Gitiles
Code Review Sign In
gerrit-public.fairphone.software / toolchain / llvm-project / f389ae12c1c8e2085ca9679ff09d253b5ac52f66 / . / llvm / lib / Fuzzer / FuzzerDriver.cpp
blob: 9be1b7fff67e7e915cbedb7d69b2c382c145f9c5 [file] [log] [blame]
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]1//===- FuzzerDriver.cpp - FuzzerDriver function and flags -----------------===//
2//
3// The LLVM Compiler Infrastructure
4//
5// This file is distributed under the University of Illinois Open Source
6// License. See LICENSE.TXT for details.
7//
8//===----------------------------------------------------------------------===//
9// FuzzerDriver and flag parsing.
10//===----------------------------------------------------------------------===//
11
12#include "FuzzerInterface.h"
13#include "FuzzerInternal.h"
14
15#include <cstring>
Kostya Serebryany83fd4862015-05-11 21:31:51 +0000[diff] [blame]16#include <chrono>
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]17#include <unistd.h>
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]18#include <thread>
19#include <atomic>
20#include <mutex>
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]21#include <string>
22#include <sstream>
23#include <algorithm>
24#include <iterator>
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]25
Kostya Serebryany4282d302016-01-15 00:17:37 +0000[diff] [blame]26// This function should be present in the libFuzzer so that the client
27// binary can test for its existence.
28extern "C" __attribute__((used)) void __libfuzzer_is_present() {}
29
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]30namespace fuzzer {
31
32// Program arguments.
33struct FlagDescription {
34 const char *Name;
35 const char *Description;
36 int Default;
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]37 int *IntFlag;
38 const char **StrFlag;
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]39 unsigned int *UIntFlag;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]40};
41
42struct {
Kostya Serebryany3d95dd92016-03-01 22:33:14 +0000[diff] [blame]43#define FUZZER_DEPRECATED_FLAG(Name)
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]44#define FUZZER_FLAG_INT(Name, Default, Description) int Name;
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]45#define FUZZER_FLAG_UNSIGNED(Name, Default, Description) unsigned int Name;
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]46#define FUZZER_FLAG_STRING(Name, Description) const char *Name;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]47#include "FuzzerFlags.def"
Kostya Serebryany3d95dd92016-03-01 22:33:14 +0000[diff] [blame]48#undef FUZZER_DEPRECATED_FLAG
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]49#undef FUZZER_FLAG_INT
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]50#undef FUZZER_FLAG_UNSIGNED
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]51#undef FUZZER_FLAG_STRING
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]52} Flags;
53
Craig Topper26260942015-10-18 05:15:34 +0000[diff] [blame]54static const FlagDescription FlagDescriptions [] {
Kostya Serebryany3d95dd92016-03-01 22:33:14 +0000[diff] [blame]55#define FUZZER_DEPRECATED_FLAG(Name) \
56 {#Name, "Deprecated; don't use", 0, nullptr, nullptr, nullptr},
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]57#define FUZZER_FLAG_INT(Name, Default, Description) \
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]58 {#Name, Description, Default, &Flags.Name, nullptr, nullptr},
59#define FUZZER_FLAG_UNSIGNED(Name, Default, Description) \
60 {#Name, Description, static_cast<int>(Default), \
61 nullptr, nullptr, &Flags.Name},
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]62#define FUZZER_FLAG_STRING(Name, Description) \
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]63 {#Name, Description, 0, nullptr, &Flags.Name, nullptr},
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]64#include "FuzzerFlags.def"
Kostya Serebryany3d95dd92016-03-01 22:33:14 +0000[diff] [blame]65#undef FUZZER_DEPRECATED_FLAG
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]66#undef FUZZER_FLAG_INT
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]67#undef FUZZER_FLAG_UNSIGNED
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]68#undef FUZZER_FLAG_STRING
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]69};
70
71static const size_t kNumFlags =
72 sizeof(FlagDescriptions) / sizeof(FlagDescriptions[0]);
73
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]74static std::vector<std::string> *Inputs;
75static std::string *ProgName;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]76
77static void PrintHelp() {
Kostya Serebryanybfbe7fc2016-02-02 03:03:47 +0000[diff] [blame]78 Printf("Usage:\n");
79 auto Prog = ProgName->c_str();
80 Printf("\nTo run fuzzing pass 0 or more directories.\n");
81 Printf("%s [-flag1=val1 [-flag2=val2 ...] ] [dir1 [dir2 ...] ]\n", Prog);
82
83 Printf("\nTo run individual tests without fuzzing pass 1 or more files:\n");
84 Printf("%s [-flag1=val1 [-flag2=val2 ...] ] file1 [file2 ...]\n", Prog);
85
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]86 Printf("\nFlags: (strictly in form -flag=value)\n");
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]87 size_t MaxFlagLen = 0;
88 for (size_t F = 0; F < kNumFlags; F++)
89 MaxFlagLen = std::max(strlen(FlagDescriptions[F].Name), MaxFlagLen);
90
91 for (size_t F = 0; F < kNumFlags; F++) {
92 const auto &D = FlagDescriptions[F];
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]93 Printf(" %s", D.Name);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]94 for (size_t i = 0, n = MaxFlagLen - strlen(D.Name); i < n; i++)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]95 Printf(" ");
96 Printf("\t");
97 Printf("%d\t%s\n", D.Default, D.Description);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]98 }
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]99 Printf("\nFlags starting with '--' will be ignored and "
100 "will be passed verbatim to subprocesses.\n");
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]101}
102
103static const char *FlagValue(const char *Param, const char *Name) {
104 size_t Len = strlen(Name);
105 if (Param[0] == '-' && strstr(Param + 1, Name) == Param + 1 &&
106 Param[Len + 1] == '=')
107 return &Param[Len + 2];
108 return nullptr;
109}
110
Kostya Serebryany4282d302016-01-15 00:17:37 +0000[diff] [blame]111// Avoid calling stol as it triggers a bug in clang/glibc build.
112static long MyStol(const char *Str) {
113 long Res = 0;
Kostya Serebryany311f27c2016-01-19 20:33:57 +0000[diff] [blame]114 long Sign = 1;
115 if (*Str == '-') {
116 Str++;
117 Sign = -1;
118 }
Kostya Serebryany4282d302016-01-15 00:17:37 +0000[diff] [blame]119 for (size_t i = 0; Str[i]; i++) {
120 char Ch = Str[i];
121 if (Ch < '0' || Ch > '9')
122 return Res;
123 Res = Res * 10 + (Ch - '0');
124 }
Kostya Serebryany311f27c2016-01-19 20:33:57 +0000[diff] [blame]125 return Res * Sign;
Kostya Serebryany4282d302016-01-15 00:17:37 +0000[diff] [blame]126}
127
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]128static bool ParseOneFlag(const char *Param) {
129 if (Param[0] != '-') return false;
Kostya Serebryany71e0feb2015-05-21 20:39:13 +0000[diff] [blame]130 if (Param[1] == '-') {
131 static bool PrintedWarning = false;
132 if (!PrintedWarning) {
133 PrintedWarning = true;
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]134 Printf("INFO: libFuzzer ignores flags that start with '--'\n");
Kostya Serebryany71e0feb2015-05-21 20:39:13 +0000[diff] [blame]135 }
136 return true;
137 }
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]138 for (size_t F = 0; F < kNumFlags; F++) {
139 const char *Name = FlagDescriptions[F].Name;
140 const char *Str = FlagValue(Param, Name);
141 if (Str) {
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]142 if (FlagDescriptions[F].IntFlag) {
Kostya Serebryany4282d302016-01-15 00:17:37 +0000[diff] [blame]143 int Val = MyStol(Str);
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]144 *FlagDescriptions[F].IntFlag = Val;
145 if (Flags.verbosity >= 2)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]146 Printf("Flag: %s %d\n", Name, Val);;
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]147 return true;
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]148 } else if (FlagDescriptions[F].UIntFlag) {
149 unsigned int Val = std::stoul(Str);
150 *FlagDescriptions[F].UIntFlag = Val;
151 if (Flags.verbosity >= 2)
152 Printf("Flag: %s %u\n", Name, Val);
153 return true;
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]154 } else if (FlagDescriptions[F].StrFlag) {
155 *FlagDescriptions[F].StrFlag = Str;
156 if (Flags.verbosity >= 2)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]157 Printf("Flag: %s %s\n", Name, Str);
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]158 return true;
Kostya Serebryany3d95dd92016-03-01 22:33:14 +0000[diff] [blame]159 } else { // Deprecated flag.
160 Printf("Flag: %s: deprecated, don't use\n", Name);
161 return true;
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]162 }
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]163 }
164 }
165 PrintHelp();
166 exit(1);
167}
168
169// We don't use any library to minimize dependencies.
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]170static void ParseFlags(const std::vector<std::string> &Args) {
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]171 for (size_t F = 0; F < kNumFlags; F++) {
172 if (FlagDescriptions[F].IntFlag)
173 *FlagDescriptions[F].IntFlag = FlagDescriptions[F].Default;
Mike Aizatskya1a5c692015-12-10 20:41:53 +0000[diff] [blame]174 if (FlagDescriptions[F].UIntFlag)
175 *FlagDescriptions[F].UIntFlag =
176 static_cast<unsigned int>(FlagDescriptions[F].Default);
Kostya Serebryany52a788e2015-03-31 20:13:20 +0000[diff] [blame]177 if (FlagDescriptions[F].StrFlag)
178 *FlagDescriptions[F].StrFlag = nullptr;
179 }
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]180 Inputs = new std::vector<std::string>;
181 for (size_t A = 1; A < Args.size(); A++) {
182 if (ParseOneFlag(Args[A].c_str())) continue;
183 Inputs->push_back(Args[A]);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]184 }
185}
186
Kostya Serebryany83fd4862015-05-11 21:31:51 +0000[diff] [blame]187static std::mutex Mu;
188
189static void PulseThread() {
190 while (true) {
191 std::this_thread::sleep_for(std::chrono::seconds(600));
192 std::lock_guard<std::mutex> Lock(Mu);
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]193 Printf("pulse...\n");
Kostya Serebryany83fd4862015-05-11 21:31:51 +0000[diff] [blame]194 }
195}
196
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]197static void WorkerThread(const std::string &Cmd, std::atomic<int> *Counter,
198 int NumJobs, std::atomic<bool> *HasErrors) {
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]199 while (true) {
200 int C = (*Counter)++;
201 if (C >= NumJobs) break;
202 std::string Log = "fuzz-" + std::to_string(C) + ".log";
203 std::string ToRun = Cmd + " > " + Log + " 2>&1\n";
204 if (Flags.verbosity)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]205 Printf("%s", ToRun.c_str());
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]206 int ExitCode = ExecuteCommand(ToRun.c_str());
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]207 if (ExitCode != 0)
208 *HasErrors = true;
Kostya Serebryany83fd4862015-05-11 21:31:51 +0000[diff] [blame]209 std::lock_guard<std::mutex> Lock(Mu);
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]210 Printf("================== Job %d exited with exit code %d ============\n",
211 C, ExitCode);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]212 fuzzer::CopyFileToErr(Log);
213 }
214}
215
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]216static int RunInMultipleProcesses(const std::vector<std::string> &Args,
217 int NumWorkers, int NumJobs) {
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]218 std::atomic<int> Counter(0);
219 std::atomic<bool> HasErrors(false);
220 std::string Cmd;
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]221 for (auto &S : Args) {
222 if (FlagValue(S.c_str(), "jobs") || FlagValue(S.c_str(), "workers"))
223 continue;
224 Cmd += S + " ";
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]225 }
226 std::vector<std::thread> V;
Kostya Serebryany83fd4862015-05-11 21:31:51 +0000[diff] [blame]227 std::thread Pulse(PulseThread);
Kostya Serebryanycd7629c2015-05-12 01:43:20 +0000[diff] [blame]228 Pulse.detach();
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]229 for (int i = 0; i < NumWorkers; i++)
230 V.push_back(std::thread(WorkerThread, Cmd, &Counter, NumJobs, &HasErrors));
231 for (auto &T : V)
232 T.join();
233 return HasErrors ? 1 : 0;
234}
235
Ivan Krasin95e82d52015-10-01 23:23:06 +0000[diff] [blame]236int RunOneTest(Fuzzer *F, const char *InputFilePath) {
237 Unit U = FileToVector(InputFilePath);
Kostya Serebryany856b7af2015-11-03 18:57:25 +0000[diff] [blame]238 Unit PreciseSizedU(U);
239 assert(PreciseSizedU.size() == PreciseSizedU.capacity());
Kostya Serebryany8a5bef02016-02-13 17:56:51 +0000[diff] [blame]240 F->ExecuteCallback(PreciseSizedU.data(), PreciseSizedU.size());
Ivan Krasin95e82d52015-10-01 23:23:06 +0000[diff] [blame]241 return 0;
242}
243
Kostya Serebryanybfbe7fc2016-02-02 03:03:47 +0000[diff] [blame]244static bool AllInputsAreFiles() {
245 if (Inputs->empty()) return false;
246 for (auto &Path : *Inputs)
247 if (!IsFile(Path))
248 return false;
249 return true;
250}
251
Kostya Serebryany29bcb9f2016-02-13 03:59:26 +0000[diff] [blame]252static int FuzzerDriver(const std::vector<std::string> &Args,
253 UserCallback Callback) {
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]254 using namespace fuzzer;
255 assert(!Args.empty());
256 ProgName = new std::string(Args[0]);
257 ParseFlags(Args);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]258 if (Flags.help) {
259 PrintHelp();
260 return 0;
261 }
262
Kostya Serebryany49e40902016-03-18 20:58:29 +0000[diff] [blame]263 if (Flags.close_fd_mask & 2)
264 DupAndCloseStderr();
265 if (Flags.close_fd_mask & 1)
266 CloseStdout();
267
Kostya Serebryany9690fcf2015-05-12 18:51:57 +0000[diff] [blame]268 if (Flags.jobs > 0 && Flags.workers == 0) {
269 Flags.workers = std::min(NumberOfCpuCores() / 2, Flags.jobs);
270 if (Flags.workers > 1)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]271 Printf("Running %d workers\n", Flags.workers);
Kostya Serebryany9690fcf2015-05-12 18:51:57 +0000[diff] [blame]272 }
273
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]274 if (Flags.workers > 0 && Flags.jobs > 0)
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]275 return RunInMultipleProcesses(Args, Flags.workers, Flags.jobs);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]276
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]277 const size_t kMaxSaneLen = 1 << 20;
Kostya Serebryany0c5e3af2016-03-15 01:28:00 +0000[diff] [blame]278 const size_t kMinDefaultLen = 64;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]279 Fuzzer::FuzzingOptions Options;
280 Options.Verbosity = Flags.verbosity;
281 Options.MaxLen = Flags.max_len;
Kostya Serebryany490bbd62015-05-19 22:12:57 +0000[diff] [blame]282 Options.UnitTimeoutSec = Flags.timeout;
Kostya Serebryany54a63632016-01-29 23:30:07 +0000[diff] [blame]283 Options.TimeoutExitCode = Flags.timeout_exitcode;
Kostya Serebryanyb85db172015-10-02 20:47:55 +0000[diff] [blame]284 Options.MaxTotalTimeSec = Flags.max_total_time;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]285 Options.DoCrossOver = Flags.cross_over;
286 Options.MutateDepth = Flags.mutate_depth;
Kostya Serebryanybe5e0ed2015-03-03 23:27:02 +0000[diff] [blame]287 Options.UseCounters = Flags.use_counters;
Kostya Serebryany2e9fca92015-10-22 23:55:39 +0000[diff] [blame]288 Options.UseIndirCalls = Flags.use_indir_calls;
Kostya Serebryany5a99ecb2015-05-11 20:51:19 +0000[diff] [blame]289 Options.UseTraces = Flags.use_traces;
Kostya Serebryanyae5b9562016-01-15 06:24:05 +0000[diff] [blame]290 Options.UseMemcmp = Flags.use_memcmp;
Kostya Serebryanyfed509e2015-10-17 04:38:26 +0000[diff] [blame]291 Options.ShuffleAtStartUp = Flags.shuffle;
Kostya Serebryany945761b2016-03-18 00:23:29 +0000[diff] [blame]292 Options.PreferSmall = Flags.prefer_small;
Kostya Serebryany1ac80552015-05-08 21:30:55 +0000[diff] [blame]293 Options.Reload = Flags.reload;
Kostya Serebryanybc7c0ad2015-08-11 01:44:42 +0000[diff] [blame]294 Options.OnlyASCII = Flags.only_ascii;
Mike Aizatskya9c23872015-11-12 04:38:40 +0000[diff] [blame]295 Options.OutputCSV = Flags.output_csv;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]296 if (Flags.runs >= 0)
297 Options.MaxNumberOfRuns = Flags.runs;
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]298 if (!Inputs->empty())
299 Options.OutputCorpus = (*Inputs)[0];
Kostya Serebryany70926ae2015-08-05 21:43:48 +0000[diff] [blame]300 Options.ReportSlowUnits = Flags.report_slow_units;
Kostya Serebryanybd5d1cd2015-10-09 03:57:59 +0000[diff] [blame]301 if (Flags.artifact_prefix)
302 Options.ArtifactPrefix = Flags.artifact_prefix;
Kostya Serebryany2d0ef142015-11-25 21:40:46 +0000[diff] [blame]303 if (Flags.exact_artifact_path)
304 Options.ExactArtifactPath = Flags.exact_artifact_path;
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]305 std::vector<Unit> Dictionary;
Kostya Serebryany7d211662015-09-04 00:12:11 +0000[diff] [blame]306 if (Flags.dict)
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]307 if (!ParseDictionaryFile(FileToString(Flags.dict), &Dictionary))
Kostya Serebryany7d211662015-09-04 00:12:11 +0000[diff] [blame]308 return 1;
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]309 if (Flags.verbosity > 0 && !Dictionary.empty())
310 Printf("Dictionary: %zd entries\n", Dictionary.size());
Kostya Serebryanyc5575aa2016-03-17 19:59:39 +0000[diff] [blame]311 bool DoPlainRun = AllInputsAreFiles();
312 Options.SaveArtifacts = !DoPlainRun;
Mike Aizatsky8b11f872016-01-06 00:21:22 +0000[diff] [blame]313 Options.PrintNewCovPcs = Flags.print_new_cov_pcs;
Kostya Serebryany66ff0752016-02-26 22:42:23 +0000[diff] [blame]314 Options.PrintFinalStats = Flags.print_final_stats;
Kostya Serebryany7d211662015-09-04 00:12:11 +0000[diff] [blame]315
Kostya Serebryanya3992212016-02-13 03:00:53 +0000[diff] [blame]316 unsigned Seed = Flags.seed;
317 // Initialize Seed.
318 if (Seed == 0)
319 Seed = (std::chrono::system_clock::now().time_since_epoch().count() << 10) +
320 getpid();
321 if (Flags.verbosity)
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]322 Printf("INFO: Seed: %u\n", Seed);
Kostya Serebryanya3992212016-02-13 03:00:53 +0000[diff] [blame]323
324 Random Rand(Seed);
Kostya Serebryany7ec0c562016-02-13 03:25:16 +0000[diff] [blame]325 MutationDispatcher MD(Rand);
326 Fuzzer F(Callback, MD, Options);
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]327
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]328 for (auto &U: Dictionary)
Kostya Serebryany476f0ce2016-01-16 03:53:32 +0000[diff] [blame]329 if (U.size() <= Word::GetMaxSize())
Kostya Serebryany7ec0c562016-02-13 03:25:16 +0000[diff] [blame]330 MD.AddWordToManualDictionary(Word(U.data(), U.size()));
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]331
Kostya Serebryanyb91c62b2015-10-16 22:41:47 +0000[diff] [blame]332 // Timer
333 if (Flags.timeout > 0)
334 SetTimer(Flags.timeout / 2 + 1);
Kostya Serebryany228d5b12016-03-01 22:19:21 +0000[diff] [blame]335 if (Flags.handle_segv) SetSigSegvHandler();
336 if (Flags.handle_bus) SetSigBusHandler();
337 if (Flags.handle_abrt) SetSigAbrtHandler();
338 if (Flags.handle_ill) SetSigIllHandler();
339 if (Flags.handle_fpe) SetSigFpeHandler();
340 if (Flags.handle_int) SetSigIntHandler();
Kostya Serebryanyf389ae12016-03-24 21:03:58 +0000[diff] [blame^]341 if (Flags.handle_term) SetSigTermHandler();
Kostya Serebryanyb91c62b2015-10-16 22:41:47 +0000[diff] [blame]342
Kostya Serebryanyc5575aa2016-03-17 19:59:39 +0000[diff] [blame]343 if (DoPlainRun) {
344 Options.SaveArtifacts = false;
Kostya Serebryany9d14e4b2016-02-12 02:32:03 +0000[diff] [blame]345 int Runs = std::max(1, Flags.runs);
346 Printf("%s: Running %zd inputs %d time(s) each.\n", ProgName->c_str(),
347 Inputs->size(), Runs);
Kostya Serebryanybfbe7fc2016-02-02 03:03:47 +0000[diff] [blame]348 for (auto &Path : *Inputs) {
349 auto StartTime = system_clock::now();
Kostya Serebryany5c3701c2016-03-04 22:35:40 +0000[diff] [blame]350 for (int Iter = 0; Iter < Runs; Iter++)
Kostya Serebryany9d14e4b2016-02-12 02:32:03 +0000[diff] [blame]351 RunOneTest(&F, Path.c_str());
Kostya Serebryanybfbe7fc2016-02-02 03:03:47 +0000[diff] [blame]352 auto StopTime = system_clock::now();
353 auto MS = duration_cast<milliseconds>(StopTime - StartTime).count();
354 Printf("%s: %zd ms\n", Path.c_str(), (long)MS);
355 }
356 exit(0);
357 }
358
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]359
Kostya Serebryany9cc3b0d2015-10-24 01:16:40 +0000[diff] [blame]360 if (Flags.merge) {
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]361 if (Options.MaxLen == 0)
362 F.SetMaxLen(kMaxSaneLen);
Kostya Serebryany9cc3b0d2015-10-24 01:16:40 +0000[diff] [blame]363 F.Merge(*Inputs);
364 exit(0);
365 }
366
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]367 size_t TemporaryMaxLen = Options.MaxLen ? Options.MaxLen : kMaxSaneLen;
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]368
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]369 F.RereadOutputCorpus(TemporaryMaxLen);
Kostya Serebryanya938bcb2015-09-10 16:57:57 +0000[diff] [blame]370 for (auto &inp : *Inputs)
Kostya Serebryany1ac80552015-05-08 21:30:55 +0000[diff] [blame]371 if (inp != Options.OutputCorpus)
Kostya Serebryany64d24572016-03-12 01:57:04 +0000[diff] [blame]372 F.ReadDir(inp, nullptr, TemporaryMaxLen);
373
374 if (Options.MaxLen == 0)
375 F.SetMaxLen(
Kostya Serebryany0c5e3af2016-03-15 01:28:00 +0000[diff] [blame]376 std::min(std::max(kMinDefaultLen, F.MaxUnitSizeInCorpus()), kMaxSaneLen));
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]377
378 if (F.CorpusSize() == 0)
379 F.AddToCorpus(Unit()); // Can't fuzz empty corpus, so add an empty input.
380 F.ShuffleAndMinimize();
Kostya Serebryany550e9c82015-12-19 03:42:16 +0000[diff] [blame]381 if (Flags.drill)
Kostya Serebryanydc3135d2015-11-12 01:02:01 +0000[diff] [blame]382 F.Drill();
383 else
384 F.Loop();
385
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]386 if (Flags.verbosity)
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]387 Printf("Done %d runs in %zd second(s)\n", F.getTotalNumberOfRuns(),
388 F.secondsSinceProcessStartUp());
Kostya Serebryany66ff0752016-02-26 22:42:23 +0000[diff] [blame]389 F.PrintFinalStats();
Kostya Serebryany20e9bcb2015-05-23 01:07:46 +0000[diff] [blame]390
Kostya Serebryanyc8cd29f2015-10-03 07:02:05 +0000[diff] [blame]391 exit(0); // Don't let F destroy itself.
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]392}
393
Kostya Serebryany29bcb9f2016-02-13 03:59:26 +0000[diff] [blame]394int FuzzerDriver(int argc, char **argv, UserCallback Callback) {
395 std::vector<std::string> Args(argv, argv + argc);
396 return FuzzerDriver(Args, Callback);
397}
398
Kostya Serebryany016852c2015-02-19 18:45:37 +0000[diff] [blame]399} // namespace fuzzer