does DynamoRIO also works on win10+ARM platform?

[guilanl]

Hi,

In my previous issues: https://github.com/googleprojectzero/winafl/issues/225 I managed to run winafl successfully on x64 platform.

But actually my target platform is (windows 10+ Qualcomm ARM64), so I copied everything to the windows arm device and ran again.

When I ran the following command in DynamoRIO-Windows-7.1.0-1\bin32 directory, drrun.exe -c winafl.dll -debug -target_module test_main.exe -target_offset 0x118B0 -fuzz_iterations 10 -nargs 2 -- test_main.exe myfile.txt Nothing print out.

When I ran my program alone: test_main.exe myfile.txt It works as expected.

When I try to ran drrun.exe without arguments: drrun.exe It could print out the usage info.

I don't know what is the problem here.

Do you know if DynamoRIO-Windows-7.1.0-1 also works on windows-arm devices? Do you know the "-target_offset" would change on x64 against arm platform?

Thanks for your help.

Guilan

[ivanfratric]

DynamoRIO itself has support for AArch64 since version 7.0 RC1 (see https://github.com/DynamoRIO/dynamorio/releases/tag/release_7_0_0_rc1). However, WinAFL client is only written with x86 and x64 in mind, and would need to be modified (specifically, parts related to instrumenting basic blocks, calling conventions, possibly other places) to work correctly on ARM.

[guilanl]

Hi,

Seems the AArch64 version of DynamoRIO have only Linux version?

[ifratric]

Ah, ok then, I didn't look into it much.

[guilanl]

hi @ifratric ,

Another quesiton about this issue: Can WinAFL work without DynamoRIO? Is there a "dump" mode supported in winafl?

[expend20]

I'm not @ifratric but there are only three instrumentation options: DR, syzygy and IntelPT :)

[guilanl]

Hi @expend20 , Thanks for telling me the instrumentation options. I was asking if winafl could work without instrumentation, do you know that?

[expend20]

Instrumentation gives you coverage, AFL can't effectively work without coverage