diff options
author | Jack Lloyd <[email protected]> | 2017-09-29 16:36:14 -0400 |
---|---|---|
committer | Jack Lloyd <[email protected]> | 2017-09-29 16:36:14 -0400 |
commit | c9899f967fe8e656dceb2a3670090c04bfdcfd26 (patch) | |
tree | cde106ccfbeec1e53592dc13ef5a778cbcd038b6 /doc/manual | |
parent | 16a0c84fa890ff6705f3e11386bf802ecf27515d (diff) |
Doc updates
Diffstat (limited to 'doc/manual')
-rw-r--r-- | doc/manual/fuzzing.rst | 7 |
1 files changed, 4 insertions, 3 deletions
diff --git a/doc/manual/fuzzing.rst b/doc/manual/fuzzing.rst index 43b125f6b..1f596f6da 100644 --- a/doc/manual/fuzzing.rst +++ b/doc/manual/fuzzing.rst @@ -18,11 +18,10 @@ need to compile libFuzzer:: Then build the fuzzers:: - $ ./configure.py --with-santitizers --build-fuzzer=libfuzzer --unsafe-fuzzer-mode + $ ./configure.py --cc=clang --build-fuzzer=libfuzzer --unsafe-fuzzer-mode \ + --cc-abi-flags='-fsanitize=address,undefined -fsanitize-coverage=edge,indirect-calls,8bit-counters -fno-sanitize-recover=undefined' $ make fuzzers -Using `--with-sanitizers` is optional but highly useful. - The fuzzer binaries will be in `build/fuzzer`. Simply pick one and run it, optionally also passing a directory containing corpus inputs. @@ -39,6 +38,8 @@ To fuzz with AFL (http://lcamtuf.coredump.cx/afl/):: $ ./configure.py --with-sanitizers --build-fuzzer=afl --unsafe-fuzzer-mode --cc-bin=afl-g++ $ make fuzzers +For AFL, `--with-sanitizers` is optional. + You can also use `afl-clang-fast++` or `afl-clang++`. The fuzzer binaries will be in `build/fuzzer`. To run them you need to |