From 4566bcf122c251c023abce0683666921bd4df755 Mon Sep 17 00:00:00 2001
From: van Hauser <vh@thc.org>
Date: Mon, 31 Aug 2020 10:57:01 +0200
Subject: code-format

---
 include/afl-fuzz.h | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

(limited to 'include')

diff --git a/include/afl-fuzz.h b/include/afl-fuzz.h
index c5b01da8..97e60347 100644
--- a/include/afl-fuzz.h
+++ b/include/afl-fuzz.h
@@ -1027,11 +1027,15 @@ static inline u32 rand_below(afl_state_t *afl, u32 limit) {
 
   }
 
-  /* Modulo is biased - we don't want our fuzzing to be biased so let's do it right. */
-  u64 unbiased_rnd; 
+  /* Modulo is biased - we don't want our fuzzing to be biased so let's do it
+   * right. */
+  u64 unbiased_rnd;
   do {
+
     unbiased_rnd = rand_next(afl);
+
   } while (unlikely(unbiased_rnd >= (UINT64_MAX - (UINT64_MAX % limit))));
+
   return unbiased_rnd % limit;
 
 }
-- 
cgit 1.4.1


From 92b1f9cf36e7df8ce4b957e503cffca7296da048 Mon Sep 17 00:00:00 2001
From: Dominik Maier <domenukk@gmail.com>
Date: Mon, 31 Aug 2020 12:11:38 +0200
Subject: added SO link about rand for clarification

---
 include/afl-fuzz.h | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'include')

diff --git a/include/afl-fuzz.h b/include/afl-fuzz.h
index c5b01da8..964f369d 100644
--- a/include/afl-fuzz.h
+++ b/include/afl-fuzz.h
@@ -1027,7 +1027,9 @@ static inline u32 rand_below(afl_state_t *afl, u32 limit) {
 
   }
 
-  /* Modulo is biased - we don't want our fuzzing to be biased so let's do it right. */
+  /* Modulo is biased - we don't want our fuzzing to be biased so let's do it right, see
+  https://stackoverflow.com/questions/10984974/why-do-people-say-there-is-modulo-bias-when-using-a-random-number-generator
+  */
   u64 unbiased_rnd; 
   do {
     unbiased_rnd = rand_next(afl);
-- 
cgit 1.4.1


From 664daa2f3c7bb76253f6f82b827e1c33d0a0f462 Mon Sep 17 00:00:00 2001
From: van Hauser <vh@thc.org>
Date: Tue, 1 Sep 2020 01:12:40 +0200
Subject: add qemu driver env var

---
 include/envs.h | 1 +
 1 file changed, 1 insertion(+)

(limited to 'include')

diff --git a/include/envs.h b/include/envs.h
index c7761e19..d9f1e0dc 100644
--- a/include/envs.h
+++ b/include/envs.h
@@ -112,6 +112,7 @@ static char *afl_environment_variables[] = {
     "AFL_QEMU_COMPCOV_DEBUG",
     "AFL_QEMU_DEBUG_MAPS",
     "AFL_QEMU_DISABLE_CACHE",
+    "AFL_QEMU_DRIVER_NO_HOOK",
     "AFL_QEMU_PERSISTENT_ADDR",
     "AFL_QEMU_PERSISTENT_CNT",
     "AFL_QEMU_PERSISTENT_GPR",
-- 
cgit 1.4.1


From 6f751006027fe9ab3e3bd8b3c4f0f9ade310cefd Mon Sep 17 00:00:00 2001
From: Andrea Fioraldi <andreafioraldi@gmail.com>
Date: Tue, 1 Sep 2020 12:36:04 +0200
Subject: qemuafl envs

---
 include/envs.h | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'include')

diff --git a/include/envs.h b/include/envs.h
index c7761e19..cac6ebe1 100644
--- a/include/envs.h
+++ b/include/envs.h
@@ -118,6 +118,9 @@ static char *afl_environment_variables[] = {
     "AFL_QEMU_PERSISTENT_HOOK",
     "AFL_QEMU_PERSISTENT_RET",
     "AFL_QEMU_PERSISTENT_RETADDR_OFFSET",
+    "AFL_QEMU_PERSISTENT_EXITS",
+    "AFL_QEMU_INST_RANGES",
+    "AFL_QEMU_SNAPSHOT",
     "AFL_QUIET",
     "AFL_RANDOM_ALLOC_CANARY",
     "AFL_REAL_PATH",
-- 
cgit 1.4.1