NAME

fuzz-harness-generator - Generate fuzzing + corpus-based test harnesses from test schemas

SYNOPSIS

fuzz-harness-generator [-r] [-o output_file] input.yaml
fuzz-harness-generator --dry-run input.yaml
fuzz-harness-generator --replay-corpus schemas/corpus/ -o t/fuzz_replay.t
fuzz-harness-generator --replay-corpus schemas/corpus/translate.json -o t/fuzz_replay.t

DESCRIPTION

This tool generates a test file that fuzzes and validates a target module's function or method, using both randomized fuzz cases and a static corpus cases (Perl or YAML).

It can also generate regression test files from corpus JSON files previously written by extract-schemas --fuzz, using --replay-corpus.

A starter input.yaml can be created using extract-schemas which is also in this package.

OPTIONS

--help

Show this help.

--input

The input configuration file

--output

The (optional) output file.

--dry-run

Validate the input configuration and schema extraction without writing any output files or running tests.

--run

Call prove on the output file.

fuzz-harness-generator -r t/conf/data_text_append.conf will, therefore, dynamically create and run tests on the append method of Data::Text

--replay-corpus PATH

Instead of generating a fuzz harness, generate a regression test file from one or more corpus JSON files previously written by extract-schemas --fuzz.

PATH may be either:

A single corpus file, e.g. schemas/corpus/translate.json
A directory, e.g. schemas/corpus/ — all *.json files in that directory will be included

The generated test file contains one failing test per bug recorded in the corpus. Each test calls the target method with the exact input that previously caused a crash and expects it not to die. Tests will be red until the underlying bug is fixed, at which point they go green and stay green — acting as permanent regression tests.

Only corpus entries with recorded bugs are included. Clean corpus entries (inputs that did not cause a bug) are ignored.

--version

Prints the version of App::Test::Generator

REPLAY CORPUS WORKFLOW

Step 1: discover bugs with extract-schemas

extract-schemas --fuzz lib/MyModule.pm

This runs coverage-guided fuzzing and writes any discovered bugs to schemas/corpus/method.json.

Step 2: generate a regression test file

fuzz-harness-generator --replay-corpus schemas/corpus/ -o t/fuzz_replay.t

This reads every *.json file in schemas/corpus/, extracts the recorded bugs, and generates a t/fuzz_replay.t that calls each buggy input and expects it not to die.

Step 3: run the regression tests

prove -l t/fuzz_replay.t

Tests will be red for each unfixed bug. Fix the underlying code, re-run prove, and the tests go green.

Step 4: commit both files

Commit schemas/corpus/ and t/fuzz_replay.t to version control. The corpus ensures future fuzz runs build on past discoveries; the replay test ensures fixed bugs stay fixed.

Keeping the replay file up to date

Re-run fuzz-harness-generator --replay-corpus whenever new bugs are discovered or old ones are fixed and removed from the corpus. The generated file should not be edited by hand.

AUTHOR

Nigel Horne

1 POD Error

The following errors were encountered while parsing the POD:

Around line 70:: Non-ASCII character seen before =encoding in '—'. Assuming UTF-8

To install App::Test::Generator, copy and paste the appropriate command in to your terminal.

cpanm

cpanm App::Test::Generator

CPAN shell

perl -MCPAN -e shell
install App::Test::Generator

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)