Add continuous fuzzing script for libFuzzer

rust-fuzz · Apr 24, 2018 · acbdac8 · acbdac8
1 parent 384f25a
commit acbdac8
Show file tree

Hide file tree

Showing 3 changed files with 22 additions and 3 deletions.
diff --git a/continuous-fuzzing.rb → continuous-fuzzing-with-honggfuzz.rb b/continuous-fuzzing.rb → continuous-fuzzing-with-honggfuzz.rb
@@ -7,13 +7,13 @@
 end
 
 loop do
-    system 'cd fuzzer-honggfuzz; cargo update'
-
     File.open("targets.txt").each do |line|
         target, weight = line.split
         time = weight.to_i * time_mul.to_i
 
         system "HFUZZ_RUN_ARGS=\"--run_time #{time} $HFUZZ_RUN_ARGS\" ./fuzz-with-honggfuzz.sh #{target}"
     end
+
+    system 'cd fuzzer-honggfuzz; cargo update'
 end
 
diff --git a/continuous-fuzzing-with-libfuzzer.rb b/continuous-fuzzing-with-libfuzzer.rb
@@ -0,0 +1,19 @@
+#!/usr/bin/env ruby
+
+if ARGV.size >= 1
+    time_mul = ARGV[0]
+else
+    time_mul = 10
+end
+
+loop do
+    File.open("targets.txt").each do |line|
+        target, weight = line.split
+        time = weight.to_i * time_mul.to_i
+
+        system "LIBFUZZER_ARGS=\"-max_total_time=#{time} $LIBFUZZER_ARGS\" ./fuzz-with-libfuzzer.sh #{target}"
+    end
+
+    system 'cd fuzzer-libfuzzer; cargo update'
+end
+
diff --git a/fuzz-with-libfuzzer.sh b/fuzz-with-libfuzzer.sh
@@ -38,4 +38,4 @@ else
 fi
 
 mkdir -p "corpus-$1"
-cargo run --target $TARGET --bin "$1" -- "corpus-$1" $SEEDS
+cargo run --target $TARGET --bin "$1" -- "corpus-$1" $SEEDS $LIBFUZZER_ARGS