Comments (3)
robertswiecki
commented on May 3, 2024
1
It's only somewhat possible. The coverage dump is performed by the kernel in an asynchronous manner, i.e. we know only that some function (address range) was reached, and we could create a crash, but the crash itself would not be exactly in this function, because the process could be soemwhere else currently.
If this is ok with your plans (i.e. crash the process, but only knowing that it reached some function in the past), we could add sth like that.
Otherwise, maybe you can rewrite the binary, and simply add "int $3" everywhere in the function (instead of regular code). honggfuzz will see it as SIGTRAP, and will dump the crash.
from honggfuzz.
Manouchehri
commented on May 3, 2024
@robertswiecki Thanks for your response. =)
That was my first thought too (except with SIGSEGV, totally forgot about SIGTRAP); I thought constantly rewriting the binary might add a lot of overhead though. Do I have to completely shut down honggfuzz or can I get away with modifying the binary live?
from honggfuzz.
robertswiecki
commented on May 3, 2024
Inserting int3 is probably easy. What is more, you can probably try to insert a debug register with ptrace - then when the code will reach it, you'll receive SIHTRAP. But you have only 4 debug regs in x86.
from honggfuzz.
Related Issues (20)
- honggfuzz seems to crash on Fedora 36 HOT 3
- Build Error on Linux with libbfd-2.38 HOT 2
- Some fuzz targets instrumented with honggfuzz seem to crash sometimes HOT 24
- honggfuzz seems to pass files with no hard links HOT 5
- issue with building honggfuzz on debian 10.7 -- error related to bfd? HOT 1
- Fuzzing targets that trigger and handle signals like SIGILL as part of normal operations HOT 1
- honggfuzz does not support file as input? HOT 2
- Current git doesn't compile HOT 2
- Does not support Apple Silicon HOT 10
- Undefined symbols for architecture arm64: "_OBJC_CLASS_$_CrashReport" HOT 6
- arch_prepareParentAfterFork():204 Couldn't attach to p id=XXXX
- _HF_DISASM_4_ARGS not reliable HOT 2
- Compile error on WSL2 Ubuntu HOT 12
- ubuntu18和ubuntu22都无法编译honggfuzz HOT 2
- Linker-related error: error adding symbols: file format not recognized
- Hongfuzz returns error when executed through ssh HOT 1
- How to restart fuzz without losing progress? HOT 1
- strlcat and strlcpy break Samba configure HOT 3
- Unable to compile due to bfd.c HOT 1
- Build errors on 32-bit architectures [-Werror=format=] HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from honggfuzz.