Merge pull request #89 from fitzgen/update-libfuzzer-60e32a1

fitzgen · web-flow · commit 76f10a72ad1d · 2022-03-03T09:36:05.000-08:00
Update libFuzzer to llvm/llvm-project@60e32a1
diff --git a/ci/script.sh b/ci/script.sh
@@ -11,7 +11,8 @@ pushd ./example
 cargo rustc \
       --release \
       -- \
-      -Cpasses='sancov' \
+      -Ccodegen-units=1 \
+      -Cpasses=sancov-module \
       -Cllvm-args=-sanitizer-coverage-level=3 \
       -Cllvm-args=-sanitizer-coverage-trace-compares \
       -Cllvm-args=-sanitizer-coverage-inline-8bit-counters \
@@ -26,7 +27,8 @@ pushd ./example_arbitrary
 cargo rustc \
       --release \
       -- \
-      -Cpasses='sancov' \
+      -Ccodegen-units=1 \
+      -Cpasses=sancov-module \
       -Cllvm-args=-sanitizer-coverage-level=3 \
       -Cllvm-args=-sanitizer-coverage-trace-compares \
       -Cllvm-args=-sanitizer-coverage-inline-8bit-counters \
@@ -46,7 +48,8 @@ pushd ./example_mutator
 cargo rustc \
       --release \
       -- \
-      -Cpasses='sancov' \
+      -Ccodegen-units=1 \
+      -Cpasses=sancov-module \
       -Cllvm-args=-sanitizer-coverage-level=3 \
       -Cllvm-args=-sanitizer-coverage-trace-compares \
       -Cllvm-args=-sanitizer-coverage-inline-8bit-counters \
diff --git a/example/src/main.rs b/example/src/main.rs
@@ -3,7 +3,7 @@
 use libfuzzer_sys::fuzz_target;
 
 fuzz_target!(|data: &[u8]| {
-    if data == b"banana!" {
+    if data == "banana!".as_bytes() {
         panic!("success!");
     }
 });
diff --git a/libfuzzer/FuzzerInterceptors.cpp b/libfuzzer/FuzzerInterceptors.cpp
@@ -25,6 +25,7 @@
   }
 
 #include <cassert>
+#include <cstddef> // for size_t
 #include <cstdint>
 #include <dlfcn.h> // for dlsym()
 
diff --git a/libfuzzer/dataflow/DataFlow.cpp b/libfuzzer/dataflow/DataFlow.cpp
@@ -17,11 +17,9 @@
 // and also provides basic-block coverage for every input.
 //
 // Build:
-//   1. Compile this file (DataFlow.cpp) with -fsanitize=dataflow -mllvm
-//       -dfsan-fast-16-labels and -O2.
+//   1. Compile this file (DataFlow.cpp) with -fsanitize=dataflow and -O2.
 //   2. Compile DataFlowCallbacks.cpp with -O2 -fPIC.
 //   3. Build the fuzz target with -g -fsanitize=dataflow
-//       -mllvm -dfsan-fast-16-labels
 //       -fsanitize-coverage=trace-pc-guard,pc-table,bb,trace-cmp
 //   4. Link those together with -fsanitize=dataflow
 //
@@ -82,7 +80,7 @@ static inline bool BlockIsEntry(size_t BlockIdx) {
   return __dft.PCsBeg[BlockIdx * 2 + 1] & PCFLAG_FUNC_ENTRY;
 }
 
-const int kNumLabels = 16;
+const int kNumLabels = 8;
 
 // Prints all instrumented functions.
 static int PrintFunctions() {

Original file line number	Diff line number	Diff line change
`@@ -3,7 +3,7 @@`
`3`	`3`	`use libfuzzer_sys::fuzz_target;`
`4`	`4`
`5`	`5`	`fuzz_target!(\|data: &[u8]\| {`
`6`		`- if data == b"banana!" {`
	`6`	`+ if data == "banana!".as_bytes() {`
`7`	`7`	`panic!("success!");`
`8`	`8`	`}`
`9`	`9`	`});`
Original file line number	Diff line number	Diff line change
`@@ -25,6 +25,7 @@`
`25`	`25`	`}`
`26`	`26`
`27`	`27`	`#include <cassert>`
	`28`	`+#include <cstddef> // for size_t`
`28`	`29`	`#include <cstdint>`
`29`	`30`	`#include <dlfcn.h> // for dlsym()`
`30`	`31`