Adding oss-fuzz to libffi #523

k2naveen · 2019-10-16T11:21:30Z

Adding initial changes to support oss-fuzz in libffi (Ref #292 .

Steps to enable fuzzing in libffi:
git clone https://github.com/libffi/libffi.git
cd libffi
./autogen.sh
./configure CC=clang CXX=clang++ LD=clang++ --enable-fuzzing LDFLAGS=-lffi --prefix=/path/to/precompiled/libffi.so/
make
./x86_64-pc-linux-gnu/ffi_strlen_fuzzer
or
./x86_64-pc-linux-gnu/ffi_strlen2_fuzzer

Build integration to osss-fuzz is in-progress. Please review & provide your feedback.

atgreen · 2019-10-17T17:54:39Z

Thanks, Naveen.

After looking at your sample programs, I'm not sure what value fuzzing has for libffi. As far as I can tell, these are really testing strlen, because the libffi code paths are always the same -- regardless of input provided by libFuzz. What do you think?

k2naveen · 2019-10-18T11:42:03Z

Hi @atgreen,
The sample code is based on libffi.call testsuites and it is just a simple use case of libfuzz.
Do you think we can utilize libfuzz’s Fuzz Testing in the libffi in a better way? Please give your inputs.

BTW, I created a separate directory under src/fuzz for the libfuzz.

DemiMarie · 2024-12-24T21:21:52Z

@atgreen One way to fuzz libffi would be:

Generate random function signatures.
Compile, link, and dlopen() a shared library with a function with that signature.
Call the function.
Check that the result is what is expected.

Adding oss-fuzz to libffi

f9e4788

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Adding oss-fuzz to libffi #523

Adding oss-fuzz to libffi #523

k2naveen commented Oct 16, 2019

atgreen commented Oct 17, 2019

k2naveen commented Oct 18, 2019

DemiMarie commented Dec 24, 2024

Adding oss-fuzz to libffi #523

Are you sure you want to change the base?

Adding oss-fuzz to libffi #523

Conversation

k2naveen commented Oct 16, 2019

atgreen commented Oct 17, 2019

k2naveen commented Oct 18, 2019

DemiMarie commented Dec 24, 2024