-
The `@FuzzTest` annotation has only one config parameter `maxDuration`. How can I pass the `-use_value_profile=1` to libFuzzer when running a Junit fuzzTest from IntelliJ IDE?
I naively tried adding …
-
We want to have more data available in the `FuzzedDataProvider`. Currently we only receive very few bytes. We would like to receive more therefore we want to set the -max_len for libFuzzer.
We curren…
-
Something similar to what libFuzzer allows to do: https://github.com/google/fuzzing/blob/master/docs/structure-aware-fuzzing.md (https://llvm.org/docs/LibFuzzer.html#user-supplied-mutators)
-
What the title says. libFuzzer does CMP decomp on its own, and our version will weaken the signal to the value profiler.
-
We could improve the C/C++ example provided [here](https://appsec.guide/docs/fuzzing/techniques/writing-harnesses/#beyond-byte-arrays).
We could turn the following code:
```c
// Ensure exac…
-
Ref #973. Currently we just take a cross of likely options, the fuzzer can't control the specific options via the incoming data.
Naively it would be nice if the fuzz_target could have multiple inp…
-
While testing h5_extended_fuzzer with libfuzzer, I found a memory leak
The reason for this vulnerability is:
There is a direct leak that occurs when object creation is handled in the HDF5 library…
-
Quoting @debrouxl from #299:
> After the 4.5.0 release is cut, maybe libxmp could now be integrated into https://github.com/google/oss-fuzz without being drowned in bug reports ? All the more libxmp …
-
## Files
* input: [crash-1c03e3922631a3de723ccc14367e9f22ca25dbc9](https://chkeitaonefuzz2.azurewebsites.net/api/download?container=oft-crashes-cecbd958a1f257688f9768edaaf6c94d&filename=crash-1c03e39…
-
This probably should be included in Windows LibFuzzer tasks by default, since right now it is set from outside.
```
$AsanOptions = 'allocator_may_return_null=1'
Environment]::SetEnvironmentVariable…