Xen project Mailing List

Re: [RFC PATCH] xen: add libafl-qemu fuzzer support

To: Stefano Stabellini <sstabellini@xxxxxxxxxx>

From: Volodymyr Babchuk <Volodymyr_Babchuk@xxxxxxxx>

Date: Thu, 21 Nov 2024 23:15:10 +0000

Accept-language: en-US

Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=epam.com; dmarc=pass action=none header.from=epam.com; dkim=pass header.d=epam.com; arc=none

Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=T8g1FN93vkyr39bHXONf8ecLUmiuGlm7IOmyfDjStso=; b=A1kBNJ46Y7ZvkntN/eDuUZD/r7YSLzHEtetDqJl167MRVJtzmRmGew8YofaK9XITLhZf+BGJx0ILLwQbXMz8mNgqV3pNvYjEIyGrHB4euKq8ihNCoLUoxm/qOdGT1eXt4NZ8aNafamNl3DLxH1tNJTe5Yin9Dcq31XyGzqCjgQNUiIQpZovkVc6F05KvJgefuBsJTv8c7cnTLP3HbJ3427j7y+q/1X1uRNAogJf/8oJ+TpnGUKOELbonGDmhsL+iLLNwLotnOadhOXv6Pq90xHk+s6J9iENczRe/rLPworHqbzNsCzYAGTfh+dv42WmyII9cGrn5Uv1A24v1W5iaWQ==

Arc-seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=Q8F7QsoV1XOBJP+XHy0Gkt37vtZ4wjTcl+a+bGg4NYZ5iTZh6XmuJpwn9r01OE8Sk+0hJeTjTI2nWTsrwOPTJ1F+XO+kwjzkb45DveLFLw2RXMMhFh/1Rv62lymQo1gtTteV9S2oxmWKvJaJgmCnvx2IYTBaLiHdiVTUJg+JdUI51M9Tht1rojgU46gQOqDZcht79EcxDmynAARg0QCYpjlorxQDsRqe8LdSPUNq4EYOm6fvwnnCby193KKTc4EkbteZpBpJCKxS/iz09tbYwf4XHsYd6ojHf8qt/0svfQiX37NQINri8BsYZ/tTosiFdPnP70F+hN5drE9caFN6Zg==

Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=epam.com;

Cc: "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, Jan Beulich <jbeulich@xxxxxxxx>, Julien Grall <julien@xxxxxxx>, Bertrand Marquis <bertrand.marquis@xxxxxxx>, Michal Orzel <michal.orzel@xxxxxxx>, Dario Faggioli <dfaggioli@xxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, George Dunlap <gwd@xxxxxxxxxxxxxx>

Delivery-date: Thu, 21 Nov 2024 23:15:27 +0000

List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Thread-index: AQHbNucXRmUX3Y7lRUGcS7d55ZSXhw==

Thread-topic: [RFC PATCH] xen: add libafl-qemu fuzzer support

Hi Stefano, Stefano Stabellini <sstabellini@xxxxxxxxxx> writes: > On Wed, 20 Nov 2024, Volodymyr Babchuk wrote: >> Hi Stefano, >> >> (sorry, hit wrong Reply-To option, re-sending for wider audience) >> >> Stefano Stabellini <sstabellini@xxxxxxxxxx> writes: >> >> > On Tue, 19 Nov 2024, Volodymyr Babchuk wrote: >> >> Hi Stefano, >> >> >> >> Stefano Stabellini <sstabellini@xxxxxxxxxx> writes: >> >> [...] >> >> >> >> I was considering this as well. Problem is that fuzzing should be >> >> running for a prolonged periods of time. There is no clear consensus on >> >> "how long", but most widely accepted time period is 24 hours. So looks >> >> like it should be something like "nightly build" task. Fuzzer code >> >> needs to be extended to support some runtime restriction, because right >> >> now it runs indefinitely, until user stops it. >> > >> > We can let it run for 48 hours continuously every weekend using the >> > Gitlab runners >> >> Great idea. Anyways, I need to add option to limit runtime to the fuzzer >> and invent some method for reporting discovered crashes to the CI first. >> >> > >> >> I am certainly going to implement this, but this is a separate topic, >> >> because it quires changes in the fuzzer app. Speaking on which... Right >> >> now both fuzzer and test harness reside in our github repo, as you >> >> noticed. I believe it is better to host it on xenbits as an official >> >> part of the Xen Project. >> > >> > Yes we can create repos under gitlab.com/xen-project for this, maybe a >> > new subgroup gitlab.com/xen-project/fuzzer >> >> Good. Whom should I ask to do this? > > I created gitlab.com/xen-project/fuzzer as an empty group. What > repositories do you need under it? Right now it is only the fuzzer itself (https://github.com/xen-troops/xen-fuzzer-rs). If we are going to use XTF then we don't need additional repo for the the harness. -- WBR, Volodymyr

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.