On 11/7/19 8:40 AM, Stefan Hajnoczi wrote:
On Wed, Oct 30, 2019 at 02:50:04PM +, Oleinik, Alexander wrote:
+== Building the fuzzers ==
+
+NOTE: If possible, build a 32-bit binary. When forking, the 32-bit fuzzer is
+much faster, since the page-map has a smaller size. This is due to the fact
file
* rewrite fork-based fuzzer pending patch to libfuzzer
* pass check-patch
Alexander Oleinik (20):
softmmu: split off vl.c:main() into main.c
libqos: Rename i2c_send and i2c_recv
fuzz: Add FUZZ_TARGET module type
qtest: add qtest_server_send abstraction
libqtest: Add a layer of abstraciton t
which
we can observe from our code. Then, we map shared memory and copy the
bimaps to the SHM (in the child) and out of the SHM(in the parent) after
each fuzzing run. Ram blocks are marked as DONTFORK in exec.c, which
breaks this approach. For now, avoid this with an #ifdef.
Signed-off-by: Alexander
nts of the
subsequent socket_sends into the qtest_sendf, makes it so the server can
immediately handle the command, without building a local buffer and
waiting for a newline.
Signed-off-by: Alexander Oleinik
---
tests/libqtest.c | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --g
