diff options
| author | Evgeny Vereshchagin <evvers@ya.ru> | 2019-06-17 19:08:48 +0200 |
|---|---|---|
| committer | Evgeny Vereshchagin <evvers@ya.ru> | 2019-06-17 23:45:36 +0300 |
| commit | 28025ba83923e47ae5f9e7baba22b337d11fcd29 (patch) | |
| tree | 843c985b634e762f7ceec9b5da7059674b607256 /travis-ci | |
| parent | 6e2f78948403a4cce45b9e34311c9577c624f066 (diff) | |
| download | systemd-28025ba83923e47ae5f9e7baba22b337d11fcd29.tar.gz | |
travis: turn on all default UBSan checks except for pointer-overflow, object-size and float-cast-overflow
Diffstat (limited to 'travis-ci')
| -rwxr-xr-x | travis-ci/managers/fuzzit.sh | 9 |
1 files changed, 4 insertions, 5 deletions
diff --git a/travis-ci/managers/fuzzit.sh b/travis-ci/managers/fuzzit.sh index e6568ec792..313e6c6a0f 100755 --- a/travis-ci/managers/fuzzit.sh +++ b/travis-ci/managers/fuzzit.sh @@ -16,12 +16,11 @@ cd $REPO_ROOT export PATH="$HOME/.local/bin/:$PATH" # We use a subset of https://clang.llvm.org/docs/UndefinedBehaviorSanitizer.html#available-checks instead of "undefined" -# because that's how the fuzzers are built on OSS-Fuzz: https://github.com/google/oss-fuzz/blob/a3c935fe9ca7f82bafa520731525e1cc38acf650/infra/base-images/base-builder/Dockerfile#L33-L34 -# and we know they don't fail there. We can turn on everything else later after the issues mentioned in -# https://github.com/systemd/systemd/pull/12771#issuecomment-502139157 are sorted out at least. -# TODO: "null" should probably be added too. On OSS-Fuzz it was turned off in https://github.com/google/oss-fuzz/pull/674 +# because our fuzzers crash with "pointer-overflow","object-size" and "float-cast-overflow": +# https://github.com/systemd/systemd/pull/12771#issuecomment-502139157 +# https://github.com/systemd/systemd/pull/12812#issuecomment-502780455 # TODO: figure out what to do about unsigned-integer-overflow: https://github.com/google/oss-fuzz/issues/910 -export SANITIZER="address -fsanitize=array-bounds,bool,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,return,shift,signed-integer-overflow,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=array-bounds,bool,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,return,shift,signed-integer-overflow,vla-bound,vptr" +export SANITIZER="address -fsanitize=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,unsigned-integer-overflow,vla-bound,vptr -fno-sanitize-recover=alignment,array-bounds,bool,bounds,builtin,enum,float-divide-by-zero,function,integer-divide-by-zero,nonnull-attribute,null,return,returns-nonnull-attribute,shift,signed-integer-overflow,unreachable,vla-bound,vptr" tools/oss-fuzz.sh FUZZING_TYPE=${1:-sanity} |