[libfuzzer] Allow user_segv_handler in V8 fuzzers

V8 uses a signal handler to implement memory bounds checks for WebAssembly. Therefore signal handler have to be allowed in all V8 fuzzers. R=ochang@chromium.org Bug: chromium:1124755 Change-Id: I3be9fedaf87e78bfd81196e0d847f7b31781a17c Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2401468Reviewed-by: Oliver Chang <ochang@chromium.org> Commit-Queue: Andreas Haas <ahaas@chromium.org> Cr-Commit-Position: refs/heads/master@{#805682}

[libfuzzer] Allow user_segv_handler in V8 fuzzers
V8 uses a signal handler to implement memory bounds checks for WebAssembly. Therefore signal handler have to be allowed in all V8 fuzzers. R=ochang@chromium.org Bug: chromium:1124755 Change-Id: I3be9fedaf87e78bfd81196e0d847f7b31781a17c Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2401468Reviewed-by: Oliver Chang <ochang@chromium.org> Commit-Queue: Andreas Haas <ahaas@chromium.org> Cr-Commit-Position: refs/heads/master@{#805682}
9bc0fb08 · Andreas Haas · Commit Bot · e5c21723 · 9bc0fb08
Commit 9bc0fb08 authored Sep 10, 2020 by Andreas Haas Committed by Commit Bot Sep 10, 2020
Hide whitespace changes
Inline Side-by-side

Showing with 24 additions and 0 deletions

testing/libfuzzer/fuzzers/BUILD.gn testing/libfuzzer/fuzzers/BUILD.gn +24 -0

No files found.
--- a/testing/libfuzzer/fuzzers/BUILD.gn
+++ b/testing/libfuzzer/fuzzers/BUILD.gn
@@ -122,6 +122,12 @@ fuzzer_test("libpng_progressive_read_fuzzer") {
 fuzzer_test("v8_script_parser_fuzzer") {
  sources = []
  deps = [ "//v8:parser_fuzzer" ]
+  asan_options = [
+    "allow_user_segv_handler=1",
+    "handle_sigtrap=1",
+  ]
+  msan_options = [ "handle_sigtrap=1" ]
+  ubsan_options = [ "handle_sigtrap=1" ]
  dict = "dicts/generated/javascript.dict"
  seed_corpus = "//v8/test/mjsunit/regress/"
  libfuzzer_options = [ "only_ascii=1" ]
@@ -131,6 +137,12 @@ fuzzer_test("v8_script_parser_fuzzer") {
 fuzzer_test("v8_json_parser_fuzzer") {
  sources = []
  deps = [ "//v8:json_fuzzer" ]
+  asan_options = [
+    "allow_user_segv_handler=1",
+    "handle_sigtrap=1",
+  ]
+  msan_options = [ "handle_sigtrap=1" ]
+  ubsan_options = [ "handle_sigtrap=1" ]
  dict = "dicts/json.dict"
  environment_variables = [ "AFL_DRIVER_DONT_DEFER=1" ]
 }
@@ -138,6 +150,12 @@ fuzzer_test("v8_json_parser_fuzzer") {
 fuzzer_test("v8_regexp_parser_fuzzer") {
  sources = []
  deps = [ "//v8:regexp_fuzzer" ]
+  asan_options = [
+    "allow_user_segv_handler=1",
+    "handle_sigtrap=1",
+  ]
+  msan_options = [ "handle_sigtrap=1" ]
+  ubsan_options = [ "handle_sigtrap=1" ]
  dict = "dicts/regexp.dict"
  seed_corpus = "//v8/test/fuzzer/regexp/"
  libfuzzer_options = [ "max_len=64" ]
@@ -147,6 +165,12 @@ fuzzer_test("v8_regexp_parser_fuzzer") {
 fuzzer_test("v8_regexp_builtins_fuzzer") {
  sources = []
  deps = [ "//v8:regexp_builtins_fuzzer" ]
+  asan_options = [
+    "allow_user_segv_handler=1",
+    "handle_sigtrap=1",
+  ]
+  msan_options = [ "handle_sigtrap=1" ]
+  ubsan_options = [ "handle_sigtrap=1" ]
  environment_variables = [ "AFL_DRIVER_DONT_DEFER=1" ]
 }