Asmod4n
diff --git a/‎.gitignore‎
Lines changed: 1 addition & 3 deletions b/‎.gitignore‎
Lines changed: 1 addition & 3 deletions
diff --git a/‎build_config.rb‎
Lines changed: 2 additions & 1 deletion b/‎build_config.rb‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎fuzz/Rakefile‎
Lines changed: 36 additions & 0 deletions b/‎fuzz/Rakefile‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎fuzz/bintest/mruby-cbor-fuzzer.rb‎
Lines changed: 66 additions & 0 deletions b/‎fuzz/bintest/mruby-cbor-fuzzer.rb‎
Lines changed: 66 additions & 0 deletions
diff --git a/‎fuzz/build_config.rb‎
Lines changed: 12 additions & 0 deletions b/‎fuzz/build_config.rb‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎fuzz/cbor.dict‎
Lines changed: 109 additions & 0 deletions b/‎fuzz/cbor.dict‎
Lines changed: 109 additions & 0 deletions
diff --git a/‎fuzz/corpus/0007d2f56f26728e2eedc0d4a43d80936ec63d30‎
Lines changed: 1 addition & 0 deletions b/‎fuzz/corpus/0007d2f56f26728e2eedc0d4a43d80936ec63d30‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎fuzz/corpus/000cdc0ec80762c7fbee407b6ce944a5090a66ea‎
724 Bytes b/‎fuzz/corpus/000cdc0ec80762c7fbee407b6ce944a5090a66ea‎
724 Bytes
diff --git a/‎fuzz/corpus/000e253430cff89957a86c5b5df7a1878ae49364‎
1.17 KB b/‎fuzz/corpus/000e253430cff89957a86c5b5df7a1878ae49364‎
1.17 KB
diff --git a/‎fuzz/corpus/000f0fe646ec7b927d032baca6bbbd96333e98c5‎
54 Bytes b/‎fuzz/corpus/000f0fe646ec7b927d032baca6bbbd96333e98c5‎
54 Bytes
@@ -58,6 +58,4 @@ mruby
 .cache
 build_config.rb.lock
 compile_commands.json
-/test.rb
-test2.rb
-twitter.json
+findings
@@ -12,7 +12,8 @@ def for_windows?
     conf.cc.defines  << 'MRB_UTF8_STRING'
     conf.cxx.defines << 'MRB_UTF8_STRING'
     conf.enable_test
-    conf.gembox 'default'
+    conf.gem core: 'mruby-bigint'
+    conf.gem core: 'mruby-bin-mruby'
     #conf.cc.flags << '-O3' << '-march=native'
     #conf.cxx.flags << '-O3' << '-march=native'
     conf.gem github: 'Asmod4n/mruby-benchmark-plus', branch: "main"
 
@@ -0,0 +1,36 @@
+require 'rake'
+require 'fileutils'
+
+MRUBY_CONFIG_PATH = File.expand_path(ENV["MRUBY_CONFIG"] || "build_config.rb")
+
+file :mruby do
+  unless File.directory?('mruby')
+    sh "git clone --depth=1 https://github.com/mruby/mruby.git"
+  end
+end
+
+desc "compile binary"
+task :compile => :mruby do
+  Dir.chdir("mruby") do
+    ENV["MRUBY_CONFIG"] = MRUBY_CONFIG_PATH
+    sh "rake all"
+  end
+end
+
+desc "test"
+task :test => :mruby do
+  Dir.chdir("mruby") do
+    ENV["MRUBY_CONFIG"] = MRUBY_CONFIG_PATH
+    sh "rake all test"
+  end
+end
+
+desc "cleanup"
+task :clean do
+  Dir.chdir("mruby") do
+    ENV["MRUBY_CONFIG"] = MRUBY_CONFIG_PATH
+    sh "rake deep_clean"
+  end
+end
+
+task :default => :test
@@ -0,0 +1,66 @@
+require 'open3'
+require 'fileutils'
+
+GEM_ROOT   = File.expand_path('../', __dir__)
+CORPUS_DIR = File.join(GEM_ROOT, 'corpus')
+DICT_FILE  = File.join(GEM_ROOT, 'cbor.dict')
+
+assert('mruby-cbor-fuzzer: no crashes in fuzzing run') do
+  findings_dir = File.join(GEM_ROOT, 'findings')
+  FileUtils.mkdir_p(findings_dir)
+
+  cmd = cmd_list('mruby-cbor-fuzzer') + [
+    CORPUS_DIR,
+    "-dict=#{DICT_FILE}",
+    "-jobs=7",
+    "-artifact_prefix=#{findings_dir}/",
+    "-max_len=4096",
+     "-ignore_ooms=0"
+  ]
+
+  Dir.chdir(findings_dir) do
+    pid = Process.spawn(*cmd, out: '/dev/null', err: '/dev/null')
+    Process.detach(pid)
+
+    # Kill fuzzer on Ctrl+C
+    trap('INT') do
+      puts "\nKilling fuzzer..."
+      Process.kill(9, pid)
+      exit(1)
+    end
+  end
+
+  sleep 0.1 until (0..6).all? { |n| File.exist?(File.join(findings_dir, "fuzz-#{n}.log")) }
+
+  threads = (0..6).map do |n|
+    log = File.join(findings_dir, "fuzz-#{n}.log")
+    Thread.new do
+      File.open(log) do |f|
+        loop do
+          line = f.gets
+          line ? $stderr.print("[#{n}] #{line}") : sleep(0.05)
+          GC.start
+        end
+      end
+    end
+  end
+
+  loop do
+    done = (0..6).count do |n|
+      log = File.join(findings_dir, "fuzz-#{n}.log")
+      File.exist?(log) && File.read(log) =~ /Done \d+|SUMMARY:/
+    end
+    break if done == 16
+    sleep 5
+  end
+
+  threads.each(&:kill)
+
+  crashes = (0..6).select do |n|
+    log = File.join(findings_dir, "fuzz-#{n}.log")
+    File.exist?(log) && File.read(log).include?('SUMMARY:')
+  end
+
+  assert_true crashes.empty?,
+    "crashes in workers: #{crashes.map { |n| "fuzz-#{n}.log" }.join(', ')}"
+end
@@ -0,0 +1,12 @@
+MRuby::Build.new do |conf|
+  conf.toolchain :clang
+
+  conf.enable_sanitizer "address,undefined"
+
+  conf.enable_debug
+  conf.enable_bintest
+  conf.cc.defines  << 'MRB_UTF8_STRING' << 'MRB_PROFILE_HIGH'
+  conf.cxx.defines << 'MRB_UTF8_STRING' << 'MRB_PROFILE_HIGH'
+  conf.gem '../'
+  conf.gem File.expand_path(__dir__)
+end
@@ -0,0 +1,109 @@
+"\x00"
+"\x01"
+"\x17"
+"\x18\x00"
+"\x18\xff"
+"\x19\x00\x00"
+"\x19\xff\xff"
+"\x1a\x00\x00\x00\x00"
+"\x1a\xff\xff\xff\xff"
+"\x1b\x00\x00\x00\x00\x00\x00\x00\x00"
+"\x1b\xff\xff\xff\xff\xff\xff\xff\xff"
+
+"\x20"
+"\x37"
+"\x38\x00"
+"\x38\xff"
+"\x39\x00\x00"
+"\x39\xff\xff"
+"\x3a\x00\x00\x00\x00"
+"\x3a\xff\xff\xff\xff"
+"\x3b\x00\x00\x00\x00\x00\x00\x00\x00"
+"\x3b\xff\xff\xff\xff\xff\xff\xff\xff"
+
+"\x40"
+"\x41"
+"\x57"
+"\x58\x00"
+"\x58\x18"
+"\x58\xff"
+"\x59\x00\x00"
+"\x5a\x00\x00\x00\x00"
+"\x5b\x00\x00\x00\x00\x00\x00\x00\x00"
+
+"\x60"
+"\x61"
+"\x77"
+"\x78\x00"
+"\x78\xff"
+"\x79\x00\x00"
+"\x7a\x00\x00\x00\x00"
+"\x7b\x00\x00\x00\x00\x00\x00\x00\x00"
+
+"\x80"
+"\x81"
+"\x97"
+"\x98\x00"
+"\x98\xff"
+"\x99\x00\x00"
+"\x9a\x00\x00\x00\x00"
+"\x9b\x00\x00\x00\x00\x00\x00\x00\x00"
+
+"\xa0"
+"\xa1"
+"\xb7"
+"\xb8\x00"
+"\xb8\xff"
+"\xb9\x00\x00"
+"\xba\x00\x00\x00\x00"
+"\xbb\x00\x00\x00\x00\x00\x00\x00\x00"
+
+"\xc0"
+"\xc1"
+"\xc2"
+"\xc3"
+"\xc4"
+"\xc5"
+"\xc6"
+"\xc7"
+"\xc8"
+"\xc9"
+"\xca"
+"\xd5"
+"\xd6"
+"\xd7"
+"\xd8\x18"
+"\xd8\x1c"
+"\xd8\x1d"
+"\xd8\x20"
+"\xd8\x21"
+"\xd8\x22"
+"\xd8\x23"
+"\xd8\x24"
+"\xd9\x00\x00"
+"\xda\x00\x00\x00\x00"
+"\xdb\x00\x00\x00\x00\x00\x00\x00\x00"
+
+"\xf4"
+"\xf5"
+"\xf6"
+"\xf7"
+"\xf8\x00"
+"\xf8\x10"
+"\xf8\xff"
+"\xf9\x00\x00"
+"\xf9\x7c\x00"
+"\xf9\x7e\x00"
+"\xf9\xfc\x00"
+"\xf9\x80\x00"
+"\xfa\x00\x00\x00\x00"
+"\xfa\x3f\x80\x00\x00"
+"\xfa\x7f\x80\x00\x00"
+"\xfa\x7f\xc0\x00\x00"
+"\xfa\xff\x80\x00\x00"
+"\xfb\x00\x00\x00\x00\x00\x00\x00\x00"
+"\xfb\x3f\xf0\x00\x00\x00\x00\x00\x00"
+"\xfb\x7f\xf0\x00\x00\x00\x00\x00\x00"
+"\xfb\x7f\xf8\x00\x00\x00\x00\x00\x00"
+"\xfb\xff\xf0\x00\x00\x00\x00\x00\x00"
+"\xfb\x80\x00\x00\x00\x00\x00\x00\x00"
@@ -0,0 +1 @@
+����