fuzzilli
fuzzilli copied to clipboard
googleprojectzero
A JavaScript Engine Fuzzer
Hey folks! Firstly, thank you for developing this neat piece of software. We're working towards fuzzing https://github.com/oven-sh/bun and I'm currently at the stage of getting JSC fuzzed. So far, I've...
Environment OS: Kali Linux (x86_64) Swift Toolchain: 5.10.1 Build Command: swift build -c release Fuzzilli Revision: (current main, as of November 2025) Fuzzilli fails to compile on Linux using Swift...
Hello I was following https://github.com/googleprojectzero/fuzzilli/tree/main/Cloud/Docker ``` $ sudo ./build.sh v8 => ERROR [18/18] RUN ./fuzzbuild.sh 0.6s ------ > [18/18] RUN ./fuzzbuild.sh: 0.440 ERROR at //.gn:36:48: No value named "exec_script_whitelist" in...
- Created a REPRL solution for workerd (https://github.com/cloudflare/workerd/pull/4917) - Created a Fuzzilli target and top-level context await support (as this is needed for workerd)
### Summary After approximately **24–48 hours** of fuzzing SpiderMonkey using Fuzzilli, the fuzzer crashes due to an internal assertion failure in `ProgramBuilder.handleInputTypeFailure()`. Backtrace and crash context indicate an assertion failure...
Hello, I recently attempted to add support for custom concrete heap types in WebAssembly function signatures but discovered that Fuzzilli currently does not support this, leading to a Use-After-Free (UAF)...
Help me I applied the patch to WebKit, but REPRL still doesn't work, V8 also causes this error On macOS REPRL at engines does not work Please extend fuzzilli on...
I've noticed that when building d8 on macOS using the generic `fuzzbuild.sh` args. `'is_debug=false dcheck_always_on=true v8_static_library=true v8_enable_verify_heap=true v8_fuzzilli=true sanitizer_coverage_flags="trace-pc-guard" target_cpu="x64"'` It tries to statically load a ubsan library via a...