search

googleprojectzero / winafl

A fork of AFL for fuzzing Windows binaries
Apache License 2.0
2.36k stars 533 forks source link

Occur time out when init test case #425

Open howl-2019 opened 11 months ago

howl-2019 commented 11 months ago 
afl-fuzz.exe -i in -out out -f "asdf.wav" -M fuzzer01 -D "C:\winafl\DynamoRIO-Windows-10.0.19657\bin32" -t 10000 -- -coverage_module "MAC.exe" -target_module "MAC.exe" -debug -target_offset 0x0030A0 -- "MAC.exe" @@ "C:\winafl\seed\asdf.ape" "-c1000"

this is my fuzzing commend line it is fuzz Monkey's Audio (Audio codec) but it isn't run

WinAFL 1.17 by <ifratric@google.com>
Based on AFL 2.43b by <lcamtuf@google.com>
[+] You have 12 CPU cores with average utilization of 2%.
[+] Try parallel jobs - see afl_docs\parallel_fuzzing.txt.
[*] Checking CPU core loadout...
[+] Found a free CPU core, binding to #0.
[+] Process affinity is set to 1.
[*] Setting up output directories...
[+] Output directory exists but deemed OK to reuse.
[*] Deleting old session data...
[+] Output dir cleanup successful.
[*] Scanning 'in'...
[+] No auto-generated dictionary tokens to reuse.
[*] Creating hard links for all input files...
[*] Attempting dry run with 'id_000000'...

[-] The program took more than 10000 ms to process one of the initial test cases.
    In WinAFL, this error could also mean incorrect instrumentation params.
    Please make sure instrumentation runs correctly using the debug mode
    (see the README) before attempting to run afl-fuzz.

[-] PROGRAM ABORT : Test case 'id_000000' results in a timeout
         Location : perform_dry_run(), C:\winafl\winafl\afl-fuzz.c:3254

this is printed string my commend line. this commend execute program (Monkey's Audio). so create asdf.ape file that path (C:\winafl\seed\asdf.ape)

drrun.exe -c winafl.dll -debug -fuzz_iterations 10 -coverage_module "MAC.exe" -target_module "MAC.exe" -target_offset 0x0030A0 -- "MAC.exe" "C:\winafl\seed\sample.wav" "asdf.ape" "-c2000"

this is drrun;s commend line and

Module loaded, MAC.exe
Module loaded, dynamorio.dll
Module loaded, drwrap.dll
Module loaded, winafl.dll
Module loaded, drmgr.dll
Module loaded, drreg.dll
Module loaded, drx.dll
Module loaded, KERNELBASE.dll
Module loaded, KERNEL32.dll
Module loaded, ntdll.dll
In pre_fuzz_handler
In OpenFileW, reading C:\winafl\seed\sample.wav
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
In pre_fuzz_handler
In post_fuzz_handler
Everything appears to be running normally.
Coverage map follows:

this is that result print i think drrun is correctly run but winafl isn't run correctly

Please tell me what the problem is