poppler: oss-fuzz integration
Submitted by pdknsk
Assigned to poppler-bugs
Link to original bug (#106554)
Description
Created attachment 139615 cpp
I'm interested if you're interested in having poppler integrated into oss-fuzz. In case you're not familiar with it, it's a Google-sponsored project for continuous fuzzing of OSS.
https://github.com/google/oss-fuzz
You may have noticed that I reported a few bugs recently, which were found in preparation for possible oss-fuzz integration.
You don't really have to do anything, other than give an email address (or multiple) with are then CC'd to bug reports found by the fuzzing system. (Only project owners can be CC'd.)
oss-fuzz reports the bugs on its own bug tracker, rather than the project's bug tracker. When a bug is fixed, oss-fuzz detects this automatically and closes the bug report.
https://bugs.chromium.org/p/oss-fuzz/issues/list
Possible optional future steps would be to host the fuzz target directly in the poppler repo (so that you can modify it yourself directly, rather than submitting PRs through GitHub). Or the addition of more fuzz targets. I only went with the cpp API so far, as it seems the easiest to integrate.
A fuzz target is just a single source file. As an example, I'm attaching the fuzz target for the cpp API I've been using.
Attachment 139615, "cpp":
target.cc