deepstate

deepstate copied to clipboard

Initial crash triaging support for DeepState harnesses

1

Adds initial support for emitting out a backtrace after a forked DeepState test throws some type of signal using `--verbose_crash_trace`. The output for a buffer overflow/memory corruption example looks as...

ex0dus-0x

Add support for Jackalope

1

https://github.com/googleprojectzero/Jackalope Not quite working for me, yet, but it'd be nice to have a Mac os friendly first-class fuzzer, and the ability to control mutation/instrumentation more modularly sounds nice for...

agroce

Update the Docker to Base off of Ubuntu 20.04 (focal) rather than 18.04

1

- Right now, this doesn't work with Eclipser for known reasons - Angora is also disabled, though I have no investigated why it fails (that is, it might fail on...

agroce

Right now we just use the standard C random library, but really it'd be nice if the brute force fuzzer could do consistent tests across platforms, for various purposes. We...

agroce

Hello, I am trying to build Angora and when I run cmake with `cmake -DDEEPSTATE_ANGORA=ON ../` it gives the below error even when Angora/bin/angora-clang++ and Angora/bin/angora-clang exist. ``` akhila@akhila-VirtualBox:~/.RcppDeepState/deepstate-master/build_angora$ CXX="$ANGORA_HOME/bin/angora-clang++"...

akhikolla

Tl;dr: I stumbled upon cmake not detecting the `ar` path while it is clearly in my Ubuntu 18.04 installation. The issue is that some generated file contains the `CMAKE_AR-NOTFOUND` instead...

disconnect3d

Tl;dr: building a simple DeepState testcase as shown below, gives the `-Wmissing-noreturn` warning. This might be an issue if DeepState is incorporated into a codebase that uses `-Werror`. ### Example...

disconnect3d

Inclusion of GenTest Codebase into DeepState

1

Hi all, All those in Academia already know this but the school year is wrapping up, which means capstone projects are being finished! @agroce decided that he wanted to submit...

deltarod

AFL synchronization mode

10

Currently, AFL executor (`deepstate-afl`) always runs the fuzzer in master mode (`-M` argument). Code [here](https://github.com/trailofbits/deepstate/blob/67e98f56670cab1e9099498867fe72d7876debc0/bin/deepstate/executors/fuzz/afl.py#L107). We should detect when to run it in slave mode (`-S`). Thus not running deterministic...

GrosQuildu

libFuzzer continuous fuzzing/jobs

2

libFuzzer stops when first crash is found. We may change that by providing `-jobs=9999` option, which may be good for continuous fuzzing. But restart may be better? Anyway, once the...

GrosQuildu