CMake
fuzzing
CMake | fuzzing | |
---|---|---|
32 | 11 | |
6,794 | 3,458 | |
1.0% | 0.7% | |
10.0 | 3.4 | |
3 days ago | about 2 months ago | |
C | C++ | |
GNU General Public License v3.0 or later | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CMake
-
Installer script for CMake, Ninja, and Meson
I thought I would share my custom installer script for the latest GitHub versions of CMake, Ninja, and Meson.
-
CMake can't find glut
The same thing probably applies if you use the FindGlut.cmake module which is documented here: https://cmake.org/cmake/help/latest/module/FindGLUT.html
-
FFmpeg Build Script that uses API calls to get the latest versions of each package + extra modules
building cmake - version 3.26.3 ==================================== Downloading https://github.com/kitware/cmake/archive/refs/tags/v3.26.3.tar.gz as cmake-3.26.3.tar.gz Download Completed File extracted: cmake-3.26.3.tar.gz $ ./configure --prefix=/root/ffmpeg-build-script/workspace --parallel=40 --enable-ccache -- -DCMAKE_USE_OPENSSL=OFF $ make -j 40
-
I can't run my c++ project having Python.h header using cmake in Windows
find_package(Python3 ...) will look for a file FindPython3.cmake shipped with CMake. I urge you to try to go over its contents to get an idea of what it does underneath.
-
using a library from a github repository in cmake project
The file FindSomePKG.cmake (module approach) is supposed to be written either by you (you write it manually and put in a cmake subdirectory in your git repo) or it's an official package file shipped along with CMake, e.g FindOpenSSL.cmake with documentation here.
- Install CMake on Windows
-
Install MariaDB from Source Code on Ubuntu
sudo apt-get install build-essential libncurses5-dev gnutls-dev bison zlib1g-dev ccache libssl-dev # Get cmake # Downloaded under ~/ wget https://github.com/Kitware/CMake/releases/download/v3.25.2/cmake-3.25.2.tar.gz cd cmake-3.25.2 ~/cmake-3.25.2 $ ./bootstrap ~/cmake-3.25.2 $ make ~/cmake-3.25.2 $ sudo make install
-
Adding “invariant” clauses to C++ via GCC plugin to enable Design-by-Contract
Note that `assert`s are disabled if you define the macro `NDEBUG`, e.g. https://godbolt.org/z/hMWo8KM7q
CMake adds these flags to release builds: https://github.com/Kitware/CMake/blob/e1eacbe2c522a8bf9a82af...
Would be nice to have a non-macro solution for controlling behavior at configure time, but the `NDEBUG` macro is basically already your `DEBUG` constexpr.
-
CLion 2022.3 Released!
It's open-source. It might get merged in!
-
Couchbase Node SDK on Docker
FROM node:16 WORKDIR /cmake COPY cmake-3.25.0-rc4-linux-x86_64.sh ./ # OR # RUN apt update && apt install -y g++ wget bash # RUN wget https://github.com/Kitware/CMake/releases/download/v3.25.0-rc4/cmake-3.25.0-rc4-linux-x86_64.sh RUN ./cmake-3.25.0-rc4-linux-x86_64.sh --skip-license && rm cmake-3.25.0-rc4-linux-x86_64.sh ENV PATH="$PATH:/cmake/bin" WORKDIR /app RUN npm i [email protected] COPY package.json . COPY package-lock.json . RUN npm --verbose i COPY . . RUN npm --verbose run build
fuzzing
- Structure-Aware Fuzzing with Libfuzzer
- GitHub - google/fuzzing: Tutorials, examples, discussions, research proposals, and other resources related to fuzzing
-
ok so i am kinda new to fuzzin/security research and ive just done this
so I just wanted to start to fuzz a little bit and I used libfuzzer for that. and as you can tell in this tutorial https://github.com/google/fuzzing/blob/master/tutorial/libFuzzerTutorial.md it tells you that if you leave it running like that you will get a bounty. and so I did exactly this, I followed the exact instructions listed there(I fuzzed this woff thing they mentioned) and my fuzzer said "SUMMARY: AddressSanitizer: heap-buffer-overflow" can I report that? or is this woff thing just for testing?
- I found a bug in Intel Skylake processors
- SiliFuzz: Fuzzing CPUs by proxy
- SiliFuzz: Fuzzing CPUs by Proxy [pdf]
- SiliFuzz - a work-in-progress system that finds CPU defects by fuzzing software proxies, like CPU simulators or disassemblers, and then executing the accumulated test inputs on actual CPUs on a large scale.
-
An implementation of CBOR in C
For a project like this, fuzz testing is also crucial. The issue pointed out by gremolata would have been trivial to find with fuzzing.
-
Address Sanitizer for MSVC Now Generally Available | C++ Team Blog
Another is testing: Many C++ projects use sanitizers regularly together with fuzzing, https://github.com/google/fuzzing/blob/master/docs/why-fuzz.md, https://github.com/google/fuzzing/blob/master/docs/intro-to-fuzzing.md#sanitizers
-
Jazzer brings modern fuzz testing to the JVM
Maybe a bit biased opinion here, but you could start with this blog post, and see whether you go more into C/C++ fuzzing or web fuzzing from there:
https://blog.code-intelligence.com/the-magic-behind-feedback...
https://github.com/google/fuzzing
What are some alternatives?
meson - The Meson Build System
JQF - JQF + Zest: Coverage-guided semantic fuzzing for Java.
gcc
sandsifter - The x86 processor fuzzer
ninja - a small build system with a focus on speed
javan-warty-pig - AFL-like fuzzer for the Java Virtual Machine
awesome-bazel - A curated list of Bazel rules, tooling and resources.
woff2
bazel-remote - A remote cache for Bazel
Boost.Beast - HTTP and WebSocket built on Boost.Asio in C++11
cmake-init - The missing CMake project initializer