From ae9dd26d624ec2cd2ae1d277d62ce30e2a70e798 Mon Sep 17 00:00:00 2001
From: jonathanmetzman <31354670+jonathanmetzman@users.noreply.github.com>
Date: Fri, 29 Mar 2024 15:34:51 -0400
Subject: [PATCH] Disable liblzma (#11762)

I haven't had time to digest the recent xz backdoor. Though I think
OSS-Fuzz's sandboxing protects us in the event that one of our users is
malicious, I will disable liblzma for now out of an abundance of
caution.
---
 projects/lzma/Dockerfile   | 34 ----------------------------------
 projects/lzma/build.sh     | 21 ---------------------
 projects/lzma/project.yaml | 16 ----------------
 3 files changed, 71 deletions(-)
 delete mode 100644 projects/lzma/Dockerfile
 delete mode 100755 projects/lzma/build.sh
 delete mode 100644 projects/lzma/project.yaml

diff --git a/projects/lzma/Dockerfile b/projects/lzma/Dockerfile
deleted file mode 100644
index 38e5dfef1e59..000000000000
--- a/projects/lzma/Dockerfile
+++ /dev/null
@@ -1,34 +0,0 @@
-# Copyright 2019 Google Inc.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#      http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-################################################################################
-
-FROM gcr.io/oss-fuzz-base/base-builder
-
-
-RUN apt-get update && apt-get install -y \
-	autoconf \
-	automake \
-	libtool \
-	make
-
-RUN git clone \
-	--depth 1 \
-	--branch master \
-	https://github.com/fancycode/lzma-fuzz.git \
-	lzma-fuzz
-
-WORKDIR lzma-fuzz
-
-COPY build.sh $SRC/
diff --git a/projects/lzma/build.sh b/projects/lzma/build.sh
deleted file mode 100755
index 3b6e339a0a39..000000000000
--- a/projects/lzma/build.sh
+++ /dev/null
@@ -1,21 +0,0 @@
-#!/bin/bash -eu
-# Copyright 2019 Google Inc.
-#
-# Licensed under the Apache License, Version 2.0 (the "License");
-# you may not use this file except in compliance with the License.
-# You may obtain a copy of the License at
-#
-#      http://www.apache.org/licenses/LICENSE-2.0
-#
-# Unless required by applicable law or agreed to in writing, software
-# distributed under the License is distributed on an "AS IS" BASIS,
-# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-# See the License for the specific language governing permissions and
-# limitations under the License.
-#
-################################################################################
-
-# build and install fuzzers
-make clean
-make -j$(nproc)
-make install DEST=$OUT
diff --git a/projects/lzma/project.yaml b/projects/lzma/project.yaml
deleted file mode 100644
index da4250cf7bbd..000000000000
--- a/projects/lzma/project.yaml
+++ /dev/null
@@ -1,16 +0,0 @@
-homepage: "https://www.7-zip.org/sdk.html"
-main_repo: 'https://github.com/fancycode/lzma-fuzz.git'
-language: c++
-primary_contact: "ipavlov@users.sourceforge.net"
-auto_ccs:
-  - "mail@joachim-bauch.de"
-sanitizers:
-  - address
-  - memory
-  - undefined
-
-fuzzing_engines:
-  - afl
-  - honggfuzz
-  - libfuzzer
-