Skip to content

Commit bb92bb3

Browse files
ryanofskyryanofsky
committed
Merge bitcoin/bitcoin#32206: doc: Add fuzz based coverage report generation
7677fde Add fuzz test coverage report generation (Prabhat Verma) Pull request description: Followup from [comment 1 31933](bitcoin/bitcoin#31933 (review)) and [comment 2 31933](bitcoin/bitcoin#31933 (review)) , have added the instructions to generate coverage report for fuzz tests. ACKs for top commit: maflcko: lgtm ACK 7677fde mabu44: Tested ACK 7677fde Tree-SHA512: b4883ec41e272443fc9fc97dce3fb0f05871ce5ddc07d97f4cf7e1d28506dc892324b42005387a2f5a844b27827785a68d10881067414fe93fd4fbb9645f765d
2 parents 021b4f7 + 7677fde commit bb92bb3

File tree

1 file changed

+41
-0
lines changed

1 file changed

+41
-0
lines changed

doc/developer-notes.md

Lines changed: 41 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -575,6 +575,47 @@ llvm-cov show \
575575
576576
The generated coverage report can be accessed at `build/coverage_report/index.html`.
577577

578+
#### Compiling for Fuzz Coverage
579+
580+
```shell
581+
cmake -B build \
582+
-DCMAKE_C_COMPILER="clang" \
583+
-DCMAKE_CXX_COMPILER="clang++" \
584+
-DCMAKE_C_FLAGS="-fprofile-instr-generate -fcoverage-mapping" \
585+
-DCMAKE_CXX_FLAGS="-fprofile-instr-generate -fcoverage-mapping" \
586+
-DBUILD_FOR_FUZZING=ON
587+
cmake --build build # Use "-j N" here for N parallel jobs.
588+
```
589+
590+
Running fuzz tests with one or more targets
591+
592+
```shell
593+
# For single target run with the target of choice
594+
LLVM_PROFILE_FILE="$(pwd)/build/raw_profile_data/txorphan.profraw" ./build/test/fuzz/test_runner.py ../qa-assets/fuzz_corpora txorphan
595+
# If running for multiple targets
596+
LLVM_PROFILE_FILE="$(pwd)/build/raw_profile_data/%m_%p.profraw" ./build/test/fuzz/test_runner.py ../qa-assets/fuzz_corpora
597+
# Merge profiles
598+
llvm-profdata merge build/raw_profile_data/*.profraw -o build/coverage.profdata
599+
```
600+
601+
Generate report:
602+
603+
```shell
604+
llvm-cov show \
605+
--object=build/bin/fuzz \
606+
-Xdemangler=llvm-cxxfilt \
607+
--instr-profile=build/coverage.profdata \
608+
--ignore-filename-regex="src/crc32c/|src/leveldb/|src/minisketch/|src/secp256k1/|src/test/" \
609+
--format=html \
610+
--show-instantiation-summary \
611+
--show-line-counts-or-regions \
612+
--show-expansions \
613+
--output-dir=build/coverage_report \
614+
--project-title="Bitcoin Core Fuzz Coverage Report"
615+
```
616+
617+
The generated coverage report can be accessed at `build/coverage_report/index.html`.
618+
578619
### Performance profiling with perf
579620

580621
Profiling is a good way to get a precise idea of where time is being spent in

0 commit comments

Comments
 (0)