-
Notifications
You must be signed in to change notification settings - Fork 59
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for diffing two fuzz-introspector runs #734
Comments
The plan for doing this is exporting lots of the data generated by fuzz introspector into a json format (https://github.com/ossf/fuzz-introspector/blob/main/src/fuzz_introspector/json_report.py) and then build a diffing tool based on that. |
Ref: #734 Signed-off-by: David Korczynski <[email protected]>
A thought in this context is that it would be good to start making the code more object oriented and in particular some form of broader "Fuzz Introspector Report" class, which will make certain things such as serializing data and comparing data more intuitive from a code-level perspective. I don't think this should hold up making some initial progress in this context, but, medium term we should aim for something more object oriented. |
* Add initial layout for report diffing Ref: #734 Signed-off-by: David Korczynski <[email protected]> * fix nits Signed-off-by: David Korczynski <[email protected]> * Add reachability diff of all functions Signed-off-by: David Korczynski <[email protected]> * change name of function Signed-off-by: David Korczynski <[email protected]> * fix soem typing Signed-off-by: David Korczynski <[email protected]> * nit Signed-off-by: David Korczynski <[email protected]> Signed-off-by: David Korczynski <[email protected]>
* Add initial layout for report diffing Ref: ossf/fuzz-introspector#734 Signed-off-by: David Korczynski <[email protected]> * fix nits Signed-off-by: David Korczynski <[email protected]> * Add reachability diff of all functions Signed-off-by: David Korczynski <[email protected]> * change name of function Signed-off-by: David Korczynski <[email protected]> * fix soem typing Signed-off-by: David Korczynski <[email protected]> * nit Signed-off-by: David Korczynski <[email protected]> Signed-off-by: David Korczynski <[email protected]>
* Add initial layout for report diffing Ref: ossf/fuzz-introspector#734 Signed-off-by: David Korczynski <[email protected]> * fix nits Signed-off-by: David Korczynski <[email protected]> * Add reachability diff of all functions Signed-off-by: David Korczynski <[email protected]> * change name of function Signed-off-by: David Korczynski <[email protected]> * fix soem typing Signed-off-by: David Korczynski <[email protected]> * nit Signed-off-by: David Korczynski <[email protected]> Signed-off-by: David Korczynski <[email protected]>
The goal of fuzz introspector is by and large to make it easier to improve a fuzzing set up for a given software package. At the moment fuzz introspector only focuses on a single analysis, whereas, in order to determine if an improvement was successful one has to compare two fuzz introspector runs. As such, we should have some features that make it possible to compare fuzz introspector analyses and specifically make it easy to highlight improvements/regressions.
The text was updated successfully, but these errors were encountered: