Google yakhazikitsa pulojekiti ya ClusterFuzzLite, yomwe imalola kulinganiza kuyezetsa kosawerengeka kwa ma code kuti adziwe msanga zachiwopsezo panthawi yogwiritsa ntchito makina ophatikiza mosalekeza. Pakalipano, ClusterFuzz ikhoza kugwiritsidwa ntchito poyesa kuyesa kwa fuzz kwa zopempha kukoka mu GitHub Actions, Google Cloud Build, ndi Prow, koma chithandizo cha machitidwe ena a CI chikuyembekezeka mtsogolo. Ntchitoyi idakhazikitsidwa papulatifomu ya ClusterFuzz, yomwe idapangidwa kuti igwirizanitse ntchito zamagulu oyeserera, ndipo imagawidwa pansi pa chilolezo cha Apache 2.0.
Zadziwika kuti Google itayambitsa ntchito ya OSS-Fuzz mu 2016, mapulojekiti opitilira 500 otseguka adavomerezedwa mu pulogalamu yoyeserera mosalekeza. Kutengera mayeso omwe adachitika, zofooka zopitilira 6500 zotsimikizika zidachotsedwa ndipo zolakwa zopitilira 21 zidakonzedwa. ClusterFuzzLite ikupitiliza kupanga njira zoyesera zovutirapo ndi kuthekera kozindikira zovuta kale pakuwunikanso zomwe zasintha. ClusterFuzzLite yakhazikitsidwa kale pakuwunikanso kusintha kwama projekiti a systemd ndi ma curl, ndipo yapangitsa kuti zitheke kuzindikira zolakwika zomwe zidaphonya ndi ma static analyzer ndi ma linter omwe amagwiritsidwa ntchito poyambira poyang'ana code yatsopano.
ClusterFuzzLite imathandizira kuwunika kwa polojekiti mu C, C++, Java (ndi zilankhulo zina zozikidwa pa JVM), Go, Python, Rust, ndi Swift. Kuyesa kwa fuzzing kumachitika pogwiritsa ntchito injini ya LibFuzzer. Zida za AddressSanitizer, MemorySanitizer, ndi UBSan (UndefinedBehaviorSanitizer) zithanso kuyitanidwa kuti zizindikire zolakwika zamakumbukiro ndi zolakwika.
Zofunikira za ClusterFuzzLite: fufuzani mwachangu zosintha zomwe mukufuna kuti mupeze zolakwika musanavomereze ma code; kutsitsa malipoti okhudza ngozi; kutha kupitilira kuyesa kopitilira muyeso kuti muzindikire zolakwika zozama zomwe sizinachitike pambuyo poyang'ana kusintha kwa code; kupanga malipoti owunikira kuti ayese kufalitsa ma code panthawi yoyesedwa; Zomangamanga za modular zomwe zimakupatsani mwayi wosankha zofunikira.
Tikumbukire kuti kuyezetsa movutikira kumaphatikizapo kupanga mitundu yonse ya mitundu yosakanikirana ya data yomwe ili pafupi ndi data yeniyeni (mwachitsanzo, masamba a html okhala ndi ma tag osasinthika, zakale kapena zithunzi zomwe zili ndi mitu yodabwitsa, ndi zina zotero), ndi kujambula kotheka zolephera pakukonza kwawo. Ngati ndondomeko ikuphwanyidwa kapena sichikugwirizana ndi zomwe akuyembekezera, ndiye kuti izi zikhoza kusonyeza cholakwika kapena chiopsezo.
Source: opennet.ru