axiomdl/llvm
0
0
Fork 0
mirror of https://github.com/AxioDL/llvm.git synced 2026-03-30 11:42:29 -07:00
Code Issues Packages Projects Releases Wiki Activity
144,118 Commits 3 Branches 0 Tags
small-data
Commit Graph

62 Commits

Author SHA1 Message Date
Kostya Serebryany 72e0240a06 [libFuzzer] mutate empty input using the regular mutators (instead of a custom dummy one). This way when we mutate an empty input there is a chance we will get a dictionary word 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@292843 91177308-0d34-0410-b5e6-96231b3b80d8
 2017-01-23 22:52:13 +00:00
Kostya Serebryany 1829afedf8 [libFuzzer] ensure that entries in PersistentAutoDictionary are not empty 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@292520 91177308-0d34-0410-b5e6-96231b3b80d8
 2017-01-19 21:14:47 +00:00
Kostya Serebryany db5325aae3 [libFuzzer] use table of recent compares for memcmp/strcmp (to unify the code between cmp and memcmp handling) 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@292287 91177308-0d34-0410-b5e6-96231b3b80d8
 2017-01-17 23:09:05 +00:00
Kostya Serebryany 8f45dd30a7 [libFuzzer] don't create large random mutations when given an empty seed 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@290634 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-27 22:15:04 +00:00
Daniel Jasper a21e8a0091 Revert "[libFuzzer] add an experimental flag -experimental_len_control=1 that sets max_len to 1M and tries to increases the actual max sizes of mutations very gradually. Also remove a bit of dead code" 
This reverts commit r289998.

See comment:
https://reviews.llvm.org/rL289998

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@290043 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-17 12:27:49 +00:00
Kostya Serebryany eb30028464 [libFuzzer] add an experimental flag -experimental_len_control=1 that sets max_len to 1M and tries to increases the actual max sizes of mutations very gradually. Also remove a bit of dead code 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@289998 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-16 22:42:05 +00:00
Zachary Turner 1a45ade2ce Resubmit "[LibFuzzer] Split FuzzerUtil for Posix and Windows." 
This resubmits r288529, which was resubmitted because it broke a
fuzzer bot.  According to kcc@ the test that broke was flakey
and it is unlikely to be a result of this patch.

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@288549 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-02 23:02:01 +00:00
Zachary Turner 609477eea7 Revert "[LibFuzzer] Split FuzzerUtil for Posix and Windows." 
This reverts commit r288529, as it seems to introduce some
problems on the Linux bots.

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@288533 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-02 20:54:56 +00:00
Zachary Turner fd186677a2 [LibFuzzer] Split FuzzerUtil for Posix and Windows. 
Pave the way for separating out platform specific
utility functions into separate files.

Patch by Marcos Pividori
Differential Revision: https://reviews.llvm.org/D27234

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@288529 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-12-02 19:38:19 +00:00
Zachary Turner 1a3900e81e [LibFuzzer] Split up some functions among different headers. 
In an effort to get libfuzzer working on Windows, we need to make
a distinction between what functions require platform specific
code (e.g. different code on Windows vs Linux) and what code
doesn't.  IO functions, for example, tend to be platform
specific.

This patch separates out some of the functions which will need
to have platform specific implementations into different headers,
so that we can then provide different implementations for each
platform.

Aside from that, this patch contains no functional change.  It
is purely a re-organization.

Patch by Marcos Pividori
Differential Revision: https://reviews.llvm.org/D27230

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@288264 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-11-30 19:06:14 +00:00
Kostya Serebryany 0895ad474e [libFuzzer] when mutating based on CMP traces also try adding +/- 1 to the desired bytes. Add another test for use_cmp 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@285109 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-10-25 20:15:15 +00:00
Kostya Serebryany d2c91bff2f [libFuzzer] simplify the code for use_cmp, also use the position hint when available, add a test 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@285049 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-10-25 02:04:43 +00:00
Kostya Serebryany 9b71256a5b [libFuzzer] mutation: insert the size of the input in bytes as one of the ways to mutate a binary integer 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@284909 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-10-22 03:48:53 +00:00
Kostya Serebryany ce6100541e [libFuzzer] swap bytes in integers when handling CMP traces 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@284301 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-10-15 04:00:07 +00:00
Kostya Serebryany 3af68729f8 [libFuzzer] add -trace_cmp=1 (guiding mutations based on the observed CMP instructions). This is a reincarnation of the previously deleted -use_traces, but using a different approach for collecting traces. Still a toy, but at least it scales well. Also fix -merge in trace-pc-guard mode 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@284273 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-10-14 20:20:33 +00:00
Kostya Serebryany e9b850b5c5 [libFuzzer] add 'features' to the corpus elements, allow mutations with Size > MaxSize, fix sha1 in corpus stats; various refactorings 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@282129 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-09-22 01:34:58 +00:00
Kostya Serebryany e4977b2b7e [libFuzzer] add stats to the corpus; more refactoring 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@282121 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-09-21 22:42:17 +00:00
Kostya Serebryany 77ab75a9d6 [libFuzzer] more refactoring; NFC 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@282047 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-09-21 02:05:39 +00:00
Kostya Serebryany 2a546868cb [libFuzzer] refactoring: split the large header into many; NFC 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@282044 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-09-21 01:50:50 +00:00
Kostya Serebryany 47b194388e [libFuzzer] fix the non-debug build warnings 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@279321 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-19 20:57:09 +00:00
Kostya Serebryany e65e275cf2 [libFuzzer] given 0 and 255 more preference when inserting repeated bytes 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@278986 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-17 21:50:54 +00:00
Kostya Serebryany 9744bb48e4 [libFuzzer] one more mutation: ChangeBinaryInteger; also fix the breakage from r278970 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@278982 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-17 21:30:30 +00:00
Justin Bogner 7d7a23e700 Replace a few more "fall through" comments with LLVM_FALLTHROUGH 
Follow up to r278902. I had missed "fall through", with a space.

git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@278970 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-17 20:30:52 +00:00
Kostya Serebryany 79d100891f [libFuzzer] more mutations 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@278950 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-17 18:10:42 +00:00
Kostya Serebryany 137c3957ed [libFuzzer] add InsertRepeatedBytes and EraseBytes. 
New mutation: InsertRepeatedBytes.
Updated mutation: EraseByte => EraseBytes.

This helps https://github.com/google/sanitizers/issues/710
where libFuzzer was not able to find a known bug.
Now it finds it in minutes.

Hopefully, the change is general enough to help other targets.



git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@278687 91177308-0d34-0410-b5e6-96231b3b80d8
 2016-08-15 17:48:28 +00:00