dislocator readme

author: Andrea Fioraldi <andreafioraldi@gmail.com> 2020-02-01 19:18:20 +0100
committer: Andrea Fioraldi <andreafioraldi@gmail.com> 2020-02-01 19:18:20 +0100
commit: 2b50f6e0f8ecd12f62900f1209a6bc5881952e67 (patch)
tree: 021a005dda43da99bdad886104c9e224e81ef5e5
parent: 214868777f98531641a3fe041cc6bbbd6dd3fae1 (diff)
download: afl++-2b50f6e0f8ecd12f62900f1209a6bc5881952e67.tar.gz
1 files changed, 6 insertions, 0 deletions
diff --git a/libdislocator/README.dislocator.md b/libdislocator/README.dislocator.md
index 77626901..d2d71606 100644
--- a/libdislocator/README.dislocator.md
+++ b/libdislocator/README.dislocator.md
@@ -25,8 +25,14 @@ heap-related security bugs in several ways:
   - It checks for calloc() overflows and can cause soft or hard failures
     of alloc requests past a configurable memory limit (AFL_LD_LIMIT_MB,
     AFL_LD_HARD_FAIL).
+
   - Optionally, in platforms supporting it, huge pages can be used by passing
     USEHUGEPAGE=1 to make.
+  
+  - Size alignment to `sizeof(void*)` can be enforced with AFL_ALIGNED_ALLOC=1.
+    In this case, a tail canary is inserted in the padding bytes at the end
+    of the allocated zone. This reduce the ability of libdislocator to detect
+    off-by-one bugs but also it make slibdislocator compliant to the C standard.
 
 Basically, it is inspired by some of the non-default options available for the
 OpenBSD allocator - see malloc.conf(5) on that platform for reference. It is
author	Andrea Fioraldi <andreafioraldi@gmail.com>	2020-02-01 19:18:20 +0100
committer	Andrea Fioraldi <andreafioraldi@gmail.com>	2020-02-01 19:18:20 +0100
commit	2b50f6e0f8ecd12f62900f1209a6bc5881952e67 (patch)
tree	021a005dda43da99bdad886104c9e224e81ef5e5
parent	214868777f98531641a3fe041cc6bbbd6dd3fae1 (diff)
download	afl++-2b50f6e0f8ecd12f62900f1209a6bc5881952e67.tar.gz