handle libfuzzer fuzzing non-zero exits better #381

bmc-msft · 2020-12-10T16:20:43Z

When running libfuzzer in 'fuzzing' mode, we expect the following on exit.

If the exit code is zero, crashing input isn't required. This happens if the user specifies '-runs=N'

If the exit code is non-zero, then crashes are expected. In practice, there are two causes to non-zero exits.

If the binary can't execute for some reason, like a missing prerequisite
If the binary can execute, sometimes the sanitizers are put in such a bad place that they are unable to record the input that caused the crash.

This PR enables handling these two non-zero exit cases.

Optionally verify the libfuzzer target loads appropriately using target_exe -help=1. This allows failing faster in the common issues, such a missing prerequisite library.
Optionally allow non-zero exits without crashes to be a warning, rather than a task failure.

bmc-msft · 2020-12-10T18:15:24Z

This passed integration tests.

src/agent/onefuzz/src/libfuzzer.rs

src/api-service/__app__/onefuzzlib/job_templates/defaults/libfuzzer.py

docs/webhook_events.md

…t/onefuzz into make-libfuzzer-failures-optional

ghost · 2021-01-05T14:12:53Z

Hello @bmc-msft!

Because this pull request has the auto-merge label, I will be glad to assist with helping to merge this pull request once all check-in policies pass.

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (`@msftbot`) and give me an instruction to get started! Learn more here.

optionally ignore libfuzzer non-clean exits without crashing input

1ca94ad

bmc-msft linked an issue Dec 10, 2020 that may be closed by this pull request

enable optionally libfuzzer crashes that don't leave an input #375

Closed

demoray added 3 commits December 10, 2020 11:41

Add support to set check_fuzzer_help and require_crash_on_failure

4149ab9

enable check_fuzzer_help across all libfuzzer tasks

ac3a7c9

update webhook docs

b7ea36d

bmc-msft added 6 commits December 10, 2020 15:50

Merge branch 'main' into make-libfuzzer-failures-optional

d3d072d

Merge branch 'main' into make-libfuzzer-failures-optional

dca0201

Merge branch 'main' into make-libfuzzer-failures-optional

93061c0

Merge branch 'main' into make-libfuzzer-failures-optional

b0bc424

Merge branch 'main' into make-libfuzzer-failures-optional

2f2ac1f

Merge branch 'main' into make-libfuzzer-failures-optional

64a4ede

ranweiler approved these changes Jan 4, 2021

View reviewed changes

src/agent/onefuzz/src/libfuzzer.rs Show resolved Hide resolved

src/api-service/__app__/onefuzzlib/job_templates/defaults/libfuzzer.py Outdated Show resolved Hide resolved

docs/webhook_events.md Show resolved Hide resolved

docs/webhook_events.md Outdated Show resolved Hide resolved

demoray and others added 4 commits January 4, 2021 18:35

address feedback

be59e55

Merge branch 'main' into make-libfuzzer-failures-optional

597072c

regenerate docs

c419af4

Merge branch 'make-libfuzzer-failures-optional' of github.com:bmc-msf…

3be1a4e

…t/onefuzz into make-libfuzzer-failures-optional

bmc-msft added auto-merge passed-integration-tests labels Jan 5, 2021

Merge branch 'main' into make-libfuzzer-failures-optional

3aad051

ghost merged commit 37f06bb into microsoft:main Jan 5, 2021

bmc-msft deleted the make-libfuzzer-failures-optional branch January 20, 2021 11:12

ghost locked as resolved and limited conversation to collaborators Apr 17, 2021

This pull request was closed.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

handle libfuzzer fuzzing non-zero exits better #381

handle libfuzzer fuzzing non-zero exits better #381

bmc-msft commented Dec 10, 2020

bmc-msft commented Dec 10, 2020

ghost commented Jan 5, 2021

handle libfuzzer fuzzing non-zero exits better #381

handle libfuzzer fuzzing non-zero exits better #381

Conversation

bmc-msft commented Dec 10, 2020

bmc-msft commented Dec 10, 2020

ghost commented Jan 5, 2021

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (@msftbot) and give me an instruction to get started! Learn more here.

p.s. you can customize the way I help with merging this pull request, such as holding this pull request until a specific person approves. Simply @mention me (`@msftbot`) and give me an instruction to get started! Learn more here.