syz-fuzzer: prefer to mutate instead of generate

Currently we generate 1 program per 9 mutations. Do it per 99 mutations. Benchmark shows both coverage increase and corpus reduction: baseline generate100 diff coverage 65467 65569 102 corpus 35423 35363 -60 exec total 5474879 5030990 -443889
author: Dmitry Vyukov <dvyukov@google.com> 2017-01-20 14:38:00 +0100
committer: Dmitry Vyukov <dvyukov@google.com> 2017-01-20 14:56:20 +0100
commit: 1451a9b65d3b4b4bec3840c83c31bfbca35761b2 (patch)
tree: d108f25f41a935d7842e9d3cc3251a84ffd02baa
parent: c4901df5c3ec697876b29d00009fe82386ffe183 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/syz-fuzzer/fuzzer.go b/syz-fuzzer/fuzzer.go
index 07799452c..efd7cf645 100644
--- a/syz-fuzzer/fuzzer.go
+++ b/syz-fuzzer/fuzzer.go
@@ -216,7 +216,7 @@ func main() {
 				}
 
 				corpusMu.RLock()
-				if len(corpus) == 0 || i%10 == 0 {
+				if len(corpus) == 0 || i%100 == 0 {
 					// Generate a new prog.
 					corpusMu.RUnlock()
 					p := prog.Generate(rnd, programLength, ct)
author	Dmitry Vyukov <dvyukov@google.com>	2017-01-20 14:38:00 +0100
committer	Dmitry Vyukov <dvyukov@google.com>	2017-01-20 14:56:20 +0100
commit	1451a9b65d3b4b4bec3840c83c31bfbca35761b2 (patch)
tree	d108f25f41a935d7842e9d3cc3251a84ffd02baa
parent	c4901df5c3ec697876b29d00009fe82386ffe183 (diff)