On 26/01/17 14:33, Jan Beulich wrote:
+return X86EMUL_EXCEPTION;
+else
+{
+if ( input.data[data_index] > 0xc )
+rc = X86EMUL_EXCEPTION;
+else if ( input.data[data_index] > 0x8 )
+rc = X86EMUL_UNHANDLEABLE;
>>
>>> On 26.01.17 at 13:02, wrote:
> On 26/01/17 11:28, Jan Beulich wrote:
> On 25.01.17 at 16:44, wrote:
>>> --- a/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
>>> +++ b/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
>>> @@ -16,26 +16,75 @@
>>>
>>> #include
On 26/01/17 11:28, Jan Beulich wrote:
On 25.01.17 at 16:44, wrote:
>> --- a/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
>> +++ b/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
>> @@ -16,26 +16,75 @@
>>
>> #include "x86_emulate.h"
>>
>> -static unsigned
>>> On 25.01.17 at 16:44, wrote:
> --- a/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
> +++ b/tools/fuzz/x86_instruction_emulator/x86-insn-emulator-fuzzer.c
> @@ -16,26 +16,75 @@
>
> #include "x86_emulate.h"
>
> -static unsigned char data[4096];
> +#include "../../../xen/inc
Provide the fuzzer with more ops, and more sophisticated input
structure.
Based on a patch originally written by Andrew and George.
Signed-off-by: Andrew Cooper
Signed-off-by: George Dunlap
Signed-off-by: Wei Liu
---
.../x86-insn-emulator-fuzzer.c | 653 +++
