fuzzilli

fuzzilli copied to clipboard

What did I do wrong? Please help me.

Coverage] Initialized, 0 edges
[Fuzzer] Initialized
[Fuzzer] Cannot check if crashes are detected
[Fuzzer] Recommended timeout: at least 10ms. Current timeout: 250ms
[Fuzzer] Cannot receive FuzzIL output
[Fuzzer] Startup tests finished successfully

https://github.com/docfate111/mujs-fuzzilli/blob/main/main.c I made the REPL loop from the other targets and pseudocode. Is there any step I missed because I double-checked and it looks fine.

Fuzzilli can only check for crashes if you define crashTests in your profile, see e.g. here. Do you have those?

Thanks I missed that. However I think there is something wrong with my REPL, the fuzzer runs but I am getting

[Coverage] Initialized, 0 edges
[Fuzzer] Initialized
[Fuzzer] Recommended timeout: at least 20ms. Current timeout: 250ms
[Fuzzer] Cannot receive FuzzIL output <============ ?????
[Fuzzer] Startup tests finished successfully

https://github.com/docfate111/mujs-fuzzilli/blob/main/main.c

Does your patch include support for the FUZZILLI_PRINT functionality (which should write the argument to REPRL_DWFD , see e.g. here). That's usually the problem when this warning appears.

It does not. Is there supposed to be a javascript function that takes FUZZILLI_PRINT as an argument? Or do I just wait for the string to be in stdin? What do I return? Currently I have a JS function named "fuzzilli" that prints the argument after the string FUZZILLI_PRINT to the fuzzer file descriptor. https://github.com/docfate111/mujs-fuzzilli/blob/main/main.c

I assume this issue is no longer active, but feel free to reopen!