diff options
| author | vanhauser-thc <vh@thc.org> | 2021-04-14 18:36:22 +0200 |
|---|---|---|
| committer | vanhauser-thc <vh@thc.org> | 2021-04-14 18:36:22 +0200 |
| commit | f0d300b32a8a5b3adccc8209c151382244135082 (patch) | |
| tree | 01c547dc01460bdb1eb85dd4d123d5601d08f68b | |
| parent | eb3aa2a227dd9cffc512ff3316aad0049ffe04d2 (diff) | |
| download | afl++-f0d300b32a8a5b3adccc8209c151382244135082.tar.gz | |
add readme
| -rw-r--r-- | utils/aflpp_driver/README.md | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/utils/aflpp_driver/README.md b/utils/aflpp_driver/README.md new file mode 100644 index 00000000..2c339d12 --- /dev/null +++ b/utils/aflpp_driver/README.md @@ -0,0 +1,25 @@ +# afl++ drivers + +## aflpp_driver + +aflpp_driver is used to compile directly libfuzzer `LLVMFuzzerTestOneInput()` +targets. + +Just do `afl-clang-fast++ -o fuzz fuzzer_harness.cc libAFLDriver.a [plus required linking]`. + +You can also sneakily do this little trick: +If this is the clang compile command to build for libfuzzer: + `clang++ -o fuzz -fsanitize=fuzzer fuzzer_harness.cc -lfoo` +then just switch `clang++` with `afl-clang-fast++` and our compiler will +magically insert libAFLDriver.a :) + + +## aflpp_qemu_driver + +aflpp_qemu_driver is used for libfuzzer `LLVMFuzzerTestOneInput()` targets that +are to be fuzzed in qemu_mode. So we compile them with clang/clang++, without +-fsantize=fuzzer or afl-clang-fast, and link in libAFLQemuDriver.a: + +`clang++ -o fuzz fuzzer_harness.cc libAFLQemuDriver.a [plus required linking]`. + +Then just do `AFL_PRELOAD=/path/to/aflpp_qemu_driver_hook.so afl-fuzz -Q ... -- ./fuzz` |