Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fuzzing: add fuzzers for multiple packages #3834

Merged
merged 1 commit into from
Aug 19, 2024
Merged

fuzzing: add fuzzers for multiple packages #3834

merged 1 commit into from
Aug 19, 2024

Conversation

AdamKorcz
Copy link
Contributor

Summary

Adds fuzz tests for different packages:

  • FuzzEvaluatePolicyAgainstJSON: Tests rego and cue policy evaluation.
  • FuzzGenerateStatement: Tests GenerateStatement with random predicate, repo and digest string
  • FuzzValidateJSON: Tests ValidateJSON of the cue and rego packages.
  • FuzzImportKeyPairLoadPrivateKey: Tests ImportKeyPair and LoadPrivateKey
  • FuzzSigVerify: Tests different verification APIs.

Release Note

Documentation

@codecov Codecov
Copy link

codecov bot commented Aug 15, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 36.69%. Comparing base (2ef6022) to head (bf0fb77).
Report is 195 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #3834      +/-   ##
==========================================
- Coverage   40.10%   36.69%   -3.41%     
==========================================
  Files         155      203      +48     
  Lines       10044    12780    +2736     
==========================================
+ Hits         4028     4690     +662     
- Misses       5530     7507    +1977     
- Partials      486      583      +97

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@AdamKorcz AdamKorcz force-pushed the fuzz-aug-24 branch 2 times, most recently from 7bc910d to 2df0be1 Compare August 15, 2024 22:54
@AdamKorcz AdamKorcz mentioned this pull request Aug 16, 2024
Merged
DavidKorczynski pushed a commit to google/oss-fuzz that referenced this pull request Aug 17, 2024
@AdamKorcz
re-integrate cosign (#12367)
6e0ae10 
Cosign was removed in #6838
because its harness got removed upstream. With new fuzzers ready in
sigstore/cosign#3834, Cosign can re-integrate
into OSS-Fuzz.

@codysoyland @haydentherapper @bobcallaway @DavidKorczynski for info

Signed-off-by: Adam Korczynski <[email protected]>
haydentherapper
haydentherapper approved these changes Aug 19, 2024
View reviewed changes
Copy link
Contributor

@haydentherapper haydentherapper left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@haydentherapper haydentherapper merged commit 9c0c81c into sigstore:main Aug 19, 2024
23 checks passed
kipz pushed a commit to kipz/cosign that referenced this pull request Oct 21, 2024
@AdamKorcz @kipz
fuzzing: add fuzzers for multiple packages (sigstore#3834)
619d7bf 
Signed-off-by: Adam Korczynski <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@haydentherapper haydentherapper haydentherapper approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@AdamKorcz @haydentherapper