More fuzzer notes

author: Jay Berkenbilt <ejb@ql.org> 2019-08-29 03:47:03 +0200
committer: Jay Berkenbilt <ejb@ql.org> 2019-08-29 05:06:32 +0200
commit: bb3ae14f04e3d80992ae05de318e0ec7774fdedd (patch)
tree: 4b8765b5e52ff714175294409a2f91967657caca /README-maintainer
parent: 47a38a942d34a65524dca2e1255c1b4ba02d7eb6 (diff)
download: qpdf-bb3ae14f04e3d80992ae05de318e0ec7774fdedd.tar.zst
1 files changed, 9 insertions, 1 deletions
diff --git a/README-maintainer b/README-maintainer
index 6ae3400f..e31d036b 100644
--- a/README-maintainer
+++ b/README-maintainer
@@ -27,6 +27,8 @@ Memory checks:
 
 GOOGLE OSS-FUZZ
 
+* See ../misc/fuzz (not in repo) for unfixed, downloaded fuzz test cases
+
 * qpdf project: https://github.com/google/oss-fuzz/tree/master/projects/qpdf
 
 * To test locally, see https://github.com/google/oss-fuzz/tree/master/docs/,
@@ -38,11 +40,17 @@ GOOGLE OSS-FUZZ
   from a qpdf fork/branch rather than qpdf/master.
 
   python infra/helper.py build_image --pull qpdf
-  python infra/helper.py build_fuzzers qpdf
+  python infra/helper.py build_fuzzers [ --sanitizer memory|undefined|address qpdf
   python infra/helper.py check_build qpdf
   python infra/helper.py build_fuzzers --sanitizer coverage qpdf
   python infra/helper.py coverage qpdf
 
+  To reproduce a test case, build with the correct sanitizer, then run
+
+  python infra/helper.py reproduce qpdf fuzzer testcase
+
+  where fuzzer is the fuzzer used in the crash.
+
   The fuzzer is in build/out/qpdf. It can be run with a directory as
   an argument to run against files in a directory. You can use
author	Jay Berkenbilt <ejb@ql.org>	2019-08-29 03:47:03 +0200
committer	Jay Berkenbilt <ejb@ql.org>	2019-08-29 05:06:32 +0200
commit	bb3ae14f04e3d80992ae05de318e0ec7774fdedd (patch)
tree	4b8765b5e52ff714175294409a2f91967657caca /README-maintainer
parent	47a38a942d34a65524dca2e1255c1b4ba02d7eb6 (diff)
download	qpdf-bb3ae14f04e3d80992ae05de318e0ec7774fdedd.tar.zst