fuzzbench
fuzzbench copied to clipboard
google
FuzzBench - Fuzzer benchmarking as a service.
## Description This PR attaches `instance_name` for dispatcher and runners docker containers, `d-` and `r--`. And then provide fuzzbench-wide and experiment-wide docker cleaner option in `make`: 1) `make stop-trials [EXPERIMENT=]`:...
Ensemble fuzzing using MOpt, Fairfuzz, AFL, AFLPlusPlus, and AFLFast. Each fuzzer is rotated every hour.
The most annoying part of running a private experiment is checking back on the experiment a few days later to see if its done and then email the researchers with...
Sometimes old experiments can't be reproduced easily without manually modifying FuzzBench to use the dispatcher-image from the original experiment. This may be true for the Q based measurer when that...
We are storing too much corpora from old experiments and need to delete them to spend reasonable amount on storage. We should consider better strategies in the future such as:...
Refering to edges is deceptive since we don't do this anymore.
I am wondering how the covered regions in fuzzbench are being identified. I check code and found `coverage_utils.extract_covered_regions_from_summary_json` extracts information from Clang's sourced base coverage but not pretty sure how...
It doesn't look like unique coverage is working right now (see https://www.fuzzbench.com/reports/experimental/2021-12-17-afl-edges/index.html) and it didn't seem to say anything so interesting, maybe we should remove this feature.