Max Moroz
Max Moroz
While investigating https://github.com/google/clusterfuzz/issues/462, I've identified at least one scenario. It's currently reproducible with `grpc_hpack_parser_fuzzer_test` fuzz target in Chromium. What happens: 1) the target OOMs very quickly 2) eventually the control...
1) If we fuzz with some `-max_len` value, the `initial_edge_coverage` stat will not represent the actual edge coverage of the full corpus, because libFuzzer will ignore the contents past the...
There is some initial implementation by @alessandrogario in https://github.com/google/AFL/pull/11. See https://github.com/google/AFL/pull/11#issuecomment-517869472 for motivation / goals.
Can be done either separately from or together with #4
e.g. remove `publish` as suggested in #20. This might not be necessary though, if we do #13 first and migrate to another build system.
Came up during the team meeting today
to block non-formatted changes
1) https://bugs.chromium.org/p/chromium/issues/detail?id=1139963#c9 the `Security_Impact-Stable ` label was manually assigned. 2) https://bugs.chromium.org/p/chromium/issues/detail?id=1139963#c40 ClusterFuzz assigned `Security_Impact-Beta` and removed `Security_Impact-Stable`, although the regression range was pointing far into the past 3) https://bugs.chromium.org/p/chromium/issues/detail?id=1139963#c45 the...
https://console.cloud.google.com/errors/CPW-mvnf7IzlCA?time=P30D&project=clusterfuzz-experimental
Seems like we'll have at least two more models added, and one of them supports several different model types (rnn, gpt, vae, etc). We need to think on how to...