Upstream Serenity support

Sources/FuzzilliCli/Profiles/Profile.swift

@@ -50,4 +50,5 @@ let profiles = [
     "jerryscript": jerryscriptProfile,
     "xs": xsProfile,
     "v8holefuzzing": v8HoleFuzzingProfile,
+    "serenity": serenityProfile,
 ]

Sources/FuzzilliCli/Profiles/Serenity.swift

@@ -0,0 +1,42 @@
+// Copyright 2024 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// https://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+import Fuzzilli
+
+let serenityProfile = Profile(
+    processArguments: [""],
+    processEnv: [
+    "UBSAN_OPTIONS":"handle_segv=0 handle_abrt=0",
+    "ASAN_OPTIONS":"abort_on_error=1"
+    ],
+    maxExecsBeforeRespawn: 1000,
+    timeout: 250,
+    codePrefix: ""
+    codeSuffix: ""
+    ecmaVersion: ECMAScriptVersion.es6,
+
+    crashTests: ["fuzzilli('FUZZILLI_CRASH', 0)", "fuzzilli('FUZZILLI_CRASH', 1)"],
+
+    additionalCodeGenerators: WeightedList<CodeGenerator>([]),
+    additionalProgramTemplates: WeightedList<ProgramTemplate>([]),
+
+    disabledCodeGenerators: [],
+    disabledMutators: [],
+
+    additionalBuiltins: [
+        "gc" : .function([] => .undefined)
+    ]
+
+    optionalPostProcessor: nil
+)

Targets/Serenity/README.md

@@ -0,0 +1,5 @@
+To build Serenity's javascript engine for fuzzing,
+follow its [documentation](https://github.com/SerenityOS/serenity/blob/master/Meta/Lagom/ReadMe.md#fuzzing),
+no patching is necessary.
+
+The fuzzing harness will be `Build/Meta/Lagom/Fuzzers/FuzzilliJs`.