Mercurial > hg
comparison contrib/fuzz/mpatch_corpus.py @ 38303:1fb2510cf8c8
bitmanipulation: fix undefined behavior in bit shift in getbe32
OSS-Fuzz caught this in its ubsan mode[0]. I'm not worried about a
security issue here because in practice this should work out the way
we naively expected, we're just making things explicit to the
compiler with the casts.
0: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8876
Differential Revision: https://phab.mercurial-scm.org/D3729
author | Augie Fackler <augie@google.com> |
---|---|
date | Wed, 13 Jun 2018 10:24:44 -0400 |
parents | 99ab72b867b7 |
children | 2372284d9457 |
comparison
equal
deleted
inserted
replaced
38300:74b4a54002ec | 38303:1fb2510cf8c8 |
---|---|
76 print('skipping seed file from repo data') | 76 print('skipping seed file from repo data') |
77 # Automatically discovered by running the fuzzer | 77 # Automatically discovered by running the fuzzer |
78 zf.writestr( | 78 zf.writestr( |
79 "mpatch_decode_old_overread", "\x02\x00\x00\x00\x02\x00\x00\x00" | 79 "mpatch_decode_old_overread", "\x02\x00\x00\x00\x02\x00\x00\x00" |
80 ) | 80 ) |
81 # https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8876 | |
82 zf.writestr( | |
83 "mpatch_ossfuzz_getbe32_ubsan", | |
84 "\x02\x00\x00\x00\x0c \xff\xff\xff\xff ") | |
81 zf.writestr( | 85 zf.writestr( |
82 "mpatch_apply_over_memcpy", | 86 "mpatch_apply_over_memcpy", |
83 '\x13\x01\x00\x05\xd0\x00\x00\x00\x00\x00\x00\x00\x00\n \x00\x00\x00' | 87 '\x13\x01\x00\x05\xd0\x00\x00\x00\x00\x00\x00\x00\x00\n \x00\x00\x00' |
84 '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00' | 88 '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00' |
85 '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\x00\x00\x00\x00\x00' | 89 '\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xff\xff\x00\x00\x00\x00\x00' |