Add tool to check source allowlists

microsoft / onefuzz

A self-hosted Fuzzing-As-A-Service platform

MIT License

2.82k stars 199 forks source link

Add tool to check source allowlists #3246

Closed ranweiler closed 1 year ago

ranweiler commented 1 year ago

This PR provides an example tool for checking the impact of aa source allowlist on an executable module with debuginfo.

If no allowlist is provided, the "allow-all" default allowlist is used.

By default, it emits TSV to stdout of the form <function-name>\t<source-file>.

If -v/--verbose is passed, emits TSV of the form <included>\t<function-name>\t<source-file>, where <included> is the string 1 of the file/function is included, and 0 otherwise.

codecov-commenter commented 1 year ago

Codecov Report

Merging #3246 (710559f) into main (e2b34a0) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##             main    #3246   +/-   ##
=======================================
  Coverage   29.65%   29.65%           
=======================================
  Files         332      332           
  Lines       39302    39302           
=======================================
  Hits        11654    11654           
  Misses      27648    27648