./devel/afl, American Fuzzy Lop, a fuzzing tool for finding bugs by random input

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 2.51b, Package name: afl-2.51b, Maintainer: pkgsrc-users

American Fuzzy Lop is a brute-force fuzzer coupled with an exceedingly
simple but rock-solid instrumentation-guided genetic algorithm. It
uses an enhanced form of edge coverage to easily detect subtle,
local-scale changes to program control flow, without being bogged
down by complex comparisons between multiple long-winded execution
paths.


Required to run:
[shells/bash]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: ee898c4220e4c374fa3cf5dc1c02fa182bae49b0
RMD160: c9b774d0589e9be94120574045ae94d1633d922c
Filesize: 816.026 KB

Version history: (Expand)


CVS history: (Expand)


   2017-09-04 14:16:42 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.51b.

---------------------------
Version 2.51b (2017-08-30):
---------------------------

  - Made afl-tmin call setsid to prevent glibc traceback junk from showing
    up on the terminal in some distros. Suggested by Jakub Wilk.

---------------------------
Version 2.50b (2017-08-19):
---------------------------

  - Fixed an interesting timing corner case spotted by Jakub Wilk.

  - Addressed a libtokencap / pthreads incompatibility issue. Likewise, spotted
    by Jakub Wilk.

  - Added a mention of afl-kit and Pythia.

  - Added AFL_FAST_CAL.

  - In-place resume now preserves .synced. Suggested by Jakub Wilk.
   2017-08-14 22:49:42 by Thomas Klausner | Files touched by this commit (3) | Package updated
Log message:
Updated afl to 2.49b.

---------------------------
Version 2.49b (2017-07-18):
---------------------------

  - Added AFL_TMIN_EXACT to allow path constraint for crash minimization.

  - Added dates for releases (retroactively for all of 2017).

---------------------------
Version 2.48b (2017-07-17):
---------------------------

  - Added AFL_ALLOW_TMP to permit some scripts to run in /tmp.

  - Fixed cwd handling in afl-analyze (similar to the quirk in afl-tmin).

  - Made it possible to point -o and -f to the same file in afl-tmin.

---------------------------
Version 2.47b (2017-07-14):
---------------------------

  - Fixed cwd handling in afl-tmin. Spotted by Jakub Wilk.

---------------------------
Version 2.46b (2017-07-10):
---------------------------

  - libdislocator now supports AFL_LD_NO_CALLOC_OVER for folks who do not
    want to abort on calloc() overflows.

  - Made a minor fix to libtokencap. Reported by Daniel Stender.

  - Added a small JSON dictionary, inspired on a dictionary done by Jakub Wilk.

---------------------------
Version 2.45b (2017-07-04):
---------------------------

  - Added strstr, strcasestr support to libtokencap. Contributed by
    Daniel Hodson.

  - Fixed a resumption offset glitch spotted by Jakub Wilk.

  - There are definitely no bugs in afl-showmap -c now.
   2017-07-04 10:43:54 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.44b.

--------------
Version 2.44b:
--------------

  - Added a visual indicator of ASAN / MSAN mode when compiling. Requested
    by Jakub Wilk.

  - Added support for afl-showmap coredumps (-c). Suggested by Jakub Wilk.

  - Added LD_BIND_NOW=1 for afl-showmap by default. Although not really useful,
    it reportedly helps reproduce some crashes. Suggested by Jakub Wilk.

  - Added a note about allocator_may_return_null=1 not always working with
    ASAN. Spotted by Jakub Wilk.
   2017-06-19 22:48:20 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.43b.

--------------
Version 2.43b:
--------------

  - Added AFL_NO_ARITH to aid in the fuzzing of text-based formats.
    Requested by Jakub Wilk.
   2017-06-14 14:14:56 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.42b.

Version 2.42b:
--------------

  - Renamed the R() macro to avoid a problem with llvm_mode in the latest
    versions of LLVM. Fix suggested by Christian Holler.
   2017-04-19 14:15:33 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.41b.

--------------
Version 2.41b:
--------------

  - Addressed a major user complaint related to timeout detection. Timing out
    inputs are now binned as "hangs" only if they exceed a far more \ 
generous
    time limit than the one used to reject slow paths.

--------------
Version 2.40b:
--------------

  - Fixed a minor oversight in the insertion strategy for dictionary words.
    Spotted by Andrzej Jackowski.

  - Made a small improvement to the havoc block insertion strategy.

  - Adjusted color rules for "is it done yet?" indicators.
   2017-02-07 13:18:54 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.39b.

--------------
Version 2.39b:
--------------

  - Improved error reporting in afl-cmin. Suggested by floyd.

  - Made a minor tweak to trace-pc-guard support. Suggested by kcc.

  - Added a mention of afl-monitor.

--------------
Version 2.38b:
--------------

  - Added -mllvm -sanitizer-coverage-block-threshold=0 to trace-pc-guard
    mode, as suggested by Kostya Serebryany.

--------------
Version 2.37b:
--------------

  - Fixed a typo. Spotted by Jakub Wilk.

  - Fixed support for make install when using trace-pc. Spotted by
    Kurt Roeckx.

  - Switched trace-pc to trace-pc-guard, which should be considerably
    faster and is less quirky. Kudos to Konstantin Serebryany (and sorry
    for dragging my feet).

    Note that for some reason, this mode doesn't perform as well as
    "vanilla" afl-clang-fast / afl-clang.
   2017-01-16 10:17:19 by Thomas Klausner | Files touched by this commit (2) | Package updated
Log message:
Updated afl to 2.36b.

--------------
Version 2.36b:
--------------

  - Fixed a cosmetic bad free() bug when aborting -S sessions. Spotted
    by Johannes S.

  - Made a small change to afl-whatsup to sort fuzzers by name.

  - Fixed a minor issue with malloc(0) in libdislocator. Spotted by
    Rene Freingruber.

  - Changed the clobber pattern in libdislocator to a slightly more
    reliable one. Suggested by Rene Freingruber.

  - Added a note about THP performance. Suggested by Sergey Davidoff.

  - Added a somewhat unofficial support for running afl-tmin with a
    baseline "mask" that causes it to minimize only for edges that
    are unique to the input file, but not to the "boring" baseline.
    Suggested by Sami Liedes.

  - "Fixed" a getPassName() problem with never versions of clang.
    Reported by Craig Young and several other folks.

  Yep, I know I have a backlog on several other feature requests.
  Stay tuned!