qemu readme reserved va trick

author: Andrea Fioraldi <andreafioraldi@gmail.com> 2019-11-27 16:16:17 +0100
committer: Andrea Fioraldi <andreafioraldi@gmail.com> 2019-11-27 16:16:17 +0100
commit: 8c0d247126803cc255b0898969f54b7c635dbcac (patch)
tree: 331869e822c506567f3d7f9df0741a2d183fcae6
parent: 7f0fe3b7d2f5d4ad4698e31e1f4218c14ee11c03 (diff)
download: afl++-8c0d247126803cc255b0898969f54b7c635dbcac.tar.gz
1 files changed, 5 insertions, 0 deletions
diff --git a/qemu_mode/README.md b/qemu_mode/README.md
index c88c1e41..87027f63 100644
--- a/qemu_mode/README.md
+++ b/qemu_mode/README.md
@@ -46,6 +46,11 @@ You can also compile statically-linked binaries by setting STATIC=1. This
 can be useful when compiling QEMU on a different system than the one you're
 planning to run the fuzzer on and is most often used with the HOST variable.
 
+Note: when targetting the i386 architecture, on some bianries the forkserver
+handshake may fail due to the lack of reversed memory. Fix it with
+
+export QEMU_RESERVED_VA=0x1000000
+
 Note: if you want the QEMU helper to be installed on your system for all
 users, you need to build it before issuing 'make install' in the parent
 directory.
author	Andrea Fioraldi <andreafioraldi@gmail.com>	2019-11-27 16:16:17 +0100
committer	Andrea Fioraldi <andreafioraldi@gmail.com>	2019-11-27 16:16:17 +0100
commit	8c0d247126803cc255b0898969f54b7c635dbcac (patch)
tree	331869e822c506567f3d7f9df0741a2d183fcae6
parent	7f0fe3b7d2f5d4ad4698e31e1f4218c14ee11c03 (diff)
download	afl++-8c0d247126803cc255b0898969f54b7c635dbcac.tar.gz