DevComp/zip-rs-wasm
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
1667 commits 1 branch 0 tags 52 MiB
Commit graph

206 commits

Author SHA1 Message Date
Chris Hennick
c38494b93c Shorten fuzz_read to prevent timeouts given the added complexity of deflate64 2024-03-03 19:43:06 -08:00
Chris Hennick
f17bc48d70 Fix artifact name collision 2024-03-03 18:37:12 -08:00
Chris Hennick
6636a6c3f3 Enable manual CI runs 2024-02-29 15:52:09 -08:00
Chris Hennick
5f6546dde3 Timeout fuzz runs after 5h30m to ensure there's time to upload artifacts 2024-02-29 12:41:49 -08:00
Chris Hennick
e843e67b9f Bug fix: reduce runs to 10k in CI fuzz_write 2024-02-29 10:31:53 -08:00
dependabot[bot]
4bb13b8559
Bump actions/checkout from 3 to 4 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-02-29 06:14:06 +00:00
Chris Hennick
ff1106a8f9 Share fuzz dictionary between fuzz_read and fuzz_write 2024-02-28 20:17:29 -08:00
Chris Hennick
4187dbc0e2 Improve fuzz_read coverage with predefined dictionary 2024-02-28 20:09:41 -08:00
Chris Hennick
60a921d4d4 Increase timeout for fuzzing (improves branch coverage) 2024-02-28 18:41:53 -08:00
Chris Hennick
c4f657281d Bug fix: read timeout should be same with and without default features 2024-02-28 17:44:04 -08:00
Chris Hennick
207e595785 Enable fuzz_read with no default features 2024-02-28 17:43:30 -08:00
Chris Hennick
8e33631c31 Bug fix: disable non-nightly toolchains for fuzz for now 2024-02-28 15:58:32 -08:00
Chris Hennick
d36233a7db Enable stable/MSRV builds for fuzz 2024-02-28 15:54:17 -08:00
dependabot[bot]
a6e6ad246e
Bump dependabot/fetch-metadata from 1.5.1 to 1.6.0 
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.5.1 to 1.6.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.5.1...v1.6.0)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-06-28 11:07:29 +00:00
Chris Hennick
367f231f15
Bug fix: don't run cargo doc on dependencies 2023-06-11 11:17:54 -07:00
Chris Hennick
3daa3a7ef4
Reduce fuzz_write_with_no_features to 1 million runs 2023-05-31 09:01:40 -07:00
Chris Hennick
21d50041f0
Reduce fuzz_write_with_no_features to 10 million runs 2023-05-30 20:17:39 -07:00
Chris Hennick
2407ef95c6
Fixes and refactors for no-features build 2023-05-30 18:17:59 -07:00
Chris Hennick
130ca38cf6
Implement adjustable buffer size for Zopfli 2023-05-27 15:44:43 -07:00
Chris Hennick
72a2f73496
Adjust timeout and job count for fuzz_write 2023-05-27 14:18:01 -07:00
dependabot[bot]
877be55689
Bump dependabot/fetch-metadata from 1.5.0 to 1.5.1 
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.5.0 to 1.5.1.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.5.0...v1.5.1)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-24 11:14:18 +00:00
dependabot[bot]
829f7935cb
Bump dependabot/fetch-metadata from 1.4.0 to 1.5.0 
Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.4.0 to 1.5.0.
- [Release notes](https://github.com/dependabot/fetch-metadata/releases)
- [Commits](https://github.com/dependabot/fetch-metadata/compare/v1.4.0...v1.5.0)

---
updated-dependencies:
- dependency-name: dependabot/fetch-metadata
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-23 11:07:01 +00:00
Chris Hennick
609865ba75
Increase read fuzzing 10x since write fuzzing is the bottleneck 2023-05-11 20:35:01 -07:00
Chris Hennick
61502b22a7
Increase fuzz_write jobs to reproduce a recent failure 2023-05-10 19:45:13 -07:00
Chris Hennick
bfe274a779
Bug fix 2023-05-10 19:36:04 -07:00
Chris Hennick
5e9ccfb27d
Upload failed fuzz inputs if any 2023-05-10 19:34:15 -07:00
Chris Hennick
6be75a9f04
Enable parallel fuzzing 2023-05-10 14:22:57 -07:00
Chris Hennick
e8208dda87
Triple write-fuzz duration to ensure remaining bugs are caught 2023-05-04 11:29:47 -07:00
dependabot[bot]
9bb9600ace
chore(deps): bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-05-03 01:32:12 +00:00
Chris Hennick
1f70c80eb1
Allow Dependabot to update GitHub Actions 2023-05-02 18:31:43 -07:00
Chris Hennick
04654fdbe3
Revert large-file test: impractical 2023-05-01 17:06:37 -07:00
Chris Hennick
8ba431d89c
Increase write-fuzz timeout 2023-05-01 16:28:42 -07:00
Chris Hennick
8578e64554
Increase memory limit for write fuzz 2023-05-01 16:18:35 -07:00
Chris Hennick
c18fae1f77
Use sparse files that are mostly the same byte pattern 2023-05-01 16:01:38 -07:00
Chris Hennick
e75527ffc7
Bug fix: all timeouts are apparently in seconds 2023-05-01 15:13:44 -07:00
Chris Hennick
09d1ef2e3b
Make large files more compressible 2023-05-01 14:59:04 -07:00
Chris Hennick
a9aaea306e
Make large files more likely 2023-05-01 13:02:52 -07:00
Chris Hennick
a23e3889e2
Strengthen fuzz_write: use longer vectors and multiple writes 2023-05-01 11:56:46 -07:00
Chris Hennick
a1c7689d06
Reduce fuzz_write to 1 million iterations 2023-05-01 10:42:30 -07:00
Chris Hennick
df489189b1
Merge branch 'master' into write_fuzz 2023-04-29 21:27:43 -07:00
Chris Hennick
8c7192a750
Run CI on push to any branch 2023-04-29 21:25:01 -07:00
Chris Hennick
90b89b5460
WIP: Write fuzzing 2023-04-29 21:19:31 -07:00
Chris Hennick
7d7325324f
Enable fuzz testing during CI 2023-04-23 16:00:37 -07:00
Chris Hennick
14c61e0b97
Revert "Create rust-clippy.yml" 
This reverts commit 2aa4665f42.
 2023-04-23 15:04:08 -07:00
Chris Hennick
5e5f5ebe54
Bump minimum version to 1.66.0 2023-04-23 14:54:44 -07:00
Chris Hennick
de638786f1
Create dependabot_automation.yml 2023-04-23 14:48:06 -07:00
Chris Hennick
2aa4665f42
Create rust-clippy.yml 2023-04-23 14:46:39 -07:00
Alexander Zaitsev
a06b947ec5
feat: bump MSRV 
- bump MSRV in CI
 2022-10-13 13:02:31 +03:00
Dirk Stolle
e78a51bdd5 bump MSRV to 1.57 2022-05-01 00:48:56 +02:00
Nick Babcock
b7966a8538 Add read fuzzing module 
As someone who has personal projects that take untrusted zips as input,
it is important to me to be able to fuzz the zip project to simulate
possible inputs and to ensure the projects are not vulnerable.

This commit adds a cargo fuzz module for reading and extracting input.

The `fuzz` directory was scaffolded with a `cargo fuzz init`

I added a CI step to guard against the fuzz module decaying over time.
 2022-04-25 20:08:53 -05:00