Skip to content

@robertswiecki robertswiecki released this Aug 4, 2020 · 11 commits to master since this release

This release should only used for integration with OSS-Fuzz.
It's guaranteed to work with Linux/Ubuntu/x86-64/ptrace only.

PS: It's a rolling release.

Assets 2
  • 2.3.1
  • 598d1f9
  • Compare
    Choose a tag to compare
    Search for a tag
  • 2.3.1
  • 598d1f9
  • Compare
    Choose a tag to compare
    Search for a tag

@robertswiecki robertswiecki released this Jul 22, 2020 · 15 commits to master since this release

  • Fixed 'make install' with #356
Assets 2

@robertswiecki robertswiecki released this Jul 22, 2020 · 17 commits to master since this release

  • honggfuzz.h - split run_t into substructs
  • clang-format options in .clang-format
  • added missing mutex initializers
  • removed unncessary comparisons to 'true' and 'false'
  • improved NetBSD compatibility
  • removed unnecessary memory fences (speed ups)
  • faster searching through the binary for const 4/8-byte values
  • removed unnecessary includes with iwyu
  • libhfnetdriver - general improvements around local socket fuzzing and timeouts
Assets 2

@robertswiecki robertswiecki released this Apr 23, 2020 · 86 commits to master since this release

  • Added 8bitcnt instrumentation - use hfuzz-cc/hfuzz-8bitcnt-(gcc|clang) for that
  • PC-guard instrumentation now uses edge counting
  • --experimental_const_feedback is now set to true by default
  • additional string instrumentation wrappers: glib, lcms
  • additional mutators: splicing, changing ascii numbers
  • additional integer comparison instrumentation (adding integers to the dynamic dictionary)
  • fixed linking with ld.lld
  • removed sanitizer-coverage-prune-blocks from hfuzz-cc.c
  • most mutators have now either overwrite or insert versions
  • fixed memory barriers in libhfuzz/
  • implemented skip_factor which dictates how often a given input is fuzzed
  • lowered the default timeout to 1 second
  • honggfuzz now uses microseconds, instead of milliseconds across the code
  • added some new functions to libhfcommon/files
  • enabled more aggressive inlining in hfuzz-cc/
  • fixed compilation dependency under MacOS X
Assets 2

@robertswiecki robertswiecki released this Mar 3, 2020 · 319 commits to master since this release

  • string/int comparison enabled for targets built with *SAN, but w/o hfuzz-cc
  • Parallel work made faster by using faster ATOMIC constructs (check first, then update)
  • Implement --experimental_const_feedback - const string/integer feedback (used as an additional dictionary)
  • Sanitizer report files are "better"-deleted (i.e. based on PID and not TID)
  • New patches for fuzzing added (e.g. for bind-9.16.0/9.15.7)
  • Buffered output enabled in display.c
  • Some functions moved from per-arch arch.c to common subproc.c
  • Compilation under MacOS X 10.15 (Catalina) is now supported
  • Added suport for bfd/binutils-2.33
Assets 2

@robertswiecki robertswiecki released this Dec 7, 2019 · 389 commits to master since this release

  • Coverage-based corpus minimizer with '-M'
  • QEmu mode: coverage feedback for Linux binaries
  • *SAN sanitizer stack-parsing improved for Linux and for POSIX
  • Move signal functionality to libhfcommon/
  • Fixed Android builds with newer unwind and capstone
  • NetDriver: more functionality - e.g. specifying custom addresses and custom tmpfs mount points
  • Examples: for /usr/bin/file, newer ISC Bind patch, improved OpenSSL code
Assets 2

@robertswiecki robertswiecki released this May 22, 2019 · 778 commits to master since this release

  • Don't include netdriver if not needed
  • Updated examples (bind/openssl)
  • Add missing TEMP_FAILURE_RETRY() wrappers
  • Add additional _HF_STATE_DYNAMIC_SWITCH_TO_MAIN state
Assets 2

@robertswiecki robertswiecki released this Feb 18, 2019 · 842 commits to master since this release

  • Multiple smaller changes wrt threading - e.g. introducing the signal thread
  • Removed the support for -p (pid fuzzing), honggfuzz net driver, or persistent fuzzing mode should be used instead
  • Reimplementation of memory comparison routines, now verified with glibc's test-suite
  • Improved hfuzz-cc/clang/gcc - e.g. for the MacOSX platform, also using -fno-sanitize=fuzzer if -fsanitize=fuzzer is specified, + some samba code wrappers
  • Examples: new corpora for some of those, new patch for ISC Bind (9.13.5)
Assets 2

@robertswiecki robertswiecki released this Aug 23, 2018 · 1002 commits to master since this release

  • Native support for NetBSD
  • ASCII only fuzzing
  • Updated corpora for ISC Bind
  • Printing final stats upon exit
  • Refreshed support for Intel PT
  • Support for __sanitizer_cov_trace_div
  • Updated fuzzing examples for OpenSSL
Assets 2

@robertswiecki robertswiecki released this Apr 19, 2018 · 1079 commits to master since this release

  • Fixed Dockerfile
  • Fixed a few format problems with file reporting
  • Updated display formatting
  • Made it work under WSL (Windows Subsystem for Linux)
Assets 2
You can’t perform that action at this time.