commit | bec522238f264ff97da25cf5b323429b54c68bc8 | [log] [tgz] |
---|---|---|
author | Vitaly Buka <vitalybuka@chromium.org> | Fri Dec 09 14:29:32 2016 -0800 |
committer | Vitaly Buka <vitalybuka@google.com> | Fri Dec 16 22:14:22 2016 +0000 |
tree | c546b7a45b583711d7e8ad4c5257993e0cca6c48 | |
parent | 8aa751040059c586051b4d327228e1ce27d6b791 [diff] |
Pass message, field and index as a FieldInstance structure. Calculate index for repeated fields during field sampling. Change-Id: Ic7dd8260544b80c45fba129d3d164e0f5fbc8a53 Reviewed-on: https://team-review.git.corp.google.com/57054 Reviewed-by: Vitaly Buka <vitalybuka@google.com>
libprotobuf-mutator is a library to randomly mutate protobuffers.
It could be used together with guided fuzzing engines, such as libFuzzer.
Install prerequisites:
sudo apt-get update sudo apt-get install binutils cmake ninja-build
Compile and test everything:
mkdir build cd build cmake ../cmake/ -GNinja -DCMAKE_BUILD_TYPE=Debug ninja check
To use libprotobuf-mutator simply include protobuf_mutator.h and protobuf_mutator.cc into your build files.
The ProtobufMutator
class implements mutations of the protobuf tree structure and mutations of individual fields. The field mutation logic is very basic -- for better results you should override the ProtobufMutator::Mutate*
methods with more sophisticated logic, e.g. using libFuzzer's mutators.
To apply one mutation to a protobuf object do the following:
class MyProtobufMutator : public ProtobufMutator { public: MyProtobufMutator(uint32_t seed) : ProtobufMutator(seed) {} // Optionally redefine the Mutate* methods to perform more sophisticated mutations. } void Mutate(MyMessage* message) { MyProtobufMutator mutator(my_random_seed); mutator.Mutate(message, 100, 200); }
See also the ProtobufMutatorMessagesTest.UsageExample
test from protobuf_mutator_test.cc.
TODO