rust-fuzz / cargo-fuzz

Command line helpers for fuzzing
https://rust-fuzz.github.io/book/cargo-fuzz.html
Apache License 2.0
1.54k stars 110 forks source link

Docs: Visualizing Coverage #162

Open kpcyrd opened 6 years ago

kpcyrd commented 6 years ago

It seems it's possible to visualize corpus coverage with libfuzzer and clang coverage:

https://github.com/google/fuzzer-test-suite/blob/master/tutorial/libFuzzerTutorial.md#visualizing-coverage

It would be interesting to have instructions on how to do this with cargo-fuzz so I can see if I'm currently missing any important branches.

yshui commented 3 years ago

I tried using cargo fuzz with the -Zinstrument-coverage rustc option, but I got "symbols defined in discarded section" error during linking.