diff options
| author | Kendall Condon <goon.pri.low@gmail.com> | 2025-05-01 16:52:56 -0400 |
|---|---|---|
| committer | Kendall Condon <goon.pri.low@gmail.com> | 2025-09-18 18:56:10 -0400 |
| commit | e66b269333b5c400d76078318ac92354753bcf7b (patch) | |
| tree | c198e686748f59bd025c4d4ced7210a8d3bdb62f /lib/std/Build/WebServer.zig | |
| parent | a0ec4e270e680960290642468f6df3ce7e7d7664 (diff) | |
| download | zig-e66b269333b5c400d76078318ac92354753bcf7b.tar.gz zig-e66b269333b5c400d76078318ac92354753bcf7b.zip | |
greatly improve capabilities of the fuzzer
This PR significantly improves the capabilities of the fuzzer.
The changes made to the fuzzer to accomplish this feat mostly include
tracking memory reads from .rodata to determine fresh inputs, new
mutations (especially the ones that insert const values from .rodata
reads and __sanitizer_conv_const_cmp), and minimizing found inputs.
Additionally, the runs per second has greatly been increased due to
generating smaller inputs and avoiding clearing the 8-bit pc counters.
An additional feature added is that the length of the input file is now
stored and the old input file is rerun upon start.
Other changes made to the fuzzer include more logical initialization,
using one shared file `in` for inputs, creating corpus files with
proper sizes, and using hexadecimal-numbered corpus files for
simplicity.
Furthermore, I added several new fuzz tests to gauge the fuzzer's
efficiency. I also tried to add a test for zstandard decompression,
which it crashed within 60,000 runs (less than a second.)
Bug fixes include:
* Fixed a race conditions when multiple fuzzer processes needed to use
the same coverage file.
* Web interface stats now update even when unique runs is not changing.
* Fixed tokenizer.testPropertiesUpheld to allow stray carriage returns
since they are valid whitespace.
Diffstat (limited to 'lib/std/Build/WebServer.zig')
0 files changed, 0 insertions, 0 deletions