new alf++ frida bigmap experiment (google#1234)

* new experiment * fix new experiment * new afl++ frida bigmap experiment * add fuzzers * new afl++ frida experiment
n0-traces · Aug 27, 2021 · d620aa9 · d620aa9
1 parent e05ffec
commit d620aa9
Show file tree

Hide file tree

Showing 15 changed files with 23 additions and 14 deletions.
diff --git a/fuzzers/aflplusplus/builder.Dockerfile b/fuzzers/aflplusplus/builder.Dockerfile
@@ -24,7 +24,7 @@ RUN apt-get update && \
 # Download and compile afl++.
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_cmplog/builder.Dockerfile b/fuzzers/aflplusplus_cmplog/builder.Dockerfile
@@ -24,7 +24,7 @@ RUN apt-get update && \
 # Download and compile afl++.
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_dict2file/builder.Dockerfile b/fuzzers/aflplusplus_dict2file/builder.Dockerfile
@@ -24,7 +24,7 @@ RUN apt-get update && \
 # Download and compile afl++.
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_frida/builder.Dockerfile b/fuzzers/aflplusplus_frida/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 
 # Download afl++
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
-    cd /afl && git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    cd /afl && git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_frida_big/builder.Dockerfile b/fuzzers/aflplusplus_frida_big/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 
 # Download afl++
 RUN git clone https://github.com/WorksButNotTested/AFLplusplus.git /afl && \
-    cd /afl && git checkout 8abb16f9b88bc9d30d6860fbeeffd09f7ac4b244
+    cd /afl && git checkout bfaa0b0b37bdee6f7cb1593523cef1502d773867
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_frida_big/fuzzer.py b/fuzzers/aflplusplus_frida_big/fuzzer.py
@@ -47,7 +47,7 @@ def fuzz(input_corpus, output_corpus, target_binary):
     os.environ['AFL_FRIDA_PERSISTENT_CNT'] = "1000000"
     os.environ['AFL_FRIDA_PERSISTENT_HOOK'] = "/out/frida_hook.so"
     os.environ['AFL_PATH'] = "/out"
-    os.environ['AFL_FRIDA_INST_BIGMAP'] = "1"
+    os.environ['AFL_FRIDA_INST_BIGMAP'] = "1073741824"
 
     resource.setrlimit(resource.RLIMIT_CORE,
                        (resource.RLIM_INFINITY, resource.RLIM_INFINITY))

diff --git a/fuzzers/aflplusplus_frida_bigbp/builder.Dockerfile b/fuzzers/aflplusplus_frida_bigbp/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 
 # Download afl++
 RUN git clone https://github.com/WorksButNotTested/AFLplusplus.git /afl && \
-    cd /afl && git checkout 8abb16f9b88bc9d30d6860fbeeffd09f7ac4b244
+    cd /afl && git checkout bfaa0b0b37bdee6f7cb1593523cef1502d773867
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_frida_bigbp/fuzzer.py b/fuzzers/aflplusplus_frida_bigbp/fuzzer.py
@@ -47,7 +47,7 @@ def fuzz(input_corpus, output_corpus, target_binary):
     os.environ['AFL_FRIDA_PERSISTENT_CNT'] = "1000000"
     os.environ['AFL_FRIDA_PERSISTENT_HOOK'] = "/out/frida_hook.so"
     os.environ['AFL_PATH'] = "/out"
-    os.environ['AFL_FRIDA_INST_BIGMAP'] = "1"
+    os.environ['AFL_FRIDA_INST_BIGMAP'] = "1073741824"
     os.environ['AFL_FRIDA_INST_NO_PREFETCH_BACKPATCH'] = "1"
     os.environ['AFL_FRIDA_STALKER_IC_ENTRIES'] = "2"
 

diff --git a/fuzzers/aflplusplus_frida_bp/builder.Dockerfile b/fuzzers/aflplusplus_frida_bp/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 
 # Download afl++
 RUN git clone https://github.com/WorksButNotTested/AFLplusplus.git /afl && \
-    cd /afl && git checkout 8abb16f9b88bc9d30d6860fbeeffd09f7ac4b244
+    cd /afl && git checkout bfaa0b0b37bdee6f7cb1593523cef1502d773867
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_frida_plain/builder.Dockerfile b/fuzzers/aflplusplus_frida_plain/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 
 # Download afl++
 RUN git clone https://github.com/WorksButNotTested/AFLplusplus.git /afl && \
-    cd /afl && git checkout 8abb16f9b88bc9d30d6860fbeeffd09f7ac4b244
+    cd /afl && git checkout bfaa0b0b37bdee6f7cb1593523cef1502d773867
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_introspection/builder.Dockerfile b/fuzzers/aflplusplus_introspection/builder.Dockerfile
@@ -24,7 +24,7 @@ RUN apt-get update && \
 # Download and compile afl++.
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_introspection2/builder.Dockerfile b/fuzzers/aflplusplus_introspection2/builder.Dockerfile
@@ -24,7 +24,7 @@ RUN apt-get update && \
 # Download and compile afl++.
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_optimal/builder.Dockerfile b/fuzzers/aflplusplus_optimal/builder.Dockerfile
@@ -22,7 +22,7 @@ RUN apt-get update && \
 # Download afl++
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
     cd /afl && \
-    git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/fuzzers/aflplusplus_qemu/builder.Dockerfile b/fuzzers/aflplusplus_qemu/builder.Dockerfile
@@ -26,7 +26,7 @@ RUN cd / && wget https://github.com/ninja-build/ninja/releases/download/v1.10.1/
 
 # Download afl++
 RUN git clone https://github.com/AFLplusplus/AFLplusplus.git /afl && \
-    cd /afl && git checkout 9e2a94532b7fd5191de905a8464176114ee7d258
+    cd /afl && git checkout e25f7cefdc796e2e52f53388492d476c52d3e251
 
 # Build afl++ without Python support as we don't need it.
 # Set AFL_NO_X86 to skip flaky tests.

diff --git a/service/experiment-requests.yaml b/service/experiment-requests.yaml
@@ -45,6 +45,15 @@
     - cfctx_params_2mb
     - cfctx_params_4mb
 
+- experiment: 2021-08-26-aflpp
+  description: "afl++ frida bigmap"
+  fuzzers:
+    - aflplusplus_frida_big
+    - aflplusplus_frida_bigbp
+    - aflplusplus_frida_bp
+    - aflplusplus_frida_plain
+    - aflplusplus_qemu
+
 - experiment: 2021-08-24-aflpp
   description: "afl++ frida bigmap"
   fuzzers: