Hi! My name is David Korczynski and I have been doing some work on integrating fuzzing by way of OSS-Fuzz into the gcc project. This came out of fuzzing libiberty within the binutils project where we found several bugs within libiberty. However, the binutils owners are not working on libiberty so we dont get much results from reporting to them. I was wondering if we could set up a similar project, namely by integrating gcc to the OSS-Fuzz project and the errors found will then automatically be sent to gcc-b...@gcc.gnu.org? We can either add the fuzzers upstream to gcc or do as binutils and adding them to OSS-Fuzz. I have already done the work so we should be good to go with continuous fuzzing if you are interested!
You can see the current binutils project here: https://github.com/google/oss-fuzz/tree/master/projects/binutils Here the binutils owners outline their interest in the project: https://github.com/google/oss-fuzz/pull/2617 Kind regards, David
