WorksButNotTested

> @WorksButNotTested the interval tree's root of the mappings is of type `IntervalTreeRoot` and is not big enough to be casted to a `MapInfo`. So, [this](https://github.com/AFLplusplus/qemu-libafl-bridge/blob/de3e3f15eeb8f81c7e68e70c82cb57d0331b1fb9/linux-user/syscall.c#L13687) memory access is going...

Only think I can think is I have glued the components together wrong? The `baby_fuzzer_minimizing` I was copying seems to construct a `state` without any `feedback` [here](https://github.com/AFLplusplus/LibAFL/blob/31f466979444bce2aa920d05e2bf0be0af96b4b5/fuzzers/baby_fuzzer_minimizing/src/main.rs#L114C17-L114C17) and then an...

I've managed to copy the `baby_fuzzer_minimizing` more closely, and now it only seems to generate one output for each input. But it doesn't seem to actually minimize anything?! I modified...

I have raised this ticket against `frida-rust`. https://github.com/frida/frida-rust/issues/81. If we patch capstone to be aware of FRIDA, it feels like we create a bi-directional dependency between the two. e.g capstone...

This seems to be alleviated by setting... ``` CC= \ "clang" \ "-target" \ "x86_64-apple-macos10.9" CXX= \ "clang++" \ "-target" \ "x86_64-apple-macos10.9" ``` I copied this from the build system...

For comparison, the approach used by afl-clang is to add instructions to the code at each branch and to have each update the bitmap using a random number as it's...

I guess you wouldn't want to rely upon being able to rebuild the original binary with `-fno-pie` though? I guess best case would be that the process can make use...

Yeah of course. Just you can't `dlopen` an executable, but you can use `ldpreload` on them. PIE "executables" may be ok as they are actually shared libraries anyway. Just not...

Does QEMU serialize the execution of helpers between threads?

Ah gotcha, so map access is concurrent (and possibly racy if two threads happen to update the same map offset at the same time), but the issue is that each...