commit | 276f901c04c0825b863dd520d9a21fe9028b1c4d | [log] [tgz] |
---|---|---|
author | Bob Badour <bbadour@google.com> | Fri Feb 12 20:25:11 2021 -0800 |
committer | Bob Badour <bbadour@google.com> | Fri Feb 12 20:25:11 2021 -0800 |
tree | 68d013bee6544df7e821cd8f9598d6a6b9c5e37c | |
parent | 1b0f479bcdd9b499eaa584d6b97e82381a05df9c [diff] |
[LSC] Add LOCAL_LICENSE_KINDS to external/rust/crates/libfuzzer-sys Added SPDX-license-identifier-Apache-2.0 SPDX-license-identifier-BSD SPDX-license-identifier-MIT SPDX-license-identifier-NCSA legacy_unencumbered to: Android.bp Bug: 68860345 Bug: 151177513 Bug: 151953481 Test: m all Exempt-From-Owner-Approval: janitorial work Change-Id: I08adeba6c75a794f0d80ee62aea1776d8bf51ed7
libfuzzer-sys
CrateBarebones wrapper around LLVM's libFuzzer runtime library.
The CPP parts are extracted from compiler-rt git repository with git filter-branch
.
libFuzzer relies on LLVM sanitizer support. The Rust compiler has built-in support for LLVM sanitizer support, for now, it's limited to Linux. As a result, libfuzzer-sys
only works on Linux.
cargo fuzz
!The recommended way to use this crate with cargo fuzz
!.
This crate can also be used manually as following:
First create a new cargo project:
$ cargo new --bin fuzzed $ cd fuzzed
Then add a dependency on the fuzzer-sys
crate and your own crate:
[dependencies] libfuzzer-sys = "0.3.0" your_crate = { path = "../path/to/your/crate" }
Change the fuzzed/src/main.rs
to fuzz your code:
#![no_main] use libfuzzer_sys::fuzz_target; fuzz_target!(|data: &[u8]| { // code to fuzz goes here });
Build by running the following command:
$ cargo rustc -- \ -C passes='sancov' \ -C llvm-args='-sanitizer-coverage-level=3' \ -Z sanitizer=address
And finally, run the fuzzer:
$ ./target/debug/fuzzed
./update-libfuzzer.sh <github.com/llvm-mirror/llvm-project SHA1>
All files in libfuzzer
directory are licensed NCSA.
Everything else is dual-licensed Apache 2.0 and MIT.