fuzzilli

fuzzilli copied to clipboard

As noted here, a lot of test cases generated by Fuzzilli contain empty blocks. This probably happens for a number of reasons, but in any case it's likely detrimental to fuzzer performance, as the probability of e.g. the CodeGenMutator adding code back into an empty function is fairly low.

One possible solution might be to add a minBlockSize parameter to the Minimizer (similar to the existing minimizationLimit) and with that force it to keep at least that many instructions in each block's body. Probably a reasonable value for this would be 3-5.

Thoughts, feedback, or other suggestions welcome!