2022-04-18 15:29:17 +08:00
|
|
|
Fuzzing for LLVM-libc functions
|
|
|
|
===============================
|
2020-02-22 11:14:51 +08:00
|
|
|
|
2022-04-18 15:29:17 +08:00
|
|
|
Fuzz tests are used to ensure quality and security of LLVM-libc implementations.
|
|
|
|
All fuzz tests live under the directory named ``fuzzing``. Within this
|
|
|
|
directory, the fuzz test for a libc function lives in the same nested directory
|
|
|
|
as its implementation in the toplevel ``src`` directory. The build target
|
|
|
|
``libc-fuzzer`` builds all of the enabled fuzz tests (but does not run them).
|
2020-02-22 11:14:51 +08:00
|
|
|
|
2022-04-18 15:29:17 +08:00
|
|
|
Types of fuzz tests
|
|
|
|
===================
|
2020-02-22 11:14:51 +08:00
|
|
|
|
2022-04-18 15:29:17 +08:00
|
|
|
As of this writing, there are two different kinds of fuzz tests. One kind are
|
|
|
|
the traditional fuzz tests which test one function at a time and only that
|
|
|
|
particular function. The other kind of tests are what we call as the
|
|
|
|
differential fuzz tests. These tests compare the behavior of LLVM libc
|
|
|
|
implementations with the behavior of the corresponding functions from the system
|
|
|
|
libc.
|