ExternalVendorCode/AFLplusplus
1
0
Fork 0
mirror of https://github.com/AFLplusplus/AFLplusplus.git synced 2025-06-14 11:08:06 +00:00
Code Issues Packages Projects Releases Wiki Activity

ensure one fuzzer sync per cycle, cycle introspection

Browse Source
This commit is contained in:
vanhauser-thc
2021-03-27 12:53:09 +01:00
parent 5ee2dd6bbd
commit 7ca51fab19
4 changed files with 18 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
docs/Changelog.md
View File

@ -18,6 +18,7 @@ sending a mail to <afl-users+subscribe@googlegroups.com>.
to allow replay of non-reproducable crashes, see to allow replay of non-reproducable crashes, see
AFL_PERSISTENT_RECORD in config.h and docs/envs.h AFL_PERSISTENT_RECORD in config.h and docs/envs.h
- default cmplog level (-l) is now 2, better efficiency. - default cmplog level (-l) is now 2, better efficiency.
- ensure one fuzzer sync per cycle
- afl-cc: - afl-cc:
- Removed InsTrim instrumentation as it is not as good as PCGUARD - Removed InsTrim instrumentation as it is not as good as PCGUARD

1
include/afl-fuzz.h
View File

@ -572,6 +572,7 @@ typedef struct afl_state {
blocks_eff_select, /* Blocks selected as fuzzable */ blocks_eff_select, /* Blocks selected as fuzzable */
start_time, /* Unix start time (ms) */ start_time, /* Unix start time (ms) */
last_sync_time, /* Time of last sync */ last_sync_time, /* Time of last sync */
last_sync_cycle, /* Cycle no. of the last sync */
last_path_time, /* Time for most recent path (ms) */ last_path_time, /* Time for most recent path (ms) */
last_crash_time, /* Time for most recent crash (ms) */ last_crash_time, /* Time for most recent crash (ms) */
last_hang_time; /* Time for most recent hang (ms) */ last_hang_time; /* Time for most recent hang (ms) */

1
src/afl-fuzz-run.c
View File

@ -712,6 +712,7 @@ void sync_fuzzers(afl_state_t *afl) {
if (afl->foreign_sync_cnt) read_foreign_testcases(afl, 0); if (afl->foreign_sync_cnt) read_foreign_testcases(afl, 0);
afl->last_sync_time = get_cur_time(); afl->last_sync_time = get_cur_time();
afl->last_sync_cycle = afl->queue_cycle;
} }

22
src/afl-fuzz.c
View File

@ -1867,6 +1867,14 @@ int main(int argc, char **argv_orig, char **envp) {
runs_in_current_cycle > afl->queued_paths) || runs_in_current_cycle > afl->queued_paths) ||
(afl->old_seed_selection && !afl->queue_cur))) { (afl->old_seed_selection && !afl->queue_cur))) {
if (unlikely((afl->last_sync_cycle < afl->queue_cycle ||
(!afl->queue_cycle && afl->afl_env.afl_import_first)) &&
afl->sync_id)) {
sync_fuzzers(afl);
}
++afl->queue_cycle; ++afl->queue_cycle;
runs_in_current_cycle = (u32)-1; runs_in_current_cycle = (u32)-1;
afl->cur_skipped_paths = 0; afl->cur_skipped_paths = 0;
@ -1980,6 +1988,13 @@ int main(int argc, char **argv_orig, char **envp) {
} }
#ifdef INTROSPECTION
fprintf(afl->introspection_file,
"CYCLE cycle=%llu cycle_wo_finds=%llu expand_havoc=%u queue=%u\n",
afl->queue_cycle, afl->cycles_wo_finds, afl->expand_havoc,
afl->queued_paths);
#endif
if (afl->cycle_schedules) { if (afl->cycle_schedules) {
/* we cannot mix non-AFLfast schedules with others */ /* we cannot mix non-AFLfast schedules with others */
@ -2031,13 +2046,6 @@ int main(int argc, char **argv_orig, char **envp) {
prev_queued = afl->queued_paths; prev_queued = afl->queued_paths;
if (afl->sync_id && afl->queue_cycle == 1 &&
afl->afl_env.afl_import_first) {
sync_fuzzers(afl);
}
} }
++runs_in_current_cycle; ++runs_in_current_cycle;