cloud-hypervisor/docs/fuzzing.md

# Fuzzing in Cloud Hypervisor

Cloud Hypervisor uses [cargo-fuzz](https://github.com/rust-fuzz/cargo-fuzz) for fuzzing individual components.

The fuzzers are are in the `fuzz/fuzz_targets` directory

## Preparation

Switch to nightly: 

````
rustup override set nightly
````

Install `cargo fuzz`: 

```
cargo install cargo-fuzz
```

## Running the fuzzers

e.g. To run the `block` fuzzer using all available CPUs:

```
cargo fuzz run block -j `nproc`
```

## Adding a new fuzzer

```
cargo fuzz add <new_fuzzer>
```

Inspiration for fuzzers can be found in [crosvm](https://chromium.googlesource.com/chromiumos/platform/crosvm/+/refs/heads/master/fuzz/)
fuzz: Add fuzzing infrastructure and QCOW fuzzer Add the basic infrastructure for fuzzing along with a qcow fuzzer ported from crosvm and adapted to our code. Signed-off-by: Rob Bradford <robert.bradford@intel.com> 2020-07-16 14:44:36 +00:00			`# Fuzzing in Cloud Hypervisor`

			`Cloud Hypervisor uses [cargo-fuzz](https://github.com/rust-fuzz/cargo-fuzz) for fuzzing individual components.`

			The fuzzers are are in the `fuzz/fuzz_targets` directory

			`## Preparation`

			`Switch to nightly:`

			````
			`rustup override set nightly`
			````

			Install `cargo fuzz`:

			```
			`cargo install cargo-fuzz`
			```

			`## Running the fuzzers`

doc: Stop advertizing QCOW usage at some places in doc Replacing QCOW mentions with other viable options. There is still docs/custom-image.md which talks about creating QCOW, however it might be more convenient to be touched when the actual changes are indeed there. Related to #1985. Signed-off-by: Anatol Belski <anbelski@linux.microsoft.com> 2021-08-04 20:46:42 +00:00			e.g. To run the `block` fuzzer using all available CPUs:
fuzz: Add fuzzing infrastructure and QCOW fuzzer Add the basic infrastructure for fuzzing along with a qcow fuzzer ported from crosvm and adapted to our code. Signed-off-by: Rob Bradford <robert.bradford@intel.com> 2020-07-16 14:44:36 +00:00
			```
doc: Stop advertizing QCOW usage at some places in doc Replacing QCOW mentions with other viable options. There is still docs/custom-image.md which talks about creating QCOW, however it might be more convenient to be touched when the actual changes are indeed there. Related to #1985. Signed-off-by: Anatol Belski <anbelski@linux.microsoft.com> 2021-08-04 20:46:42 +00:00			cargo fuzz run block -j `nproc`
fuzz: Add fuzzing infrastructure and QCOW fuzzer Add the basic infrastructure for fuzzing along with a qcow fuzzer ported from crosvm and adapted to our code. Signed-off-by: Rob Bradford <robert.bradford@intel.com> 2020-07-16 14:44:36 +00:00			```

			`## Adding a new fuzzer`

			```
			`cargo fuzz add <new_fuzzer>`
			```

doc: Stop advertizing QCOW usage at some places in doc Replacing QCOW mentions with other viable options. There is still docs/custom-image.md which talks about creating QCOW, however it might be more convenient to be touched when the actual changes are indeed there. Related to #1985. Signed-off-by: Anatol Belski <anbelski@linux.microsoft.com> 2021-08-04 20:46:42 +00:00			`Inspiration for fuzzers can be found in [crosvm](https://chromium.googlesource.com/chromiumos/platform/crosvm/+/refs/heads/master/fuzz/)`