin <evvers@ya.ru> | 2019-06-17 19:08:48 +0200 |
---|---|---|
committer | Evgeny Vereshchagin <evvers@ya.ru> | 2019-06-17 22:45:36 +0200 |
commit | 28025ba83923e47ae5f9e7baba22b337d11fcd29 (patch) | |
tree | 843c985b634e762f7ceec9b5da7059674b607256 /travis-ci/managers/fuzzit.sh | |
parent | core: set fs.file-max sysctl to LONG_MAX rather than ULONG_MAX (diff) | |
download | systemd-28025ba83923e47ae5f9e7baba22b337d11fcd29.tar.xz systemd-28025ba83923e47ae5f9e7baba22b337d11fcd29.zip |
travis: turn on all default UBSan checks except for pointer-overflow, object-size and float-cast-overflow
Diffstat (limited to '')
-rwxr-xr-x | travis-ci/managers/fuzzit.sh | 9 |
1 files changed, 4 insertions, 5 deletions
diff --git a/travis-ci/managers/fuzzit.sh b/travis-ci/managers/fuzzit.sh index e6568ec792..313e6c6a0f 100755 --- a/travis-ci/managers/fuzzit.sh +++ b/travis-ci/managers/fuzzit.sh @@ -16,12 +16,11 @@ cd $REPO_ROOT export PATH="$HOME/.local/bin/:$PATH" # We use a subset of https://clang.llvm.org/docs/UndefinedBehaviorSanitizer.html#available-checks instead of "undefined" -# because that's how the fuzzers are built on OSS-Fuzz: https://github.com/google/oss-fuzz/blob/a3c935fe9ca7f82bafa520731525e1cc38acf650/infra/base-images/base-builder/Dockerfile#L33-L34 -# and we know they don't fail there. We can turn on everything else later after the issues mentioned in -# https://github.com/systemd/systemd/pull/12771#issuecomment-502139157 are sorted out at least. -# TODO: "null" should probably be added too. On OSS-Fuzz it was turned off in https://github.com/google/oss-fuzz/pull/674 +# because our fuzzers crash with "pointer-overflow","object-size" and "float-cast-overflow": +# https://github.com/systemd/systemd/pull/12771#issuecomment-502139157 +# https://github.com/systemd/systemd/pull/12812#issuecomment-502780455 # TODO: figure out what to do about unsigned-integer-overflow: https://github.com/google/oss-fuzz/issues/910 -export SANITIZER="address -fsanitize=array-bounds,bool,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,return,shift,signed-integer-overflow,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=array-bounds,bool,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,return,shift,signed-integer-overflow,vla-bound,vptr" +export SANITIZER="address -fsanitize=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,vla-bound,vptr" tools/oss-fuzz.sh FUZZING_TYPE=${1:-sanity} |