Gitiles
Code Review Sign In
gerrit-public.fairphone.software / toolchain / llvm-project / 4fed928f53dbea24914bc0db307e0988c6e44c8c / llvm / lib / Fuzzer / FuzzerDriver.cpp
  1. af432a4 [libfuzzer] Trying random unit prefixes during corpus load. by Mike Aizatsky · 9 years ago
  2. 6289536 [libFuzzer] print the file name before executing the input so that if there is a crash we know which files has caused it by Kostya Serebryany · 9 years ago
  3. 8b8f7a3 [libFuzzer] enhance -rss_limit_mb and enable by default. Now it will print the OOM reproducer. by Kostya Serebryany · 9 years ago
  4. 52b394e [libFuzzer] add exeprimental -rss_limit_mb flag to fight against OOMs by Kostya Serebryany · 9 years ago
  5. baf7fd0 [libFuzzer] print stats after running individual inputs by Kostya Serebryany · 10 years ago
  6. 1bfd583 [libFuzzer] added -detect_leaks flag (0 by default for now). When enabled, it will help finding leaks while fuzzing by Kostya Serebryany · 10 years ago
  7. 09087bb [libFuzzer] warn if the corpus is empty by Kostya Serebryany · 10 years ago
  8. b550cb1 [NFC] Header cleanup by Mehdi Amini · 10 years ago
  9. b60397f [libFuzzer] add a better warning for command line flags with -- (two dashes) by Kostya Serebryany · 10 years ago
  10. e631996 Remove redundant .c_str(), as suggested by PR25633 by Hans Wennborg · 10 years ago
  11. f389ae1 [libFuzzer] handle SIGTERM by Kostya Serebryany · 10 years ago
  12. 49e4090 [libFuzzer] add a flag close_fd_mask so that we can silence spammy targets by closing stderr/stdout by Kostya Serebryany · 10 years ago
  13. 945761b [libFuzzer] improve -merge functionality by Kostya Serebryany · 10 years ago
  14. c5575aa [libFuzzer] deprecate several flags by Kostya Serebryany · 10 years ago
  15. 0c5e3af [libFuzzer] use max_len exactly equal to the max size of input. Fix 32-bit build by Kostya Serebryany · 10 years ago
  16. 64d2457 [libFuzzer] try to use max_len based on the items of the corpus instead of blindly defaulting to 64 bytes. by Kostya Serebryany · 10 years ago
  17. 5c3701c [libFuzzer] log less when re-loading files; fix a silly bug: when running single files actually run all of them, not just the first one by Kostya Serebryany · 10 years ago
  18. 3d95dd9 [libFuzzer] deprecate exit_on_first flag by Kostya Serebryany · 10 years ago
  19. 228d5b1 [libFuzzer] add generic signal handlers so that libFuzzer can report at least something if ASan is not handlig the signals for us. Remove abort_on_timeout flag. by Kostya Serebryany · 10 years ago
  20. 66ff075 [libFuzzer] add -print_final_stats=1 flag by Kostya Serebryany · 10 years ago
  21. a35f7d3 [libFuzzer] only read MaxLen bytes from every file in the corpus to speedup loading the corpus by Kostya Serebryany · 10 years ago
  22. 8a5bef0 [libFuzzer] remove std::vector operations from hot paths, NFC by Kostya Serebryany · 10 years ago
  23. 29bcb9f [libFuzzer] remove the C++-ish variant of FuzzerDriver from the interface by Kostya Serebryany · 10 years ago
  24. 7ec0c56 [libFuzzer] get rid of UserSuppliedFuzzer; NFC by Kostya Serebryany · 10 years ago
  25. a399221 [libFuzzer] simplify the code around Random. NFC by Kostya Serebryany · 10 years ago
  26. ecab57b [libFuzzer] remove UserSuppliedFuzzer from the interface (it was a bad idea). by Kostya Serebryany · 10 years ago
  27. 9d14e4b [libFuzzer] make -runs=N flag also affect the simple runner (will execute every input N times) by Kostya Serebryany · 10 years ago
  28. bfbe7fc [libFuzzer] allow passing 1 or more files as individual inputs by Kostya Serebryany · 10 years ago
  29. 54a6363 [libFuzzer] add -timeout_exitcode option by Kostya Serebryany · 10 years ago
  30. 9768e7f [libFuzzer] add -abort_on_timeout option by Kostya Serebryany · 10 years ago
  31. 311f27c [libFuzzer] use std::mt19937 for generating random numbers by default. Fix MyStoll to handle negative values. Use std::any_of instead of std::find_if by Kostya Serebryany · 10 years ago
  32. 476f0ce [libFuzzer] replace vector with a simpler data structure in the Dictionaries to avoid memory allocations on hot path by Kostya Serebryany · 10 years ago
  33. ae5b956 [libFuzzer] do mutations based on memcmp/strcmp interceptors under a separate flag (-use_memcmp, default=1) by Kostya Serebryany · 10 years ago
  34. 4282d30 [libFuzzer] use custom stol; also introduce __libfuzzer_is_present so that users can check for its presence. by Kostya Serebryany · 10 years ago
  35. b65805a [libFuzzer] change the way trace-based mutations are applied. Instead of a custom code just rely on the automatically created dictionary by Kostya Serebryany · 10 years ago
  36. 152ac7a [libFuzzer] add a position hint to the dictionary-based mutator by Kostya Serebryany · 10 years ago
  37. 8b11f87 [libfuzzer] print_new_cov_pcs experimental option. by Mike Aizatsky · 10 years ago
  38. 550e9c8 [libFuzzer] deprecate -save_minimized_corpus, -merge can be used instead by Kostya Serebryany · 10 years ago
  39. a1a5c69 [LibFuzzer] Introducing FUZZER_FLAG_UNSIGNED and using it for seeding. by Mike Aizatsky · 10 years ago
  40. 2d0ef14 [libFuzzer] add a flag -exact_artifact_path by Kostya Serebryany · 10 years ago
  41. b569368 [libFuzzer] don't crash when reporting a leak in test_single_input mode by Kostya Serebryany · 10 years ago
  42. a9c2387 output_csv libfuzzer option by Mike Aizatsky · 10 years ago
  43. dc3135d [libFuzzer] experimental flag -drill (another search heuristic; Mike Aizatsky's idea) by Kostya Serebryany · 10 years ago
  44. 856b7af [libFuzzer] make -test_single_input more reliable: make sure the input's size is equal to it's capacity by Kostya Serebryany · 10 years ago
  45. 9cc3b0d [libFuzzer] add -merge flag to merge corpora by Kostya Serebryany · 10 years ago
  46. 2e9fca9 [libFuzzer] use the indirect caller-callee counter as an independent search heuristic by Kostya Serebryany · 10 years ago
  47. b360256 [libFuzzer] remove the deprecated 'tokens' feature by Kostya Serebryany · 10 years ago
  48. 2626094 Make a bunch of static arrays const. by Craig Topper · 10 years ago
  49. fed509e [libFuzzer] add -shuffle flag by Kostya Serebryany · 10 years ago
  50. b91c62b [libFuzzer] When -test_single_input crashes the test it is not necessary to write crash-file because input is already known to the user. Patch by Mike Aizatsky by Kostya Serebryany · 10 years ago
  51. bd5d1cd [libFuzzer] add -artifact_prefix flag by Kostya Serebryany · 10 years ago
  52. c8cd29f [libFuzzer] trying to fix at-exit hang by Kostya Serebryany · 10 years ago
  53. 65d0a14 [libFuzzer] remove experimental flag and functionality by Kostya Serebryany · 10 years ago
  54. b85db17 [libFuzzer] add a flag -max_total_time by Kostya Serebryany · 10 years ago
  55. 95e82d5 [LibFuzzer] test_single_input option to run a single test case. by Ivan Krasin · 10 years ago
  56. a938bcb [libFuzzer] add two more variants of FuzzerDriver for convenience by Kostya Serebryany · 10 years ago
  57. 468ed78 [libFuzzer] remove -iterations as redundant (there is also -num_runs) by Kostya Serebryany · 10 years ago
  58. 7d21166 [libFuzzer] actually make the dictionaries work (+docs) by Kostya Serebryany · 10 years ago
  59. 9838b2b [libFuzzer] adding a parser for AFL-style dictionaries + tests. by Kostya Serebryany · 10 years ago
  60. 6ea1b69 [libFuzzer] deprecate the -tokens flag. This was a bad idea because the corpus with this flag contains encrypted inputs, not the real inputs, which complicates interoperation with other fuzzers. Instead we'll need to implement AFL dictionary support by Kostya Serebryany · 10 years ago
  61. 12c7837 [libFuzzer] add two flags, -tbm_depth and -tbm_width to control how the trace-based-mutations are applied by Kostya Serebryany · 10 years ago
  62. bc7c0ad [libFuzzer] add -only_ascii flag by Kostya Serebryany · 10 years ago
  63. 70926ae [libFuzzer] add option -report_slow_units=Nsec to control when slow units are printed by Kostya Serebryany · 10 years ago
  64. 404c69f [libFuzzer] allow users to supply their own implementation of rand by Kostya Serebryany · 10 years ago
  65. 20e9bcb [lib/Fuzzer] start getting rid of std::cerr. Sadly, these parts of C++ library used in libFuzzer badly interract with the same code used in the target function and also with dfsan. It's easier to just not use std::cerr than to defeat these issues. by Kostya Serebryany · 10 years ago
  66. f3c7cb4 [lib/Fuzzer] remove -use_coverage_pairs=1, an experimental feature that is unlikely to ever scale by Kostya Serebryany · 10 years ago
  67. f342459 [lib/Fuzzer] extend the fuzzer interface to allow user-supplied mutators by Kostya Serebryany · 10 years ago
  68. 71e0feb [lib/Fuzzer] ignore flags that start with --; use git pull --rebase instead of just git pull by Kostya Serebryany · 10 years ago
  69. 490bbd6 [lib/Fuzzer] change the meaning of -timeout flag: now timeout is applied to every unit of work separately by Kostya Serebryany · 10 years ago
  70. 2da7b84 [lib/Fuzzer] when -sync_command=<CMD> is given, periodically execute 'CMD CORPUS' to synchronize with other processes by Kostya Serebryany · 10 years ago
  71. 9690fcf [lib/Fuzzer] guess the right number of workers if -jobs=N is given but -workers=M is not. Update the docs. by Kostya Serebryany · 10 years ago
  72. d8c5472 [lib/Fuzzer] remove the -dfsan=1 flag, just use -use_traces=1 (w/ or w/o dfsan) by Kostya Serebryany · 10 years ago
  73. cd7629c [lib/Fuzzer] detach the pulse thread instad of joining it by Kostya Serebryany · 10 years ago
  74. 83fd486 [lib/Fuzzer] when running multiple fuzzing processes, print something every 10 minutes to avoid buildbot timeouts by Kostya Serebryany · 10 years ago
  75. 5a99ecb [lib/Fuzzer] add a trace-based mutatation logic. Same idea as with DFSan-based mutator, but instead of relying on taint tracking, try to find the data directly in the input. More (logic and comments) to go. by Kostya Serebryany · 10 years ago
  76. 1ac8055 [lib/Fuzzer] use -fsanitize-coverage=trace-cmp when building LLVM with LLVM_USE_SANITIZE_COVERAGE; in lib/Fuzzer try to reload the corpus to pick up new units from other processes by Kostya Serebryany · 10 years ago
  77. 52a788e [fuzzer] Add support for token-based fuzzing (e.g. for C++). Allow string flags. by Kostya Serebryany · 11 years ago
  78. 16d03bd DFSan-based fuzzer (proof of concept). by Kostya Serebryany · 11 years ago
  79. be5e0ed [sanitizer/coverage] Add AFL-style coverage counters (search heuristic for fuzzing). by Kostya Serebryany · 11 years ago
  80. 2e3622b [fuzzer] one more experimental search mode: -use_coverage_pairs=1 by Kostya Serebryany · 11 years ago
  81. 016852c [fuzzer] split main() into FuzzerDriver() that takes a callback as a parameter and a tiny main() in a separate file by Kostya Serebryany · 11 years ago