Tony Finch · Jun 1, 2020 · 5:10 PM UTC

Tony Finch

Tony Finch @fanf

1 Jun 2020

Question for fans of fuzzers and property-based testing: what’s the best way to split the raw fuzzy input into two files, e.g. header file and source file? break at a ‘\0’ or something more tricky?

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jun 1, 2020 · 7:33 PM UTC

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 @dsilverstone

1 Jun 2020

read a byte use it as a ratio of input sizes to split the rest perhaps?

Tony Finch · Jun 1, 2020 · 7:37 PM UTC

Tony Finch @fanf

1 Jun 2020

Ooh I hadn’t thought of ratios! Does that actually work better than a delimiter in practice?

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jun 1, 2020 · 8:28 PM UTC

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 · Jun 1, 2020 · 8:28 PM UTC

Daniel Silverstone 💉💉💉💉² 🏳️‍🌈🇬🇧 @dsilverstone

1 Jun 2020

Replying to @fanf

I tend to try for the absolute simplest thing i can in a fuzzer wrapper and the problem with a delimiter is you're saying that the delimiter will therefore never show up in the first input since by definition when you encounter it you switch to the second input.

Jun 1, 2020 · 8:28 PM UTC

Tony Finch · Jun 1, 2020 · 8:34 PM UTC

Tony Finch @fanf

1 Jun 2020

Replying to @dsilverstone

yes this is parsing source code, so I can choose one of several equivalent uninteresting control characters to be the delimiter :-) '\0' is actually a bad choice because it's a special sentinel that is still supposed to work when it appears in the input

Tony Finch · Jun 1, 2020 · 8:34 PM UTC

Tony Finch @fanf

1 Jun 2020

thanks for the helpful ideas :-)

more replies