AdamKorcz
AdamKorcz
**Describe the bug** The bug is a panic out of memory when calling `github.com/filecoin-project/lotus/lib/backupds.RestoreInto()` with a well-crafted byte array. **Version (run `lotus version`):** The bug was found yesterday on the...
`(*criService).ListContainerStats()` assumes a client is available, and as a result a possible nil pointer dereference exists. This PR checks if a client is available, and throws an error if it...
Adds a fuzzer for the marshaling and unmarshaling routines of the API definitions. An internal function is added for every single API definition and a single fuzzer calls these internal...
#### Summary Adds the sigstore-go OSS-Fuzz build script which is currently located here: https://github.com/google/oss-fuzz/blob/master/projects/sigstore-go/build.sh. Also adds a dictionary for multiple fuzzers. #### Release Note #### Documentation
Before submitting your PR, please confirm the following. This fixes an out of range panic. - [x] Describe the purpose for which you created this PR. - [] Create test...
While testing another library, I ran into a stack overflow in go-yaml. The impact of a stack overflow has already been discussed in https://github.com/goccy/go-yaml/issues/353. ### Reproducer Go version: go version...
I am getting a case where `index` is `0` and the line therefore attempts to access `tokens[-1]`.
Adds a fuzz test that tests certificate requests with the Vault issuer. The fuzzer randomizes selected fields in the request and the issuer. Sometimes it will choose correct values and...
During the ongoing work on [TUFs conformance test suite](https://github.com/theupdateframework/tuf-conformance), one of the tests uncovered a case whereby a faulty version of root metadata could prevent the client from updating to...
Moves [this fuzzer](https://github.com/cncf/cncf-fuzzing/blob/main/projects/notary/fuzz_trustpolicy.go) upstream from cncf-fuzzing. Adds a dependency to randomize structs.