Comments (8)
robertswiecki
commented on May 3, 2024
I've added --tmout_sigvtalrm, please give it a try
from honggfuzz.
ngg
commented on May 3, 2024
Thanks for the fast patch, it seems to be working (on Linux at least).
I don't know if it's intentional but sometimes the Crashes counter shows a smaller number than the Timeouts counter.
I have tried it with the following simple code:
#include <stdint.h>
#include <unistd.h>
int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
{
if (size > 0 && data[0] == 'H')
if (size > 1 && data[1] == 'I')
if (size > 2 && data[2] == '!')
sleep(20);
return 0;
}
from honggfuzz.
ngg
commented on May 3, 2024
I do not know if this use case is happening often enough, but would you consider giving this option a one-letter code (like -T)?
from honggfuzz.
robertswiecki
commented on May 3, 2024
Sure, gitpulls wellcome :)
from honggfuzz.
robertswiecki
commented on May 3, 2024
I've added protection against counting timeouts twice (or more times). Feel free to test the newest pull
from honggfuzz.
ngg
commented on May 3, 2024
I have submitted a bugfix #119 and the short flag option #120.
Thanks!
from honggfuzz.
ngg
commented on May 3, 2024
Btw I have used this new timeout option to find out what causes 100% CPU usage in the ASN1 decoder of Crypto++. That has just been publicly disclosed at weidai11/cryptopp#346 (it does not have a CVE number yet)
from honggfuzz.
robertswiecki
commented on May 3, 2024
Nice :)
from honggfuzz.
Related Issues (20)
- Build Error on Linux with libbfd-2.38 HOT 2
- Some fuzz targets instrumented with honggfuzz seem to crash sometimes HOT 24
- honggfuzz seems to pass files with no hard links HOT 5
- issue with building honggfuzz on debian 10.7 -- error related to bfd? HOT 1
- Fuzzing targets that trigger and handle signals like SIGILL as part of normal operations HOT 1
- honggfuzz does not support file as input? HOT 2
- Current git doesn't compile HOT 2
- Does not support Apple Silicon HOT 10
- Undefined symbols for architecture arm64: "_OBJC_CLASS_$_CrashReport" HOT 6
- arch_prepareParentAfterFork():204 Couldn't attach to p id=XXXX
- _HF_DISASM_4_ARGS not reliable HOT 2
- Compile error on WSL2 Ubuntu HOT 12
- ubuntu18和ubuntu22都无法编译honggfuzz HOT 2
- Linker-related error: error adding symbols: file format not recognized
- Hongfuzz returns error when executed through ssh HOT 1
- How to restart fuzz without losing progress? HOT 1
- strlcat and strlcpy break Samba configure HOT 3
- Unable to compile due to bfd.c HOT 1
- Build errors on 32-bit architectures [-Werror=format=] HOT 2
- Coverage never reaches 100% HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from honggfuzz.