simdjson/fuzz/CMakeLists.txt

option(ENABLE_FUZZING "enable building the fuzzers" ON)

if(ENABLE_FUZZING)

  # First attempt at a fuzzer, using libFuzzer.
  #
  # compile like this:
  # mkdir build-fuzzer
  # cd build-fuzzer
  # export LDFLAGS="-fsanitize=address,undefined"
  # export CXXFLAGS="-fsanitize=fuzzer-no-link,address,undefined"
  # export CFLAGS="-fsanitize=fuzzer-no-link,address,undefined"
  # export CXX=clang++
  # export CC=clang++
  # cmake .. -GNinja -DCMAKE_BUILD_TYPE=Debug -DENABLE_FUZZING=On -DSIMDJSON_FUZZ_LINKMAIN=Off -DSIMDJSON_FUZZ_LDFLAGS=-fsanitize=fuzzer
  # ninja

  # settings this links in a main. useful for reproducing,
  # kcov, gdb, afl, valgrind.
  # (note that libFuzzer can also reproduce, just pass it the files)
  #
  # Using this by default, means the fuzzers will be built as a part of the normal
  # workflow, meaning they wont bitrot and will participate in refactoring etc.
  #
  option(SIMDJSON_FUZZ_LINKMAIN "links a main into fuzz targets for building reproducers" On)

  # For oss-fuzz - insert $LIB_FUZZING_ENGINE into the link flags, but only for
  # the fuzz targets, otherwise the cmake configuration step fails.
  set(SIMDJSON_FUZZ_LDFLAGS "" CACHE STRING "LDFLAGS for the fuzz targets")

  # Fuzzer build flags and libraries
  add_library(simdjson-fuzzer INTERFACE)
  if (SIMDJSON_FUZZ_LINKMAIN)
    target_link_libraries(simdjson-fuzzer INTERFACE simdjson-source)
    target_sources(simdjson-fuzzer INTERFACE $<BUILD_INTERFACE:${CMAKE_CURRENT_SOURCE_DIR}>/main.cpp)
  else ()
    target_link_libraries(simdjson-fuzzer INTERFACE simdjson)
  endif ()
  target_link_libraries(simdjson-fuzzer INTERFACE simdjson-internal-flags)
  target_link_libraries(simdjson-fuzzer INTERFACE ${SIMDJSON_FUZZ_LDFLAGS})

  # Define the fuzzers
  add_custom_target(all_fuzzers)

  set(fuzzernames)
  function(implement_fuzzer name)
    add_executable(${name} ${name}.cpp)
    target_link_libraries(${name} PRIVATE simdjson-fuzzer)
    add_dependencies(all_fuzzers ${name})
    set(fuzzernames ${fuzzernames} ${name} PARENT_SCOPE)
  endfunction()

  implement_fuzzer(fuzz_atpointer)
  implement_fuzzer(fuzz_dump)
  implement_fuzzer(fuzz_dump_raw_tape)
  implement_fuzzer(fuzz_implementations) # parses and serializes again, compares across implementations
  implement_fuzzer(fuzz_minify)          # minify *with* parsing
  implement_fuzzer(fuzz_minifyimpl)      # minify *without* parsing, plus compare implementations
  implement_fuzzer(fuzz_parser)
  implement_fuzzer(fuzz_print_json)
  implement_fuzzer(fuzz_utf8)            # utf8 verification, compares across implementations

  # to be able to get a list of all fuzzers from within a script
  add_custom_target(print_all_fuzzernames
    COMMAND ${CMAKE_COMMAND} -E echo ${fuzzernames})

endif()
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`option(ENABLE_FUZZING "enable building the fuzzers" ON)`

			`if(ENABLE_FUZZING)`

			`# First attempt at a fuzzer, using libFuzzer.`
			`#`
			`# compile like this:`
			`# mkdir build-fuzzer`
			`# cd build-fuzzer`
			`# export LDFLAGS="-fsanitize=address,undefined"`
			`# export CXXFLAGS="-fsanitize=fuzzer-no-link,address,undefined"`
			`# export CFLAGS="-fsanitize=fuzzer-no-link,address,undefined"`
			`# export CXX=clang++`
			`# export CC=clang++`
			`# cmake .. -GNinja -DCMAKE_BUILD_TYPE=Debug -DENABLE_FUZZING=On -DSIMDJSON_FUZZ_LINKMAIN=Off -DSIMDJSON_FUZZ_LDFLAGS=-fsanitize=fuzzer`
			`# ninja`

			`# settings this links in a main. useful for reproducing,`
			`# kcov, gdb, afl, valgrind.`
			`# (note that libFuzzer can also reproduce, just pass it the files)`
			`#`
			`# Using this by default, means the fuzzers will be built as a part of the normal`
			`# workflow, meaning they wont bitrot and will participate in refactoring etc.`
			`#`
			`option(SIMDJSON_FUZZ_LINKMAIN "links a main into fuzz targets for building reproducers" On)`

			`# For oss-fuzz - insert $LIB_FUZZING_ENGINE into the link flags, but only for`
			`# the fuzz targets, otherwise the cmake configuration step fails.`
			`set(SIMDJSON_FUZZ_LDFLAGS "" CACHE STRING "LDFLAGS for the fuzz targets")`

			`# Fuzzer build flags and libraries`
			`add_library(simdjson-fuzzer INTERFACE)`
add ossfuzz support (#362) * initial oss-fuzz friendly build parts taken from libfmt, which I wrote and have the copyright to * fix build error * add script for building a corpus zip see https://google.github.io/oss-fuzz/getting-started/new-project-guide/#seed-corpus * fix zip command * drop setting the C++ standard * disable the minify fuzzer, does not pass oss-fuzz check-build test * fix integer overflow in subnormal_power10 detected by oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18714 * invoke the build like oss fuzz does * document what the scripts are for and how to use them * add a page about fuzzing 2019-11-08 23:32:43 +08:00			`if (SIMDJSON_FUZZ_LINKMAIN)`
CMake: Link simdjson-fuzzer to simdjson-source as before simdjson target adds extra definitions which MSVC doesn't like 2020-05-02 10:21:57 +08:00			`target_link_libraries(simdjson-fuzzer INTERFACE simdjson-source)`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`target_sources(simdjson-fuzzer INTERFACE $<BUILD_INTERFACE:${CMAKE_CURRENT_SOURCE_DIR}>/main.cpp)`
CMake: Link simdjson-fuzzer to simdjson-source as before simdjson target adds extra definitions which MSVC doesn't like 2020-05-02 10:21:57 +08:00			`else ()`
			`target_link_libraries(simdjson-fuzzer INTERFACE simdjson)`
add ossfuzz support (#362) * initial oss-fuzz friendly build parts taken from libfmt, which I wrote and have the copyright to * fix build error * add script for building a corpus zip see https://google.github.io/oss-fuzz/getting-started/new-project-guide/#seed-corpus * fix zip command * drop setting the C++ standard * disable the minify fuzzer, does not pass oss-fuzz check-build test * fix integer overflow in subnormal_power10 detected by oss-fuzz https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=18714 * invoke the build like oss fuzz does * document what the scripts are for and how to use them * add a page about fuzzing 2019-11-08 23:32:43 +08:00			`endif ()`
CMake: Make simdjson-internal-flags subsume simdjson-flags 2020-05-03 07:48:29 +08:00			`target_link_libraries(simdjson-fuzzer INTERFACE simdjson-internal-flags)`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`target_link_libraries(simdjson-fuzzer INTERFACE ${SIMDJSON_FUZZ_LDFLAGS})`
Only build fuzzers when fuzzing. (#822) 2020-04-28 04:02:19 +08:00
			`# Define the fuzzers`
			`add_custom_target(all_fuzzers)`

add minifier fuzzers (#1172) This adds a minifier fuzzer. There is also an utf-8 fuzzer, but it is disabled until #1187 is fixed. Run all fuzzers bug the utf-8 one in the github CI fuzz. 2020-09-26 20:25:00 +08:00			`set(fuzzernames)`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`function(implement_fuzzer name)`
			`add_executable(${name} ${name}.cpp)`
			`target_link_libraries(${name} PRIVATE simdjson-fuzzer)`
Only build fuzzers when fuzzing. (#822) 2020-04-28 04:02:19 +08:00			`add_dependencies(all_fuzzers ${name})`
add minifier fuzzers (#1172) This adds a minifier fuzzer. There is also an utf-8 fuzzer, but it is disabled until #1187 is fixed. Run all fuzzers bug the utf-8 one in the github CI fuzz. 2020-09-26 20:25:00 +08:00			`set(fuzzernames ${fuzzernames} ${name} PARENT_SCOPE)`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`endfunction()`

fuzz at_pointer This adds a fuzzer for at_pointer() which recently had a bug. The #1142 bug had been found with this fuzzer Also, it polishes the github action job: cross pollinate the fuzzer corpora (lets fuzzers reuse results from other fuzzers) use github action syntax instead of bash checks only run on push if on master 2020-09-17 03:17:43 +08:00			`implement_fuzzer(fuzz_atpointer)`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00			`implement_fuzzer(fuzz_dump)`
			`implement_fuzzer(fuzz_dump_raw_tape)`
add minifier fuzzers (#1172) This adds a minifier fuzzer. There is also an utf-8 fuzzer, but it is disabled until #1187 is fixed. Run all fuzzers bug the utf-8 one in the github CI fuzz. 2020-09-26 20:25:00 +08:00			`implement_fuzzer(fuzz_implementations) # parses and serializes again, compares across implementations`
			`implement_fuzzer(fuzz_minify) # minify with parsing`
			`implement_fuzzer(fuzz_minifyimpl) # minify without parsing, plus compare implementations`
add multi implementation fuzzer (#1162) This adds a fuzzer which parses the same input using all the available implementations (haswell, westmere, fallback on x64). This should get the otherwise uncovered sourcefiles (mostly fallback) to show up in the fuzz coverage. For instance, the fallback directory has only one line covered. As of the 20200909 report, 1866 lines are covered out of 4478. Also, it will detect if the implementations behave differently: by making sure they all succeed, or all error turning the parsed data into text again, should produce equal results While at it, I corrected some minor things: clean up building too many variants, run with forced implementation (closes #815 ) always store crashes as artefacts, good in case the fuzzer finds something return value of the fuzzer function should always be 0 reduce log spam introduce max size for the seed corpus and the CI fuzzer 2020-09-12 05:46:22 +08:00			`implement_fuzzer(fuzz_parser)`
			`implement_fuzzer(fuzz_print_json)`
add utf8 fuzzer This enables the utf8 fuzzer, now when #1187 is fixed 2020-09-28 03:11:13 +08:00			`implement_fuzzer(fuzz_utf8) # utf8 verification, compares across implementations`
add minifier fuzzers (#1172) This adds a minifier fuzzer. There is also an utf-8 fuzzer, but it is disabled until #1187 is fixed. Run all fuzzers bug the utf-8 one in the github CI fuzz. 2020-09-26 20:25:00 +08:00
			`# to be able to get a list of all fuzzers from within a script`
			`add_custom_target(print_all_fuzzernames`
			`COMMAND ${CMAKE_COMMAND} -E echo ${fuzzernames})`
Make fuzzing work without exceptions 2020-04-17 09:49:10 +08:00
			`endif()`