mirror of
https://gitlab.gnome.org/GNOME/libxml2.git
synced 2024-10-26 20:25:14 +03:00
93ce33c2b8
Fix a few remaining cases where the HTML push parser would scan more content during lookahead than being parsed later. Make sure that htmlParseDocTypeDecl consumes all content up to the final '>' in case of errors. The old comment said "We shouldn't try to resynchronize", but ignoring invalid content is also what the HTML5 spec mandates. Likewise, make htmlParseEndTag skip to the final '>' in invalid end tags even if not in recovery mode. This is probably the most visible change in practice and leads to different output for some tests but is also more in line with HTML5. Make sure that htmlParsePI and htmlParseComment don't abort if invalid characters are encountered but log an error and ignore the character. Change some other end-of-buffer checks to test for a zero byte instead of relying on IS_CHAR. Fix usage of IS_CHAR macro in htmlParseScript. |
||
|---|---|---|
| .. | ||
| seed | ||
| .gitignore | ||
| fuzz.c | ||
| fuzz.h | ||
| html.c | ||
| html.dict | ||
| html.options | ||
| Makefile.am | ||
| README | ||
| regexp.c | ||
| regexp.dict | ||
| schema.c | ||
| schema.dict | ||
| schema.options | ||
| schemaSeed.c | ||
| testFuzzer.c | ||
| uri.c | ||
| xml.c | ||
| xml.dict | ||
| xml.options | ||
| xmlSeed.c | ||
libFuzzer instructions for libxml2
==================================
Set compiler and options:
export CC=clang
export CFLAGS="-g -fsanitize=fuzzer-no-link,address,undefined \
-fno-sanitize-recover=all \
-DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION"
Build libxml2 with instrumentation:
./configure --without-python
make
Run fuzzers:
make -C fuzz fuzz-xml