[libFuzzer] experimental flag to tweak the corpus distribution. Seems to improve the situation dramatically on the png benchmark and make things worse on a number of micro-puzzles. Needs more A/B testing llvm-svn: 315407

commit: 4083d54675cc128fad3f96a67b985e0ada8fdc42 [log] [tgz]
author: Kostya Serebryany <[email protected]> Wed Oct 11 01:44:26 2017
committer: Kostya Serebryany <[email protected]> Wed Oct 11 01:44:26 2017
tree: 780f95e265528d2942f391b9fb5cfce2850ef75e
parent: 51b2cd8fb9a5928d8fb69bcb107448d330088e4e [diff] [blame]
diff --git a/compiler-rt/lib/fuzzer/FuzzerLoop.cpp b/compiler-rt/lib/fuzzer/FuzzerLoop.cpp
index 4ccfe3f..c095fed 100644
--- a/compiler-rt/lib/fuzzer/FuzzerLoop.cpp
+++ b/compiler-rt/lib/fuzzer/FuzzerLoop.cpp

@@ -396,6 +396,7 @@
   size_t FoundUniqFeaturesOfII = 0;
   size_t NumUpdatesBefore = Corpus.NumFeatureUpdates();
   TPC.CollectFeatures([&](size_t Feature) {
+    Corpus.UpdateFeatureFrequency(Feature);
     if (Corpus.AddFeature(Feature, Size, Options.Shrink))
       UniqFeatureSetTmp.push_back(Feature);
     if (Options.ReduceInputs && II)
@@ -565,6 +566,8 @@
   MD.StartMutationSequence();
 
   auto &II = Corpus.ChooseUnitToMutate(MD.GetRand());
+  if (Options.UseFeatureFrequency)
+    Corpus.UpdateFeatureFrequencyScore(&II);
   const auto &U = II.U;
   memcpy(BaseSha1, II.Sha1, sizeof(BaseSha1));
   assert(CurrentUnitData);
commit	4083d54675cc128fad3f96a67b985e0ada8fdc42	[log] [tgz]
author	Kostya Serebryany <[email protected]>	Wed Oct 11 01:44:26 2017
committer	Kostya Serebryany <[email protected]>	Wed Oct 11 01:44:26 2017
tree	780f95e265528d2942f391b9fb5cfce2850ef75e
parent	51b2cd8fb9a5928d8fb69bcb107448d330088e4e [diff] [blame]