nathan comments

Results 13 comments of


                                            nathan

afl++ afl-showmap is passed an invalid option

I do use the AFL++, and build afl-fuzz and FuzzingEngine.a with ./build_afl.bash. After I upload the job, it still has the issue. 发自我的 iPhone 在 2021年4月9日，21:56，Abhishek Arya ***@***.******@***.***>> 写道： We...

afl++ afl-showmap is passed an invalid option

I remove the CMPLOG, SCHEDULER and MOPT options locally. ``` self.remove_arg(showmap_args, constants.CMPLOG_LEVEL_FLAG) self.remove_arg(showmap_args, constants.SCHEDULER_FLAG) self.remove_arg(showmap_args, constants.MOPT_FLAG) ```

AFL/AFL++ issues: please post here

Some details about the issue3 in https://github.com/google/clusterfuzz/issues/2302. It seems that the AFL++'s crashes will be all ignored, because the runner.fuzzer_stderr is always None. ``` src\python\bot\fuzzers\afl\engine.py#L108 if os.path.exists(testcase_file_path): crash = engine.Crash(testcase_file_path,...

AFL/AFL++ issues: please post here

It detects a crash through the output of afl++. If there are crash files, It eill copy crash files to self.testcase_file_path in function run_afl_fuzz. ``` # Attempt to start the...

AFL/AFL++ issues: please post here

@jonathanmetzman no, I run on ubuntu18.04. >But I think the idea that runner.fuzzer_stderr is always None is wrong. Yep, I find it will get the stderr_file_path from env AFL_DRIVER_STDERR_DUPLICATE_FILENAME and...

AFL/AFL++ issues: please post here

vlun1 ``` char *p = 0; *p = 0x1; ``` vlun2 ``` char m[10]={0}; m[11]=0x1; ``` In case of vlun1, it will raise a SIGSEGV signal. AFL++ catches SIGSEGV signal,...

AFL/AFL++ issues: please post here

I find that the ASAN and MSAN OPTIONS env cause this issue. AFL's env ``` setenv("ASAN_OPTIONS", "abort_on_error=1:" "detect_leaks=0:" "symbolize=0:" "allocator_may_return_null=1", 0); setenv("MSAN_OPTIONS", "exit_code=" STRINGIFY(MSAN_ERROR) ":" "symbolize=0:" "msan_track_origins=0", 0); ``` AFL++'s...