HomePhabricator

[libFuzzer] Experimental data flow tracer for fuzz targets.

Description

[libFuzzer] Experimental data flow tracer for fuzz targets.

Summary:
Experimental data flow tracer for fuzz targets.
Allows to tell which bytes of the input affect which functions of the fuzz target.

We previously attempted to use DFSan directly in the libFuzzer process,
and that didn't work nicely.
Now we will try to collect the data flow information for the seed corpus
in a separate process (using this tracer), and then use it in the regular libFuzzer runs.

Reviewers: morehouse, pcc, Dor1s

Reviewed By: morehouse, Dor1s

Subscribers: delcypher, #sanitizers, llvm-commits

Differential Revision: https://reviews.llvm.org/D46666

Details

Committed
kccMay 10 2018, 12:59 PM
Reviewer
morehouse
Differential Revision
D46666: [libFuzzer] Experimental data flow tracer for fuzz targets.
Parents
rL332028: [Itanium] Emit type info names with external linkage.
Branches
Unknown
Tags
Unknown