Replace alarms with select and threads (#243)

* Use select to monitor forkserver for timeouts instead of alarm * Remove redundent conditons in select monitoring of fdsin forkserver and cmplog * Replace SIGALARM with POSIX timers in afl-fuzz-run * Make changes to Makefile to use POSIX timers * Resolve Merge Conflicts and rename variables accordingly * Change forkserver and cmplog to handle exec_tmout = 0 * Handle timeout function bug rectify * Add error handling to afl-fuzz run timers * Add timer_delete to afl-fuzz-run * Remove memory leaks
author: Rishi Ranjan <43873720+rish9101@users.noreply.github.com> 2020-03-10 17:37:29 +0530
committer: GitHub <noreply@github.com> 2020-03-10 13:07:29 +0100
commit: cd377f3d99b142da0520b812998acac0dd415224 (patch)
tree: 419d0b2c238d70b78e43790bc71ac38f9ca0aeef /src/afl-forkserver.c
parent: 0def6e3471b8bbe7190843d6c266f2d88e454df1 (diff)
download: afl++-cd377f3d99b142da0520b812998acac0dd415224.tar.gz
1 files changed, 24 insertions, 12 deletions
diff --git a/src/afl-forkserver.c b/src/afl-forkserver.c
index bccd3d96..70bb4cfd 100644
--- a/src/afl-forkserver.c
+++ b/src/afl-forkserver.c
@@ -41,6 +41,7 @@
 #include <sys/time.h>
 #include <sys/wait.h>
 #include <sys/resource.h>
+#include <sys/select.h>
 
 /* Describe integer as memory size. */
 
@@ -168,10 +169,10 @@ void afl_fsrv_init(afl_forkserver_t *fsrv) {
 
 void afl_fsrv_start(afl_forkserver_t *fsrv, char **argv) {
 
-  static struct itimerval it;
-  int                     st_pipe[2], ctl_pipe[2];
-  int                     status;
-  s32                     rlen;
+  struct timeval timeout;
+  int            st_pipe[2], ctl_pipe[2];
+  int            status;
+  s32            rlen;
 
   if (!getenv("AFL_QUIET")) ACTF("Spinning up the fork server...");
 
@@ -311,19 +312,30 @@ void afl_fsrv_start(afl_forkserver_t *fsrv, char **argv) {
 
   if (fsrv->exec_tmout) {
 
-    it.it_value.tv_sec = ((fsrv->exec_tmout * FORK_WAIT_MULT) / 1000);
-    it.it_value.tv_usec = ((fsrv->exec_tmout * FORK_WAIT_MULT) % 1000) * 1000;
+    fd_set readfds;
 
-  }
+    FD_ZERO(&readfds);
+    FD_SET(fsrv->fsrv_st_fd, &readfds);
+    timeout.tv_sec = ((fsrv->exec_tmout * FORK_WAIT_MULT) / 1000);
+    timeout.tv_usec = ((fsrv->exec_tmout * FORK_WAIT_MULT) % 1000) * 1000;
+
+    int sret = select(fsrv->fsrv_st_fd + 1, &readfds, NULL, NULL, &timeout);
 
-  setitimer(ITIMER_REAL, &it, NULL);
+    if (sret == 0) {
 
-  rlen = read(fsrv->fsrv_st_fd, &status, 4);
+      fsrv->child_timed_out = 1;
+      kill(fsrv->child_pid, SIGKILL);
 
-  it.it_value.tv_sec = 0;
-  it.it_value.tv_usec = 0;
+    } else {
 
-  setitimer(ITIMER_REAL, &it, NULL);
+      rlen = read(fsrv->fsrv_st_fd, &status, 4);
+
+    }
+  } else {
+
+    rlen = read(fsrv->fsrv_st_fd, &status, 4);
+
+  }
 
   /* If we have a four-byte "hello" message from the server, we're all set.
      Otherwise, try to figure out what went wrong. */
author	Rishi Ranjan <43873720+rish9101@users.noreply.github.com>	2020-03-10 17:37:29 +0530
committer	GitHub <noreply@github.com>	2020-03-10 13:07:29 +0100
commit	cd377f3d99b142da0520b812998acac0dd415224 (patch)
tree	419d0b2c238d70b78e43790bc71ac38f9ca0aeef /src/afl-forkserver.c
parent	0def6e3471b8bbe7190843d6c266f2d88e454df1 (diff)
download	afl++-cd377f3d99b142da0520b812998acac0dd415224.tar.gz