From 364ad1502f0d9f4abcb42ab9ff5d5fbb84d9c576 Mon Sep 17 00:00:00 2001
From: Dmitry Vyukov <dvyukov@google.com>
Date: Mon, 14 May 2018 15:30:13 +0200
Subject: executor: terminate on corrupted coverage

New measures still does not help against fuzzer producing
fake corrupted coverage.
Try to terminate instantly as we detect bad coverage.
---
 executor/executor.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'executor')

diff --git a/executor/executor.h b/executor/executor.h
index c12f4f169..eb8474e4d 100644
--- a/executor/executor.h
+++ b/executor/executor.h
@@ -500,7 +500,7 @@ void write_coverage_signal(thread_t* th, uint32* signal_count_pos, uint32* cover
 	for (uint32 i = 0; i < th->cover_size; i++) {
 		cover_t pc = cover_data[i];
 		if (!cover_check(pc))
-			break;
+			doexit(0);
 		cover_t sig = pc ^ prev;
 		prev = hash(pc);
 		if (dedup(sig))
-- 
cgit mrf-deployment