Add support for AFL Persistent Mode #131
Comments
|
Maybe you should try cargo-fuzz or honggfuzz-rs. They both use persistent mode. Disclaimer: I'm the author of honggfuzz-rs. |
|
Also I want to point out that I'm working on making this happen in AFL.rs. |
PaulGrandperrin
added a commit
to PaulGrandperrin/afl.rs
that referenced
this issue
Apr 27, 2018
Performance goes from ~2200/s to 17000/s on my i7-7700HQ while fuzzing the `url_read` target. closes rust-fuzz#131 partially addresses rust-fuzz#31
|
Done in #137 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Great Project!
One problem I have is that startup for my binary is pretty slow.
The way I understood it, afl is given the actual binary to execute and will fork on _start.
Since the afl.rs api already wraps every call in a closure, it would map perfectly to Persistent Mode:
https://github.com/mirrorer/afl/blob/master/llvm_mode/README.llvm#L139
That way execution speed (at least the setup) should be a lot quicker.
A good middle ground might be the start the delayed fork server at the rust afl entrypoint.
The text was updated successfully, but these errors were encountered: