diff options
| author | van Hauser <vh@thc.org> | 2022-10-24 20:46:31 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2022-10-24 20:46:31 +0200 |
| commit | a075cddef6ae71516a960116f3d944efd5671e5d (patch) | |
| tree | 724dd6978ebb10f52c4bdda86eb44a5494b33409 /docs | |
| parent | d1e1bbc713b22d620956143634ecdf97223aa59f (diff) | |
| parent | 05e0825d66d938308842c25c4c74b5cdd4a885eb (diff) | |
| download | afl++-a075cddef6ae71516a960116f3d944efd5671e5d.tar.gz | |
Merge pull request #1561 from AFLplusplus/dev
push to stable
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/Changelog.md | 2 | ||||
| -rw-r--r-- | docs/env_variables.md | 15 |
2 files changed, 15 insertions, 2 deletions
diff --git a/docs/Changelog.md b/docs/Changelog.md index 80916858..38e2e6bc 100644 --- a/docs/Changelog.md +++ b/docs/Changelog.md @@ -13,6 +13,8 @@ scripts - afl-fuzz: - force writing all stats on exit + - ensure targets are killed on exit + - `AFL_FORK_SERVER_KILL_SIGNAL` added - afl-cc: - make gcc_mode (afl-gcc-fast) work with gcc down to version 3.6 - qemu_mode: diff --git a/docs/env_variables.md b/docs/env_variables.md index 1abe9438..d1c13e15 100644 --- a/docs/env_variables.md +++ b/docs/env_variables.md @@ -409,11 +409,22 @@ checks or alter some of the more exotic semantics of the tool: the afl-fuzz -g/-G command line option to control the minimum/maximum of fuzzing input generated. - - `AFL_KILL_SIGNAL`: Set the signal ID to be delivered to child processes on - timeout. Unless you implement your own targets or instrumentation, you + - `AFL_KILL_SIGNAL`: Set the signal ID to be delivered to child processes + on timeout. Unless you implement your own targets or instrumentation, you likely don't have to set it. By default, on timeout and on exit, `SIGKILL` (`AFL_KILL_SIGNAL=9`) will be delivered to the child. + - `AFL_FORK_SERVER_KILL_SIGNAL`: Set the signal ID to be delivered to the + fork server when AFL++ is terminated. Unless you implement your + fork server, you likely do not have to set it. By default, `SIGTERM` + (`AFL_FORK_SERVER_KILL_SIGNAL=15`) will be delivered to the fork server. + If only `AFL_KILL_SIGNAL` is provided, `AFL_FORK_SERVER_KILL_SIGNAL` will + be set to same value as `AFL_KILL_SIGNAL` to provide backward compatibility. + If `AFL_FORK_SERVER_KILL_SIGNAL` is also set, it takes precedence. + + NOTE: Uncatchable signals, such as `SIGKILL`, cause child processes of + the fork server to be orphaned and leaves them in a zombie state. + - `AFL_MAP_SIZE` sets the size of the shared map that afl-analyze, afl-fuzz, afl-showmap, and afl-tmin create to gather instrumentation data from the target. This must be equal or larger than the size the target was compiled |