>It should be possible to turn the qtest process into a test
postprocessor,
OSS-Fuzz doesn't support AFL's preprocessors, but adding support shouldn't
be hard.
>It's much harder to
remove the QEMU process as well and turn it into a TestOneInput function.
Got it. I am not familiar with
Could you clarify what you think the relationship between the qtest
process, QEMU, and afl-fuzz will look like when fuzzing?
Is it something like this:
1. afl-fuzz mutates a buffer, starts a qtest process, and gives the qtest
process the mutated buffer.
2. The qtest process starts a QEMU process
