diff options
| author | Andrea Fioraldi <andreafioraldi@gmail.com> | 2019-08-28 19:07:19 +0200 | 
|---|---|---|
| committer | Andrea Fioraldi <andreafioraldi@gmail.com> | 2019-08-28 19:07:19 +0200 | 
| commit | 892513708bb5f68b15610fe0c74b892d4421c8cd (patch) | |
| tree | 85785908c7f0a81e19e9d75c9fff74efac92373f | |
| parent | 733c8e4c349562fd02d0238be486ecbdf0640fd0 (diff) | |
| download | afl++-892513708bb5f68b15610fe0c74b892d4421c8cd.tar.gz | |
solved MAP_SIZE overflow
| -rw-r--r-- | qemu_mode/patches/afl-qemu-cpu-translate-inl.h | 2 | ||||
| -rw-r--r-- | unicorn_mode/patches/afl-unicorn-cpu-translate-inl.h | 2 | 
2 files changed, 2 insertions, 2 deletions
| diff --git a/qemu_mode/patches/afl-qemu-cpu-translate-inl.h b/qemu_mode/patches/afl-qemu-cpu-translate-inl.h index f85a86d7..c0caeefc 100644 --- a/qemu_mode/patches/afl-qemu-cpu-translate-inl.h +++ b/qemu_mode/patches/afl-qemu-cpu-translate-inl.h @@ -134,7 +134,7 @@ static void afl_gen_compcov(target_ulong cur_loc, TCGv_i64 arg1, TCGv_i64 arg2, } cur_loc = (cur_loc >> 4) ^ (cur_loc << 8); - cur_loc &= MAP_SIZE - 1; + cur_loc &= MAP_SIZE - 7; if (cur_loc >= afl_inst_rms) return; diff --git a/unicorn_mode/patches/afl-unicorn-cpu-translate-inl.h b/unicorn_mode/patches/afl-unicorn-cpu-translate-inl.h index 9c7a14dc..7e8f47c9 100644 --- a/unicorn_mode/patches/afl-unicorn-cpu-translate-inl.h +++ b/unicorn_mode/patches/afl-unicorn-cpu-translate-inl.h @@ -42,7 +42,7 @@ static void afl_gen_compcov(TCGContext *s, uint64_t cur_loc, TCGv_i64 arg1, return; cur_loc = (cur_loc >> 4) ^ (cur_loc << 8); - cur_loc &= MAP_SIZE - 1; + cur_loc &= MAP_SIZE - 7; if (cur_loc >= s->uc->afl_inst_rms) return; | 
