ClusterFuzz is a distributed fuzzing infrastructure that automatically executes libFuzzer powered fuzzer tests on scale.
Googlers can read more here.
The integration between libFuzzer and ClusterFuzz consists of:
gn refs
, builds fuzz targets with multiple sanitizers and uploads binaries to a GCS bucket. Recipe is defined in chromium_libfuzzer.py.Chromium developers can access the corpus stored in the Corpus GCS Bucket via web interface or by using gsutil
tool (the latter is easier for downloading):
mkdir local_corpus_dir gsutil -m cp -r gs://clusterfuzz-corpus/libfuzzer/<fuzz_target> local_corpus_dir