From 404f524674f32b5838e7d6a03c2e5c3d7848e664 Mon Sep 17 00:00:00 2001 From: Mike McTernan Date: Tue, 9 Aug 2022 16:55:11 +0100 Subject: Improve fuzzer coverage with some additional corpus entires. Adds small fdt header blocks with version field set to 0, -1, and also a file with a declared length less than the header. These small inputs are fast to process and fuzz and explore edges in header validation quickly. Bug: 242028005 Test: Ran under gdb to confirm hitting previously uncovered code paths. Test: Ran fuzzer for 1 hour on 128 cores (with b/240612647 check removed) Change-Id: I35f40e0faf1cfd97993f4e60badcb3e4a5d30fb0 --- fuzzing/corpus/header-truncated | Bin 0 -> 40 bytes fuzzing/corpus/header-v-1 | Bin 0 -> 40 bytes fuzzing/corpus/header-v0 | Bin 0 -> 40 bytes fuzzing/corpus/oob_by_one | Bin 0 -> 256 bytes 4 files changed, 0 insertions(+), 0 deletions(-) create mode 100644 fuzzing/corpus/header-truncated create mode 100644 fuzzing/corpus/header-v-1 create mode 100644 fuzzing/corpus/header-v0 create mode 100644 fuzzing/corpus/oob_by_one (limited to 'fuzzing') diff --git a/fuzzing/corpus/header-truncated b/fuzzing/corpus/header-truncated new file mode 100644 index 0000000..1db29d8 Binary files /dev/null and b/fuzzing/corpus/header-truncated differ diff --git a/fuzzing/corpus/header-v-1 b/fuzzing/corpus/header-v-1 new file mode 100644 index 0000000..a773d07 Binary files /dev/null and b/fuzzing/corpus/header-v-1 differ diff --git a/fuzzing/corpus/header-v0 b/fuzzing/corpus/header-v0 new file mode 100644 index 0000000..f22ec6a Binary files /dev/null and b/fuzzing/corpus/header-v0 differ diff --git a/fuzzing/corpus/oob_by_one b/fuzzing/corpus/oob_by_one new file mode 100644 index 0000000..216523c Binary files /dev/null and b/fuzzing/corpus/oob_by_one differ -- cgit v1.2.3-59-g8ed1b