[llvm] r282983 - [libFuzzer] remove some experimental code
Kostya Serebryany via llvm-commits
llvm-commits at lists.llvm.org
Fri Sep 30 16:29:28 PDT 2016
Author: kcc
Date: Fri Sep 30 18:29:27 2016
New Revision: 282983
URL: http://llvm.org/viewvc/llvm-project?rev=282983&view=rev
Log:
[libFuzzer] remove some experimental code
Modified:
llvm/trunk/lib/Fuzzer/FuzzerInternal.h
llvm/trunk/lib/Fuzzer/FuzzerLoop.cpp
Modified: llvm/trunk/lib/Fuzzer/FuzzerInternal.h
URL: http://llvm.org/viewvc/llvm-project/llvm/trunk/lib/Fuzzer/FuzzerInternal.h?rev=282983&r1=282982&r2=282983&view=diff
==============================================================================
--- llvm/trunk/lib/Fuzzer/FuzzerInternal.h (original)
+++ llvm/trunk/lib/Fuzzer/FuzzerInternal.h Fri Sep 30 18:29:27 2016
@@ -115,7 +115,7 @@ private:
void ShuffleCorpus(UnitVector *V);
void TryDetectingAMemoryLeak(const uint8_t *Data, size_t Size,
bool DuringInitialCorpusExecution);
- void AddToCorpusAndMaybeRerun(const Unit &U);
+ void AddToCorpus(const Unit &U);
void CheckExitOnSrcPos();
// Trace-based fuzzing: we run a unit with some kind of tracing
Modified: llvm/trunk/lib/Fuzzer/FuzzerLoop.cpp
URL: http://llvm.org/viewvc/llvm-project/llvm/trunk/lib/Fuzzer/FuzzerLoop.cpp?rev=282983&r1=282982&r2=282983&view=diff
==============================================================================
--- llvm/trunk/lib/Fuzzer/FuzzerLoop.cpp (original)
+++ llvm/trunk/lib/Fuzzer/FuzzerLoop.cpp Fri Sep 30 18:29:27 2016
@@ -369,17 +369,6 @@ void Fuzzer::CheckExitOnSrcPos() {
}
}
-void Fuzzer::AddToCorpusAndMaybeRerun(const Unit &U) {
- CheckExitOnSrcPos();
- if (TPC.GetTotalPCCoverage()) {
- TPC.ResetMaps();
- TPC.ResetGuards();
- ExecuteCallback(U.data(), U.size());
- TPC.FinalizeTrace();
- }
- Corpus.AddToCorpus(U);
-}
-
void Fuzzer::RereadOutputCorpus(size_t MaxSize) {
if (Options.OutputCorpus.empty() || !Options.Reload) return;
std::vector<Unit> AdditionalCorpus;
@@ -387,12 +376,12 @@ void Fuzzer::RereadOutputCorpus(size_t M
&EpochOfLastReadOfOutputCorpus, MaxSize);
if (Options.Verbosity >= 2)
Printf("Reload: read %zd new units.\n", AdditionalCorpus.size());
- for (auto &X : AdditionalCorpus) {
- if (X.size() > MaxSize)
- X.resize(MaxSize);
- if (!Corpus.HasUnit(X)) {
- if (RunOne(X)) {
- AddToCorpusAndMaybeRerun(X);
+ for (auto &U : AdditionalCorpus) {
+ if (U.size() > MaxSize)
+ U.resize(MaxSize);
+ if (!Corpus.HasUnit(U)) {
+ if (RunOne(U)) {
+ Corpus.AddToCorpus(U);
PrintStats("RELOAD");
}
}
@@ -414,7 +403,7 @@ void Fuzzer::ShuffleAndMinimize(UnitVect
for (const auto &U : *InitialCorpus) {
if (RunOne(U)) {
- AddToCorpusAndMaybeRerun(U);
+ Corpus.AddToCorpus(U);
if (Options.Verbosity >= 2)
Printf("NEW0: %zd L %zd\n", MaxCoverage.BlockCoverage, U.size());
}
@@ -435,6 +424,7 @@ bool Fuzzer::RunOne(const uint8_t *Data,
ExecuteCallback(Data, Size);
bool Res = RecordMaxCoverage(&MaxCoverage);
+ CheckExitOnSrcPos();
auto TimeOfUnit =
duration_cast<seconds>(UnitStopTime - UnitStartTime).count();
if (!(TotalNumberOfRuns & (TotalNumberOfRuns - 1)) &&
@@ -545,7 +535,6 @@ void Fuzzer::ReportNewCoverage(InputInfo
WriteToOutputCorpus(U);
NumberOfNewUnitsAdded++;
PrintNewPCs();
- AddToCorpusAndMaybeRerun(U);
}
// Finds minimal number of units in 'Extra' that add coverage to 'Initial'.
@@ -675,8 +664,10 @@ void Fuzzer::MutateAndTestOne() {
if (i == 0)
StartTraceRecording();
II.NumExecutedMutations++;
- if (RunOne(CurrentUnitData, Size))
+ if (RunOne(CurrentUnitData, Size)) {
+ Corpus.AddToCorpus({CurrentUnitData, CurrentUnitData + Size});
ReportNewCoverage(&II, {CurrentUnitData, CurrentUnitData + Size});
+ }
StopTraceRecording();
TryDetectingAMemoryLeak(CurrentUnitData, Size,
/*DuringInitialCorpusExecution*/ false);
More information about the llvm-commits
mailing list