Fuzzer #2106
Closed
Fuzzer #2106
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
cryptocode
added
incomplete
|
Closing in favour of a different approach that's being researched. This version pumped data through UDP, but now we're mainly on TCP even for live traffic so a different approach will be needed for sufficient coverage (a challenge is that currently the tcp server will indirectly disconnect on invalid data through the shared_from_this design, and reconnecting is way too slow. There are other issues with the fuzzer not making progress when using tcp, possibly due to the effect of input mutations being on async handlers on different threads (?), timeouts when the fuzzer is sending insufficient data amounts, and possibly tcp flow control; the fuzzer client only sends and doesn't read. |
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Based on llvm libfuzzer and requires a very recent clang version. Tested with clang-9 on Ubuntu. Combine with a ASAN and other sanitizers. This is minimal at this stage but it still obtains decent coverage.
(Incomplete, pushing now to get automated test integration going)