Google Git
Sign in
chromium / external / github.com / llvm / llvm-project.git / 843f1fc82598216a4be672ba51820b037dae106b / compiler-rt / lib / fuzzer / FuzzerLoop.cpp
  1. 4b82f61 [libFuzzer] Use macro instead of __attribute__. by Matt Morehouse · 4 years, 3 months ago
  2. 5908c7c [libFuzzer] Add attribute noinline on Fuzzer::ExecuteCallback(). by Jonas Paulsson · 4 years, 3 months ago
  3. 6708186 [crt][fuzzer] Fix up various numeric conversions by Aaron Green · 4 years, 3 months ago
  4. dc62d5e [libFuzzer] Added -print_full_coverage flag. by Max Moroz · 4 years, 7 months ago
  5. 66df989 [libfuzzer] Reduce default verbosity when printing large mutation sequences by mhl · 4 years, 9 months ago
  6. 1bb1eac [libFuzzer] Add a command-line option for tracing mutation of corpus inputs in the dot graph format. by Dokyung Song · 4 years, 9 months ago
  7. 5cda4dc [libFuzzer] Scale energy assigned to each input based on input execution time. by Dokyung Song · 4 years, 9 months ago
  8. b53243e [libFuzzer] Evenly select inputs to cross over with from the corpus regardless of the input's coverage. by Dokyung Song · 4 years, 9 months ago
  9. 62673c4 [libFuzzer] Add an option to keep initial seed inputs around. by Dokyung Song · 4 years, 9 months ago
  10. 7139736 Revert "[libfuzzer] Reduce default verbosity when printing large mutation sequences" by Matt Morehouse · 4 years, 9 months ago
  11. 2665425 [libfuzzer] Reduce default verbosity when printing large mutation sequences by mhl · 4 years, 9 months ago
  12. 750369e [libFuzzer] Fix compilation error by including missing platform macro definitions. by Dokyung Song · 4 years, 11 months ago
  13. e2e38fc Entropic: Boosting LibFuzzer Performance by Matt Morehouse · 5 years ago
  14. 0764757 [libFuzzer] Fix denominator in the "inputs have DFT" log line. by Max Moroz · 5 years ago
  15. 4f3c3bb Reland "[NFC][libFuzzer] Prefix TempPath with string showing the work it is doing." by Yuanfang Chen · 5 years ago
  16. b1c7623 Revert "[NFC][libFuzzer] Prefix TempPath with string showing the work it is doing." by Yuanfang Chen · 5 years ago
  17. 8a29cb4 [NFC][libFuzzer] Prefix TempPath with string showing the work it is doing. by Yuanfang Chen · 5 years ago
  18. e7bfce7 [libFuzzer] Fix Alarm callback in fuchsia. by Jake Ehrlich · 6 years ago
  19. 1c8e051 [libFuzzer] Remove lazy counters. by Matt Morehouse · 6 years ago
  20. d1e222e [libFuzzer] Dump trace and provide correct msg for overwritten input. by Mitch Phillips · 6 years ago
  21. da3cf61 [libFuzzer] [NFC] Fix grammar error with "it's" by Mitch Phillips · 6 years ago
  22. 74cec61 [libFuzzer] Merge: print feature coverage number as well. by Max Moroz · 6 years ago
  23. db88fc5 [libFuzzer] implement a better queue for the fork mode. Add an internal flag -stop_file to allow graceful shutdown of fuzzing. Enhance the logging in the fork mode by Kostya Serebryany · 6 years ago
  24. 060f4b4 [libFuzzer] when using data-flow-trace (DFT) only load the DFT for the files present in the corpus by Kostya Serebryany · 6 years ago
  25. 4c7353c [libFuzzer] code refactoring; NFC by Kostya Serebryany · 6 years ago
  26. 3478494 [libFuzzer] Unpoison parameters before calling user callback. by Matt Morehouse · 6 years ago
  27. e9aaa55 [libFuzzer] implement -focus_function=auto, to be used with Data Flow Traces by Kostya Serebryany · 6 years ago
  28. 1b76063 [libFuzzer] Disable MSan interceptors in SIGINT handler. by Matt Morehouse · 6 years ago
  29. 5e67abd [libFuzzer] speedup the merge step in the fork mode by merging only the files that have unique features. by Kostya Serebryany · 6 years ago
  30. 4614cc3 [libFuzzer] add -features_dir= flag to dump unique input features on disk by Kostya Serebryany · 6 years ago
  31. 9d5e7ee [libFuzzer] Fallback to default Mutate when MutateWithMask fails. by Max Moroz · 6 years ago
  32. b6ca1e7 [libFuzzer] make len_control less agressive: set the initial max len to the length of the largest seed. This was the original intent, but... Now, with a test, to ensure it stays this way by Kostya Serebryany · 6 years ago
  33. 312af15 [libFuzzer] fork mode: try harder to cleanup after itself by Kostya Serebryany · 6 years ago
  34. 96f81bc [libFuzzer] when doing the merge, keep track of the coveraged edges, not just features by Kostya Serebryany · 6 years ago
  35. 63f4871 [libFuzzer] extend the -fork=1 functionality. Still not fully usable, but good enough for the first unit test by Kostya Serebryany · 6 years ago
  36. 0fda9dc [libFuzzer] more refactoring; change some of the exit codes (timeout, OOM, interrupt) so that the parent process can distinguish those by Kostya Serebryany · 6 years ago
  37. f762a11 [libFuzzer] introduce an experimental mode -fork=1, where fuzzing happens in a subprocess (still running multiple inputs per process), thus making the fuzzing more resilient to timeouts and OOMs. This is just a skeleton of the code, and some associated refactoring, not a fully working feature yet. by Kostya Serebryany · 6 years ago
  38. 0719b35 [libFuzzer] refactor the way we choose the element to cross-over with, NFC (expected1); add a flag -seed_inputs= to pass extra seed inputs as file paths, not dirs by Kostya Serebryany · 6 years ago
  39. 23482e1 [libFuzzer] set libFuzzer's own SEGV handler even one is already present, but call that handler from ours (unless we are unprotecting lazy counters). Call ProtectLazyCounters later, so that it runs after the initialization code in the target. by Kostya Serebryany · 6 years ago
  40. 15df273 [libFuzzer] Set default sanitizer options in fuzzer tests by Julian Lettner · 6 years ago
  41. 8da9479 [libFuzzer] experimental performance optimization -lazy_counters, off by default. Posix-only for now, tested on Linux by Kostya Serebryany · 6 years ago
  42. 5c0751e [libFuzzer] remove stale code, NFC by Kostya Serebryany · 6 years ago
  43. 2891b25 [libFuzzer] remove stale code by Kostya Serebryany · 6 years ago
  44. 2946cd7 Update the file headers across all of the LLVM projects in the monorepo by Chandler Carruth · 6 years ago
  45. b795c31 [libFuzzer][MSVC] Make attribute-use compatible with MSVC by Jonathan Metzman · 6 years ago
  46. 9e14ccc [libFuzzer] Remove unstable edge handling by Jonathan Metzman · 6 years ago
  47. 2e61186 Follow Windows' approach for NetBSD in AlarmCallback() by Kamil Rytarowski · 7 years ago
  48. 8c95b48 [libFuzzer] Remove mutation stats and weighted mutation selection. by Max Moroz · 7 years ago
  49. cd02f31 [libFuzzer] Optimize handle unstable checks by reducing iterations by Max Moroz · 7 years ago
  50. 5a9baa3 [libFuzzer] Initial implementation of weighted mutation leveraging during runtime. by Max Moroz · 7 years ago
  51. 8db0bef [libFuzzer] Handle unstable edges by disregarding unstable edges by Max Moroz · 7 years ago
  52. 1e954f7 [libFuzzer] Handle unstable edges by using minimum hit counts by Max Moroz · 7 years ago
  53. 6b87e0c [libFuzzer] first experimental attempt at DFT-based mutations (DFT=data-flow-trace) by Kostya Serebryany · 7 years ago
  54. 061b4af [libFuzzer] Mutation tracking and logging implemented. by Max Moroz · 7 years ago
  55. 43a2296 libFuzzer: prevent irrelevant strings from leaking into auto-dictionary by Matt Morehouse · 7 years ago
  56. 5697c59 Revert r337194 (https://reviews.llvm.org/D48891) due to compilation errors. by Max Moroz · 7 years ago
  57. 8a5083df [libFuzzer] Mutation tracking and logging implemented. by Max Moroz · 7 years ago
  58. 08dad54 [libFuzzer] Implement stat::stability_rate based on the percentage of unstable edges. by Max Moroz · 7 years ago
  59. 1d369a5 Revert r337175 (https://reviews.llvm.org/D49212) due to unintentional format changes. by Max Moroz · 7 years ago
  60. 2156d88 [libFuzzer] Implement stat::stability_rate based on the percentage of unstable edges. by Max Moroz · 7 years ago
  61. a34c65e [libFuzzer] Make -fsanitize=memory,fuzzer work. by Matt Morehouse · 7 years ago
  62. a5bb6d5 Revert "[libFuzzer] Mutation tracking and logging implemented" by Matt Morehouse · 7 years ago
  63. d153d46 [libFuzzer] Mutation tracking and logging implemented by Matt Morehouse · 7 years ago
  64. 51ddb88 [libFuzzer] add one more value profile metric, under a flag (experimental) by Kostya Serebryany · 7 years ago
  65. 67af992 [libFuzzer] make the corpus elements aware of their data flow traces by Kostya Serebryany · 7 years ago
  66. 4d9fd7a [libFuzzer] remove an experimental flag -use_feature_frequency by Kostya Serebryany · 7 years ago
  67. 1fd005f [libFuzzer] initial implementation of -data_flow_trace. It parses the data flow trace and prints the summary, but doesn't use the information in any other way yet by Kostya Serebryany · 7 years ago
  68. fe97441 [libFuzzer] Don't complain about lack of interesting inputs when -runs=0. by Max Moroz · 7 years ago
  69. 69c2b71 [libFuzzer] reinstate -dump_coverage, which is still in use (reverts r332036) by Kostya Serebryany · 7 years ago
  70. e9c6f06 [libFuzzer] add an experimental flag -focus_function: libFuzzer will try to focus on inputs that trigger that function by Kostya Serebryany · 7 years ago
  71. d80e821 [libFuzzer] remove the dump_coverage flag, it hasn't been working with the inline sanitizer coverage anyway by Kostya Serebryany · 7 years ago
  72. 59bf1e8 [libFuzzer] remove the experimental support for clang coverage instrumentation. This mode has not been used and our experiments with https://github.com/google/fuzzer-test-suite show that this signal is weaker than the SanitizerCoverage by Kostya Serebryany · 7 years ago
  73. 14cf71a [libFuzzer] Guard symbolization with try-lock. by Matt Morehouse · 7 years ago
  74. 7764a04 [libFuzzer] Don't short-circuit from CrashCallback. by Matt Morehouse · 7 years ago
  75. 52fd169 [libFuzzer] Report at most one crash per input. by Matt Morehouse · 7 years ago
  76. ddf352b [libFuzzer] Include TEMP_MAX_LEN in Fuzzer::PrintStats. by Matt Morehouse · 7 years ago
  77. 36c89b3 [libFuzzer] Set -experimental_len_control=1000 as default. by Matt Morehouse · 7 years ago
  78. eac2b47 Reland "[libFuzzer] Support using libc++" by Petr Hosek · 7 years ago
  79. 68bc4bd Revert "[libFuzzer] Support using libc++" by Petr Hosek · 7 years ago
  80. a1b57e6 [libFuzzer] Support using libc++ by Petr Hosek · 7 years ago
  81. e9ed232 [libFuzzer] change the strategy for -experimental_len_control to grow max_len slower by Kostya Serebryany · 7 years ago
  82. 2659c63 [libFuzzer] honor -use_counters, sligntly change the meaning of -experimental_len_control, call UpdateFeatureFrequency only if instructed by the flag by Kostya Serebryany · 7 years ago
  83. de9bafb [libFuzzer] add a flag -malloc_limit_mb by Kostya Serebryany · 7 years ago
  84. 6afa7a5 [libFuzzer] remove stale flags; NFC by Kostya Serebryany · 7 years ago
  85. ad05ee0 [libFuzzer] add an experimental search heuristic flag -reduce_depth by Kostya Serebryany · 7 years ago
  86. 947838c [libFuzzer] Don't add leaking inputs to corpus. by Matt Morehouse · 8 years ago
  87. a2ca2dc [libFuzzer] handle SIGUSR1/SIGUSR2 and try to exit grafully on these signals by Kostya Serebryany · 8 years ago
  88. 7d22324 [fuzzer] Fix nested mallocs by Vitaly Buka · 8 years ago
  89. 7dbc1d8 [fuzzer] Fix threaded stack printing by Vitaly Buka · 8 years ago
  90. df00e89c Revert "[fuzzer] Fix threaded stack printing and nested mallocs" Fails on darwin by Vitaly Buka · 8 years ago
  91. 58da33e [fuzzer] Fix threaded stack printing and nested mallocs by Vitaly Buka · 8 years ago
  92. 5ded070 [Sanitizers-libFuzzer] Addressing coding style issues. by Alex Shlyapnikov · 8 years ago
  93. 6f1c26f [libFuzzer] Periodically purge allocator's quarantine to prolong fuzzing sessions. by Alex Shlyapnikov · 8 years ago
  94. 51823d3 [libFuzzer] tweam use_feature_frequency to be less aggressive; run a dummy input before the seed corpus by Kostya Serebryany · 8 years ago
  95. 4083d54 [libFuzzer] experimental flag to tweak the corpus distribution. Seems to improve the situation dramatically on the png benchmark and make things worse on a number of micro-puzzles. Needs more A/B testing by Kostya Serebryany · 8 years ago
  96. 330496c [libFuzzer] Disable experimental clang coverage support by default. by Max Moroz · 8 years ago
  97. 93679be [libFuzzer] factor out some code into GetSizedFilesFromDir; NFC by Kostya Serebryany · 8 years ago
  98. 3f26dac [libfuzzer] Compare TotalNumberOfRuns with MaxNumberOfRuns when testing a memory leak. by Max Moroz · 8 years ago
  99. 082e9a7 [libFuzzer] tolerate missing files when loading the seed corpus by Kostya Serebryany · 8 years ago
  100. 4faeb87 [libFUzzer] change the way we load the seed corpora: instead of loading all files and these executing all files, load and execute them one-by-one. This should reduce the memory usage in many cases by Kostya Serebryany · 8 years ago