History

Disabling qemu dependecies for qemu fullsystem (#737 )

* Disabling qemu dependecies by default

* Adding full emulation_mode support

* Removing usermode from libafl_qemu default features

* Fixing refactoring

* Fixing typo in systemmode

* Fixing clippy:needless-borrow

* Mark libafl_load/save_qemu_snapshot as unused + cpu_reset

* Fixing clippy::needless-borrow

* Fixing needless-borrow yet again

* reset_cpu -> cpu_reset

* Fixing github workflow yet again

* Fixing clippy::uninlined-format-args

* Adding current libafl_qemu_bridge

Co-authored-by: Andrea Fioraldi <andreafioraldi@gmail.com>

2022-10-25 14:16:11 +02:00

corpus

Qemu arm launcher (#708 )

2022-08-02 11:46:24 +02:00

src

Qemu arm launcher (#708 )

2022-08-02 11:46:24 +02:00

.gitignore

Qemu arm launcher (#708 )

2022-08-02 11:46:24 +02:00

Cargo.toml

Disabling qemu dependecies for qemu fullsystem (#737 )

2022-10-25 14:16:11 +02:00

harness.cc

Qemu arm launcher (#708 )

2022-08-02 11:46:24 +02:00

Makefile.toml

Token mutations: set MutationResult for CmpValues::Bytes (#838 )

2022-10-14 13:03:57 +02:00

README.md

Qemu arm launcher (#708 )

2022-08-02 11:46:24 +02:00

README.md

LibAFL with launcher for libpng with qemu arm32 in usermode

This folder contains an example fuzzer for libpng using the qemu emulator in arm32 usermode. To show off crash detection, we added an optional undefined instruction to the harness. Everything has been tested on Linux.

In contrast to the normal libfuzzer libpng example, this uses the launcher feature, that automatically spawns n child processes, and binds them to a free core.

Prerequisites

sudo apt install gcc-arm-linux-gnueabi g++-arm-linux-gnueabi

Run

cargo make run

Run with artifical crash

cargo make run_crashing