mirror of
https://chromium.googlesource.com/crosvm/crosvm
synced 2025-02-05 18:20:34 +00:00
efda10cc64
Improve the virtqueue_fuzzer's performance by reducing the maximum queue size as well as the size of the guest memory. Zeroing out 256MB of memory on every iteration was slowing things down quite a bit and we don't actually need that much memory to fuzz the virtqueue code. Additionally, refactor the fuzzer to use the virtqueue structs from the virtio spec to fill out the guest memory. This should give us more targeted fuzzing compared to the previous implementation, while also removing cases where the fuzzer would spin for thousands of iterations without making any progress. BUG=chromium:1018267 TEST=`cros_fuzz reproduce` and also run the fuzzer manually Change-Id: Ibf71aa83c31f16b7f58b23045a0919f7f6824c77 Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/1886533 Tested-by: Chirantan Ekbote <chirantan@chromium.org> Tested-by: kokoro <noreply+kokoro@google.com> Reviewed-by: Stephen Barber <smbarber@chromium.org> Commit-Queue: Sean Abraham <seanabraham@chromium.org> Auto-Submit: Chirantan Ekbote <chirantan@chromium.org> |
||
|---|---|---|
| .. | ||
| .gitignore | ||
| block_fuzzer.rs | ||
| Cargo.toml | ||
| OWNERS | ||
| qcow_fuzzer.rs | ||
| usb_descriptor_fuzzer.rs | ||
| virtqueue_fuzzer.rs | ||
| zimage_fuzzer.rs | ||