Accepting request 875949 from devel:tools
- update to 3.10c
- Mac OS ARM64 support
- Android support fixed and updated by Joey Jiaojg - thanks!
- New selective instrumentation option with __AFL_COVERAGE_* commands
to be placed in the source code.
Check out instrumentation/README.instrument_list.md
- afl-fuzz
- Making AFL_MAP_SIZE (mostly) obsolete - afl-fuzz now learns on
start the target map size
- upgraded cmplog/redqueen: solving for floating point, solving
transformations (e.g. toupper, tolower, to/from hex, xor,
arithmetics, etc.). This is costly hence new command line option
`-l` that sets the intensity (values 1 to 3). Recommended is 2.
- added `AFL_CMPLOG_ONLY_NEW` to not use cmplog on initial seeds
from `-i` or resumes (these have most likely already been done)
- fix crash for very, very fast targets+systems (thanks to mhlakhani
for reporting)
- on restarts (`-i`)/autoresume (AFL_AUTORESUME) the stats are now
reloaded and used, thanks to Vimal Joseph for this patch!
- changed the meaning of '+' of the '-t' option, it now means to
auto-calculate the timeout with the value given being the max
timeout. The original meaning of skipping timeouts instead of
abort is now inherent to the -t option.
- if deterministic mode is active (`-D`, or `-M` without `-d`) then
we sync after every queue entry as this can take very long time
otherwise
- added minimum SYNC_TIME to include/config.h (30 minutes default)
- better detection if a target needs a large shared map
- fix for `-Z`
- fixed a few crashes
OBS-URL: https://build.opensuse.org/request/show/875949
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/afl?expand=0&rev=56
This commit is contained in:
Richard Brown
Git OBS Bridge
commit
5049d5294a
@ -1,3 +0,0 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
|
||||||
oid sha256:75a2cd6c9e14d4160defcf4899c6d654eba9ae1aad2b2c850bb165c84ee763bb
|
|
||||||
size 1791416
|
|
||||||
3
3.10c.tar.gz
Normal file
3
3.10c.tar.gz
Normal file
@ -0,0 +1,3 @@
|
|||||||
|
version https://git-lfs.github.com/spec/v1
|
||||||
|
oid sha256:162148cb689565aa3facf63edacf85555fe2403151a0c65479ee9303639bb7f8
|
||||||
|
size 2059632
|
||||||
74
afl.changes
74
afl.changes
@ -1,3 +1,77 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Mon Mar 1 09:43:40 UTC 2021 - Marcus Meissner <meissner@suse.com>
|
||||||
|
|
||||||
|
- update to 3.10c
|
||||||
|
- Mac OS ARM64 support
|
||||||
|
- Android support fixed and updated by Joey Jiaojg - thanks!
|
||||||
|
- New selective instrumentation option with __AFL_COVERAGE_* commands
|
||||||
|
to be placed in the source code.
|
||||||
|
Check out instrumentation/README.instrument_list.md
|
||||||
|
- afl-fuzz
|
||||||
|
- Making AFL_MAP_SIZE (mostly) obsolete - afl-fuzz now learns on
|
||||||
|
start the target map size
|
||||||
|
- upgraded cmplog/redqueen: solving for floating point, solving
|
||||||
|
transformations (e.g. toupper, tolower, to/from hex, xor,
|
||||||
|
arithmetics, etc.). This is costly hence new command line option
|
||||||
|
`-l` that sets the intensity (values 1 to 3). Recommended is 2.
|
||||||
|
- added `AFL_CMPLOG_ONLY_NEW` to not use cmplog on initial seeds
|
||||||
|
from `-i` or resumes (these have most likely already been done)
|
||||||
|
- fix crash for very, very fast targets+systems (thanks to mhlakhani
|
||||||
|
for reporting)
|
||||||
|
- on restarts (`-i`)/autoresume (AFL_AUTORESUME) the stats are now
|
||||||
|
reloaded and used, thanks to Vimal Joseph for this patch!
|
||||||
|
- changed the meaning of '+' of the '-t' option, it now means to
|
||||||
|
auto-calculate the timeout with the value given being the max
|
||||||
|
timeout. The original meaning of skipping timeouts instead of
|
||||||
|
abort is now inherent to the -t option.
|
||||||
|
- if deterministic mode is active (`-D`, or `-M` without `-d`) then
|
||||||
|
we sync after every queue entry as this can take very long time
|
||||||
|
otherwise
|
||||||
|
- added minimum SYNC_TIME to include/config.h (30 minutes default)
|
||||||
|
- better detection if a target needs a large shared map
|
||||||
|
- fix for `-Z`
|
||||||
|
- fixed a few crashes
|
||||||
|
- switched to an even faster RNG
|
||||||
|
- added hghwng's patch for faster trace map analysis
|
||||||
|
- printing suggestions for mistyped `AFL_` env variables
|
||||||
|
- added Rust bindings for custom mutators (thanks @julihoh)
|
||||||
|
- afl-cc
|
||||||
|
- allow instrumenting LLVMFuzzerTestOneInput
|
||||||
|
- fixed endless loop for allow/blocklist lines starting with a
|
||||||
|
comment (thanks to Zherya for reporting)
|
||||||
|
- cmplog/redqueen now also tracks floating point, _ExtInt() + 128bit
|
||||||
|
- cmplog/redqueen can now process basic libc++ and libstdc++
|
||||||
|
std::string comparisons (no position or length type variants)
|
||||||
|
- added support for __afl_coverage_interesting() for LTO and our
|
||||||
|
own PCGUARD (llvm 10.0.1+), read more about this function and
|
||||||
|
selective coverage in instrumentation/README.instrument_list.md
|
||||||
|
- added AFL_LLVM_INSTRUMENT option NATIVE for native clang pc-guard
|
||||||
|
support (less performant than our own), GCC for old afl-gcc and
|
||||||
|
CLANG for old afl-clang
|
||||||
|
- fixed a potential crash in the LAF feature
|
||||||
|
- workaround for llvm bitcast lto bug
|
||||||
|
- workaround for llvm 13
|
||||||
|
- qemuafl
|
||||||
|
- QASan (address sanitizer for Qemu) ported to qemuafl!
|
||||||
|
See qemu_mode/libqasan/README.md
|
||||||
|
- solved some persistent mode bugs (thanks Dil4rd)
|
||||||
|
- solved an issue when dumping the memory maps (thanks wizche)
|
||||||
|
- Android support for QASan
|
||||||
|
- unicornafl
|
||||||
|
- Substantial speed gains in python bindings for certain use cases
|
||||||
|
- Improved rust bindings
|
||||||
|
- Added a new example harness to compare python, c and rust bindings
|
||||||
|
- afl-cmin and afl-showmap now support the -f option
|
||||||
|
- afl_plot now also generates a graph on the discovered edges
|
||||||
|
- changed default: no memory limit for afl-cmin and afl-cmin.bash
|
||||||
|
- warn on any _AFL and __AFL env vars.
|
||||||
|
- set AFL_IGNORE_UNKNOWN_ENVS to not warn on unknown AFL_... env vars
|
||||||
|
- added dummy Makefile to instrumentation/
|
||||||
|
- Updated utils/afl_frida to be 5% faster, 7% on x86_x64
|
||||||
|
- Added `AFL_KILL_SIGNAL` env variable (thanks @v-p-b)
|
||||||
|
- @Edznux added a nice documentation on how to use rpc.statsd with
|
||||||
|
afl++ in docs/rpc_statsd.md, thanks!
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Tue Dec 15 09:18:09 UTC 2020 - Marcus Meissner <meissner@suse.com>
|
Tue Dec 15 09:18:09 UTC 2020 - Marcus Meissner <meissner@suse.com>
|
||||||
|
|
||||||
|
|||||||
6
afl.spec
6
afl.spec
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package afl
|
# spec file for package afl
|
||||||
#
|
#
|
||||||
# Copyright (c) 2020 SUSE LLC
|
# Copyright (c) 2021 SUSE LLC
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -17,12 +17,12 @@
|
|||||||
|
|
||||||
|
|
||||||
Name: afl
|
Name: afl
|
||||||
Version: 3.0c
|
Version: 3.10c
|
||||||
Release: 0
|
Release: 0
|
||||||
Summary: American fuzzy lop is a security-oriented fuzzer
|
Summary: American fuzzy lop is a security-oriented fuzzer
|
||||||
License: Apache-2.0
|
License: Apache-2.0
|
||||||
URL: http://lcamtuf.coredump.cx/afl/
|
URL: http://lcamtuf.coredump.cx/afl/
|
||||||
Source: https://github.com/vanhauser-thc/AFLplusplus/archive/%{version}.tar.gz
|
Source: https://github.com/AFLplusplus/AFLplusplus/archive/%{version}.tar.gz
|
||||||
Source1: afl-rpmlintrc
|
Source1: afl-rpmlintrc
|
||||||
Patch1: afl-3.0c-fix-paths.patch
|
Patch1: afl-3.0c-fix-paths.patch
|
||||||
BuildRequires: gcc-c++
|
BuildRequires: gcc-c++
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user