mirror of
https://github.com/ethereum/solidity
synced 2023-10-03 13:03:40 +00:00
.. | ||
CMakeLists.txt | ||
const_opt_ossfuzz.cpp | ||
README.md | ||
solc_noopt_ossfuzz.cpp | ||
solc_opt_ossfuzz.cpp |
Intro
oss-fuzz is Google's fuzzing infrastructure that performs continuous fuzzing. What this means is that, each and every upstream commit is automatically fetched by the infrastructure and fuzzed.
What does this directory contain?
To help oss-fuzz do this, we (as project maintainers) need to provide the following:
- test harnesses: C/C++ tests that define the
LLVMFuzzerTestOneInput
API. This determines what is to be fuzz tested. - build infrastructure: (c)make targets per fuzzing binary. Fuzzing requires coverage and memory instrumentation of the code to be fuzzed.
What is libFuzzingEngine.a?
libFuzzingEngine.a
is an oss-fuzz-related dependency. It is present in the Dockerized environment in which Solidity's oss-fuzz code will be built.
Is this directory relevant for routine Solidity CI builds?
No. This is the reason why the add_subdirectory(ossfuzz)
cmake directive is nested under the if (OSSFUZZ)
predicate. OSSFUZZ
is a solidity-wide cmake option that is invoked by the ossfuzz solidity-builder-bot in order to compile solidity fuzzer binaries.