search for: fuzz

...2017 at 8:45 AM, Mehdi Amini <mehdi.amini at apple.com> wrote: > > > On Feb 1, 2017, at 8:34 AM, Michael Kruse via llvm-dev < > llvm-dev at lists.llvm.org> wrote: > > > > Hi all, > > > > The blog entry [1] suggest that one of the buildbots constantly fuzzes > > clang and clang-format. However, the actual bot [2] only tests the > > fuzzer itself over a well-known set of bugs in standard software (eg. > > Heartbleed [3] seems to be among them). > > Isn’t it this stage? http://lab.llvm.org:8011/build > ers/sanitizer-x86_64-li...

Bugs found by oss-fuzz in llvm are now public: https://bugs.chromium.org/p/oss-fuzz/issues/list?q=proj-llvm (and the new ones will be public too). I've also added llvm-bugs at lists.llvm.org to the list of e-mail recipients: https://github.com/google/oss-fuzz/blob/master/projects/llvm/project.yaml On Tue, Aug 29, 20...

On Wed, Mar 18, 2020 at 01:46:14PM -0400, habib dan aouta wrote: > Hello Richard, > > Hope you are doing well. My name is Habib and I am current student > at the University of North Carolina at Charlotte(U.S). I am > currently following your Libnbd client fuzzing tutorial from the > Wordpress articles [https://rwmj.wordpress.com/2019/10/09/using-american-fuzzy-lop-on-network-clients/#content] > and I am having issues compiling the > Libnbd-wrapper.c file. After some research I am missing the > Libnbd.so library file that I cannot seems to f...

On Tue, Aug 29, 2017 at 4:13 PM, Justin Bogner <mail at justinbogner.com> wrote: > Kostya Serebryany <kcc at google.com> writes: > > Hi, > > > > We have several llvm fuzz targets running on OSS-Fuzz, a continuous > > automated fuzzing service: > > https://github.com/google/oss-fuzz > > https://www.usenix.org/sites/default/files/conference/protected-files/ > usenixsecurity17_slides_serebryany.pdf > > > > It has reported a few bugs in...

Hi all, The blog entry [1] suggest that one of the buildbots constantly fuzzes clang and clang-format. However, the actual bot [2] only tests the fuzzer itself over a well-known set of bugs in standard software (eg. Heartbleed [3] seems to be among them). Has there actually ever been a buildbot that fuzzes clang/LLVM itself? Another (obvious?) fuzzing candidate would be th...

On Wed, Feb 1, 2017 at 9:19 AM, Michael Kruse <llvmdev at meinersbur.de> wrote: > 2017-02-01 18:07 GMT+01:00 Kostya Serebryany <kcc at google.com>: > > Yes, I used to run clang-fuzzer and clang-format-fuzzer on this bot, but > not > > any more. > > The reason is simple -- the bot was always red (well, orange) and the > bugs > > were never fixed. > > > > Currently we run clang-fuzzer (but not clang-format-fuzzer) on our > internal > &gt...

Hi, We have several llvm fuzz targets running on OSS-Fuzz, a continuous automated fuzzing service: https://github.com/google/oss-fuzz https://www.usenix.org/sites/default/files/conference/protected-files/usenixsecurity17_slides_serebryany.pdf It has reported a few bugs in cxa_demangler, clang, and dwarfdump already, and we exp...

I am working of using libfuzzer and asan to test out a third-party library. As demonstrated in the tutorial, I wrote a fuzz target to fuzz a specific function in the library. The fuzz target is then linked to the library and compiles clean and I do see some tests generated by the fuzzer. However, I have some questions regarding...

Hi Mitch, Thank you for the response. 1. You don't need to build the library with `-fsanitize-coverage=...`, using `-fsanitize=fuzzer-no-link,address` should be sufficient. - Acknowledged 2. (although you can actually build object files/shared libraries with -fsanitize=fuzzer, and the libFuzzer main won't be linked, if this makes your build process easier). - with just the *fuzzer *flag, it looks for the LLVMFuzzerTestOne...

On Tue, Aug 22, 2017 at 4:34 PM, Kostya Serebryany <kcc at google.com> wrote: > > > On Tue, Aug 22, 2017 at 4:21 PM, George Karpenkov <ekarpenkov at apple.com> > wrote: > >> Hi, >> >> As a part of a recent move of libFuzzer from LLVM to compiler-rt I am >> looking into updating the build code >> for the libraries which use libFuzzer. >> >> I have tried to compile llvm-mc-assemble-fuzzer, and >> llvm-mc-disassemble-fuzzer, and I couldn’t build either of those. >> For the first one,...

Hi, Recently I want to fuzz samba systematically (instead of functional fuzzing like OSS-Fuzz/samba). However, the fuzzer acts like smbclient and needs to establish a connection with the samba server via NTLM authentication. The NTLMSSP_Challenge sent by the server is not deterministic, which can render the fuzzing based on p...

Hi all, I'm working on fuzzing Opus with OSS-Fuzz and have started with the decoder. Attached is a patch to add the corresponding fuzz target. Please let me know if there are any concerns? Thanks, Felicia -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.xiph.org/pipermail/opus/...

So I installed Libnbd which worked fined and then I was trying to run Libnbd-fuzz-wrapper.c and with afl using : afl-fuzz -i fuzzing/testcase_dir -o fuzzing/sync_dir -M fuzz01 \./fuzzing/libnbd-fuzz-wrapper @@ when I try that command it gives me an error saying Libnbd-fuzz-wrapper.c is not an EFL binary. Then I tried to compile Libnbd-fuzz-wrapper.c first into an executable...

So I installed Libnbd which worked fined and then I was trying to run Libnbd-fuzz-wrapper.c and with afl using : afl-fuzz -i fuzzing/testcase_dir -o fuzzing/sync_dir -M fuzz01 \./fuzzing/libnbd-fuzz-wrapper @@ when I try that command it gives me an error saying Libnbd-fuzz-wrapper.c is not an EFL binary. Then I tried to compile Libnbd-fuzz-wrapper.c first into an executable...

I have a generic function test.equal <- function(obj1, obj2, ...) UseMethod("test.equal") however, the only argument that specific methods use is "fuzz" so I would like to change this to test.equal <- function(obj1, obj2, fuzz=???) UseMethod("test.equal") The problem is that some methods use slightly different default values for fuzz than others. How should the generic be specified to allow this? Thanks, Paul Gilbert -.-.-.-....

2017-02-01 17:45 GMT+01:00 Mehdi Amini <mehdi.amini at apple.com>: > >> On Feb 1, 2017, at 8:34 AM, Michael Kruse via llvm-dev <llvm-dev at lists.llvm.org> wrote: >> >> Hi all, >> >> The blog entry [1] suggest that one of the buildbots constantly fuzzes >> clang and clang-format. However, the actual bot [2] only tests the >> fuzzer itself over a well-known set of bugs in standard software (eg. >> Heartbleed [3] seems to be among them). > > Isn’t it this stage? http://lab.llvm.org:8011/builders/sanitizer-x86_64-linux-fuzze...

...c(const uint8_t toc, TocInfo *const info) { > > Any particular reason you don't use the Opus functions for parsing the > ToC? It seems like opus_packet_get_nb_samples(), > opus_packet_get_bandwidth(), and opus_packet_get_nb_channels() should do > the trick. > > > int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) > > How is that function supposed to work? I noticed that it will only > decode a single packet. How does the fuzzer handle testing for bugs that > only happen for a given sequence of input packets? > > Cheers, > > Jean...

...: > I installed Libnbd-1.0.0. I downloaded it from this link > http://download.libguestfs.org/libnbd/1.0-stable/ > <http://download.libguestfs.org/libnbd/1.0-stable/> and then > uncompressed it on linux ubuntu and then I followed the steps on the > GitHub readme to run with AFL-fuzz on this link > https://github.com/libguestfs/libnbd/blob/master/fuzzing/README > <https://github.com/libguestfs/libnbd/blob/master/fuzzing/README> . Since fuzzing is a relatively experimental feature it's probably best to start with the git repository: https://github.com/libguestf...

...s since it no longer exists) > > Sorry for the slow reply, it's a busy time for me right now. > > > On 23 Aug 2017, at 00:21, George Karpenkov via llvm-dev < > llvm-dev at lists.llvm.org> wrote: > > > > Hi, > > > > As a part of a recent move of libFuzzer from LLVM to compiler-rt I am > looking into updating the build code > > for the libraries which use libFuzzer. > > > > I have tried to compile llvm-mc-assemble-fuzzer, and > llvm-mc-disassemble-fuzzer, and I couldn’t build either of those. > > For the first one, the...

...ut wine VirtuaNES.exe 2>&1 | grep joydev Code: trace:dinput:find_joydevs Found a joystick on /dev/input/event6: Twin USB Joystick ({9e573eda-7734-11d2-8d4a-23903fb6bdf7}) trace:dinput:find_joydevs ... with force feedback trace:dinput:find_joydevs ... with axis 0: cur=127, min=0, max=255, fuzz=0, flat=15 trace:dinput:find_joydevs ... with axis 1: cur=127, min=0, max=255, fuzz=0, flat=15 trace:dinput:find_joydevs ... with axis 2: cur=127, min=0, max=255, fuzz=0, flat=15 trace:dinput:find_joydevs ... with axis 5: cur=127, min=0, max=255, fuzz=0, flat=15 trace:dinput:find_joydevs ... wi...