Module: Ruzzy

Defined in:

lib/ruzzy.rb

Overview

A coverage-guided fuzzer for pure Ruby code and Ruby C extensions

Constant Summary

DEFAULT_ARGS =

[$PROGRAM_NAME] + ARGV

EXT_PATH =

Pathname.new(__FILE__).parent.parent / 'ext' / 'cruzzy'

ASAN_PATH =

(EXT_PATH / 'asan_with_fuzzer.so').to_s

UBSAN_PATH =

(EXT_PATH / 'ubsan_with_fuzzer.so').to_s

Class Method Summary

• .dummy ⇒ Object
• .dummy_test_one_input(data) ⇒ Object
• .fuzz(test_one_input, args = DEFAULT_ARGS) ⇒ Object
• .trace(harness_script) ⇒ Object

Class Method Details

.dummy ⇒ Object

# File 'lib/ruzzy.rb', line 27

def dummy
  fuzz(->(data) { dummy_test_one_input(data) })
end

.dummy_test_one_input(data) ⇒ Object

# File 'lib/ruzzy.rb', line 18

def dummy_test_one_input(data)
  # This 'require' depends on LD_PRELOAD, so it's placed inside the function
  # scope. This allows us to access EXT_PATH for LD_PRELOAD and not have a
  # circular dependency.
  require 'dummy/dummy'

  c_dummy_test_one_input(data)
end

.fuzz(test_one_input, args = DEFAULT_ARGS) ⇒ Object

# File 'lib/ruzzy.rb', line 14

def fuzz(test_one_input, args = DEFAULT_ARGS)
  c_fuzz(test_one_input, args)
end

.trace(harness_script) ⇒ Object

# File 'lib/ruzzy.rb', line 31

def trace(harness_script)
  harness_path = Pathname.new(harness_script)

  # Mimic require_relative. If harness script is provided as an absolute path,
  # then use that. If not, then assume the script is in the same directory as
  # as the tracer script, i.e. the caller.
  if !harness_path.absolute?
    caller_path = Pathname.new(caller_locations.first.path)
    harness_path = (caller_path.parent / harness_path).realpath
  end

  c_trace(harness_path.to_s)
end