Commit graph

12 commits

Author SHA1 Message Date
hamzeh
53cedb0653 Fix to avoid breaking aosp_x86 build
Removing this section as per suggetion in comment#6 (b/139694329)

Bug: 139694329
Test: none
Change-Id: I51b0ab17aeff5897932203773bd02a4951268a73
2019-09-20 12:43:02 -07:00
Mitch Phillips
e293edfa2e Merge "Fix fuzzer builds." am: 65dbf9bfb3
am: 164b2532a6

Change-Id: I149780657e1ab209240e4488662eb06c2d2f5d50
2019-05-21 18:40:35 -07:00
Mitch Phillips
ee8f4a0ada Fix fuzzer builds.
- Updates the fuzzer builds to use SANITIZE_TARGET='fuzzer' instead of
'coverage'.
- Removed an old dependency that made fuzzer builds without ASan
an error.
- Fixed up the build flags to allow fuzzers to be built. Previously, the
coverage flags were manually provided. As the toolchain has moved on,
these flags are no longer compatible with libFuzzer, and so I've updated
them to use the correct, compatible flags.

Bug: 121042685
Test: With all patches in the bug merged, build a fuzzer using
'SANITIZE_TARGET=fuzzer mmma <your_fuzzer>'.

Change-Id: I86e6a26d27c22b3622cf6ea8760f502f607df6f0
2019-05-20 16:58:26 -07:00
Zach Riggle
70299e9a8c Move fuzzers to include fuzz engine in pathname, default to 64-bit
Old: /data/nativetest64/fuzzers/ID3_fuzzer/ID3_fuzzer
New: /data/nativetest64/fuzzers/libFuzzer/ID3_fuzzer

This allows having both the honggfuzz and libFuzzer variants built
and flashed at the same time.  It also means we don't have to rely
on 'strings' to determine which type a given fuzzer is.

Test: SANITIZE_TARGET=address mmma vendor/google/tools/security/fuzzers/libFuzzer/sanitycheck_fuzzer \
      && test -e $ANDROID_PRODUCT_OUT/data/nativetest64/fuzzers/libFuzzer/sanitycheck_fuzzer
Change-Id: Ic0899fe8f471cc63d11d810e5fd16b6c6f621bc1
2018-04-05 20:03:26 +00:00
Zach Riggle
bcfa37e317 Add the honggfuzz binary as a dependency and keep symbols
This way honggfuzz is rebuilt if it has changed, when building a fuzzer.

Separately, keeping the symbols in the fuzzer binary is useful for crash triage.

Change-Id: I2fc5ca64ccf66d084158580da74e5397aa61c250
2018-01-24 23:50:46 +00:00
Zach Riggle
6319deed41 Add support for honggfuzz to BUILD_FUZZ_TEST
Change-Id: I38f70d1a57649635be95c59187da05ba22fcf687
2017-12-27 22:08:27 +00:00
Zach Riggle
be0811f46c Enhance coverage options to include those needed by Honggfuzz for coverage-driven fuzzing
Test: make m
Bug: 64903541
Change-Id: Ibb7eb126b6e68c03d0336606ec540a62a8e903d4
2017-08-22 18:01:46 -04:00
Dan Austin
5567e5072e Update fuzz_test makefile.
Update the fuzz_test makefile to link against the new libFuzzer
library and update the coverage flags to the new version.

Test: built a fuzzer and verified correct linking.
Change-Id: Ie6e6da9a202a258abf805dbdc8cdd3490fcb2406
2017-04-19 10:58:58 -07:00
Vishwath Mohan
b6baba059b Create sub-directory for fuzzers under nativetest.
This CL changes BUILD_FUZZ_TEST to generate binaries in a
sub-directory called fuzzers/ under the nativetest directory. This
allows fuzzers to be distinguished from the other native tests and
makes it easier to perform automated fuzz-testing.

Bug: 25714111
Change-Id: I452e43f15728ec9168dd44776b6ffcea6037fa7f
2016-09-02 13:25:59 -07:00
Dan Willemsen
3bf15e71d3 Record module type statistics
Creates a build_system_stats.txt build artifact that contains statistics
on how many BUILD_* modules are defined in a build. Also writes out
information about the Soong module types sent from the Soong build.

Merged-In: Iaf0c7062f542dc6942b5349854f3d49267cac4a5
Change-Id: Iaf0c7062f542dc6942b5349854f3d49267cac4a5
2016-07-29 19:58:35 +00:00
Ivan Krasin
74b32b8dfc Add support of SANITIZE_TARGET='address coverage' for fuzzing.
Also, add trace-cmp instrumentation to fuzz_test and host_fuzz_test.

Bug: 22850550
Change-Id: Ifff7b8be693ae991feb0a64e19439370a19b2748
2015-09-18 11:54:43 -07:00
Dan Albert
36b6f0472f Add BUILD(_HOST)?_FUZZ_TEST.
These are tests that use LLVM's libFuzzer for testing with a
sanitizer.

Bug: http://b/22850550
Change-Id: I6eeaff7877b7dd0c30f8910c6f27f5278b27a83d
2015-08-17 14:39:27 -07:00