aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJack Lloyd <[email protected]>2017-09-29 16:36:14 -0400
committerJack Lloyd <[email protected]>2017-09-29 16:36:14 -0400
commitc9899f967fe8e656dceb2a3670090c04bfdcfd26 (patch)
treecde106ccfbeec1e53592dc13ef5a778cbcd038b6
parent16a0c84fa890ff6705f3e11386bf802ecf27515d (diff)
Doc updates
-rw-r--r--doc/manual/fuzzing.rst7
1 files changed, 4 insertions, 3 deletions
diff --git a/doc/manual/fuzzing.rst b/doc/manual/fuzzing.rst
index 43b125f6b..1f596f6da 100644
--- a/doc/manual/fuzzing.rst
+++ b/doc/manual/fuzzing.rst
@@ -18,11 +18,10 @@ need to compile libFuzzer::
Then build the fuzzers::
- $ ./configure.py --with-santitizers --build-fuzzer=libfuzzer --unsafe-fuzzer-mode
+ $ ./configure.py --cc=clang --build-fuzzer=libfuzzer --unsafe-fuzzer-mode \
+ --cc-abi-flags='-fsanitize=address,undefined -fsanitize-coverage=edge,indirect-calls,8bit-counters -fno-sanitize-recover=undefined'
$ make fuzzers
-Using `--with-sanitizers` is optional but highly useful.
-
The fuzzer binaries will be in `build/fuzzer`. Simply pick one and run it, optionally
also passing a directory containing corpus inputs.
@@ -39,6 +38,8 @@ To fuzz with AFL (http://lcamtuf.coredump.cx/afl/)::
$ ./configure.py --with-sanitizers --build-fuzzer=afl --unsafe-fuzzer-mode --cc-bin=afl-g++
$ make fuzzers
+For AFL, `--with-sanitizers` is optional.
+
You can also use `afl-clang-fast++` or `afl-clang++`.
The fuzzer binaries will be in `build/fuzzer`. To run them you need to