[llvm] r234570 - [lib/Fuzzer] explain compatibility with AFL
Kostya Serebryany
kcc at google.com
Thu Apr 9 22:44:43 PDT 2015
Author: kcc
Date: Fri Apr 10 00:44:43 2015
New Revision: 234570
URL: http://llvm.org/viewvc/llvm-project?rev=234570&view=rev
Log:
[lib/Fuzzer] explain compatibility with AFL
Modified:
llvm/trunk/docs/LibFuzzer.rst
Modified: llvm/trunk/docs/LibFuzzer.rst
URL: http://llvm.org/viewvc/llvm-project/llvm/trunk/docs/LibFuzzer.rst?rev=234570&r1=234569&r2=234570&view=diff
==============================================================================
--- llvm/trunk/docs/LibFuzzer.rst (original)
+++ llvm/trunk/docs/LibFuzzer.rst Fri Apr 10 00:44:43 2015
@@ -245,6 +245,16 @@ The fuzzer itself will still be mutating
but before passing this input to the target library it will replace every byte ``b`` with the ``b``-th token.
If there are less than ``b`` tokens, a space will be added instead.
+AFL compatibility
+-----------------
+LibFuzzer can be used in parallel with AFL_ on the same test corpus.
+Both fuzzers expect the test corpus to reside in a directory, one file per input.
+You can run both fuzzers on the same corpus in parallel::
+
+ ./afl-fuzz -i testcase_dir -o findings_dir /path/to/program -r @@
+ ./llvm-fuzz testcase_dir findings_dir # Will write new tests to testcase_dir
+
+Periodically restart both fuzzers so that they can use each other's findings.
Fuzzing components of LLVM
==========================
More information about the llvm-commits
mailing list