Hi, untracer-afl segfault's on Ubuntu 18.04. it reports:

[*] setting up tracer binary.. bad_alloc() [*] setting up basic block array.. segfault

target binary is compiled without PIE and installation went fine which platform did you run it on?

$ CFLAGS="-Wa,-F" CC=/home/genewitch/UnTracer-AFL/untracer-clang CXX=/home/genewitch/UnTracer-AFL/untracer-clang++ ./configure --disable-shared

$ make

make[1]: Entering directory '/home/genewitch/libarchive-libarchive-b52dd6c'
  CC       libarchive/archive_entry_link_resolver.lo
afl-cc 2.52b by <[email protected]>
afl-as 2.52b by <[email protected]>
Instrumenting in forkserver-only mode...
Instrumenting in forkserver-only mode...
[!] WARNING: No instrumentation targets found.
  CC       libarchive/archive_entry_sparse.lo
afl-cc 2.52b by <[email protected]>
afl-as 2.52b by <[email protected]>
Instrumenting in forkserver-only mode...
Instrumenting in forkserver-only mode...
[!] WARNING: No instrumentation targets found.
  CC       libarchive/archive_entry_stat.lo
afl-cc 2.52b by <[email protected]>
afl-as 2.52b by <[email protected]>
Instrumenting in forkserver-only mode...
Instrumenting in forkserver-only mode...
[!] WARNING: No instrumentation targets found.
  CC       libarchive/archive_entry_strmode.lo
afl-cc 2.52b by <[email protected]>
afl-as 2.52b by <[email protected]>
Instrumenting in forkserver-only mode...
Instrumenting in forkserver-only mode...
[!] WARNING: No instrumentation targets found.
  CC       libarchive/archive_entry_xattr.lo
afl-cc 2.52b by <[email protected]>
afl-as 2.52b by <[email protected]>
Instrumenting in forkserver-only mode...
Instrumenting in forkserver-only mode...
[!] WARNING: No instrumentation targets found.
  CC       libarchive/archive_getdate.lo
afl-cc 2.52b by <[email protected]>

this continues on until the binary is built, with some afl-as with the same warnings. Am i just too tired to do this tonight?

Hi, I have several problems in the installation. I would like to ask what is the specific operation of this step? "Update DYN_ROOT in UnTracer-AFL/Makefile to your Dyninst install directory. " When I skip this step, the resulting error is shown here.

[*] Checking for the ability to commpile x86 code. . . [+] Everything seems to be working,"ready to compile. gcc-03 -furoll-loops -wall -D_FORTIFY_SOURCB=2 -g -Wno-pointer-sign -DAFL_PATH= "/usr/loca1/lib/af1"-DDOC_ PATH="/usr/local/share/doc/afl\” -DBIN_PATH "/usr/local/bin" untracer-afl.c -o untracer-afl -I/usr/include -I/home/osboxes/ dynBuildDir/include -L/home/osboxes/ dynBuildDir/lib -lcommon -liberty -ldyninstAPI -lboost_system -1dl /usr/bin/la: cannot find -lcommon /usr/bin/ld: cannot find -ldyninstAPI collect2 :_error : ld returned 1 exit status Makefile:84: recipe for target 'untracer-afl’failed make:***[untracer-afl] Error 1

Also, does untracer have to run on Ubuntu 18.04? I'm currently using Ubuntu 16.04. Thanks.

An illegal pointer error message occurs, when I compile openssl-1.1.0c in Google Fuzzer-test-suite (link). Is it Dyninst bug?

UnTracer-AFL | FoRTE-Research @ Virginia Tech | based on AFL by <[email protected]>
[+] You have 80 CPU cores and 2 runnable tasks (utilization: 2%).
[+] Try parallel jobs - see docs/parallel_fuzzing.txt.
[*] Checking CPU core loadout...
[+] Found a free CPU core, binding to #0.
[*] Checking core_pattern...
[*] Checking CPU scaling governor...
[*] Setting up output directories...
[+] Output directory exists but deemed OK to reuse.
[*] Deleting old session data...
[+] Output dir cleanup successful.
[*] Scanning 'in'...
[+] No auto-generated dictionary tokens to reuse.
[*] Creating hard links for all input files...
[*] Validating target binary...
[*] Setting up oracle binaries...
[*] Setting up tracer binary...
Error: illegal pointer to buffer!
Target of 49a460 from addr 437323 in insn call 63138 + RIP + 5
UnTracerDyninst: /path/to/untracer/dyninst-9.3.2/dyninstAPI/src/Relocation/Transformers/Movement-adhoc.C:402: bool Dyninst::Relocation::adhocMovementTransformer::isGetPC(Dyninst::Relocation::Widget::Ptr, Dyninst::Relocation::adhocMovementTransformer::InsnPtr, Dyninst::Absloc&, Dyninst::Address&): Assertion `0' failed.
Error: illegal pointer to buffer!
Target of 49a460 from addr 437323 in insn call 63138 + RIP + 5
UnTracerDyninst: /path/to/untracer/dyninst-9.3.2/dyninstAPI/src/Relocation/Transformers/Movement-adhoc.C:402: bool Dyninst::Relocation::adhocMovementTransformer::isGetPC(Dyninst::Relocation::Widget::Ptr, Dyninst::Relocation::adhocMovementTransformer::InsnPtr, Dyninst::Absloc&, Dyninst::Address&): Assertion `0' failed.
[*] Setting up basic block array...

Is there a mistake in untracer-gcc.c:58? I don't think it is a valid environment varible with "-".

  u8 *afl_path = getenv("UNTRACER-AFL_PATH");

hello I use untracer to fuzz tcpdump, however it occurs this problem:

I have tried the solution in above issue, but it doesn't work.

Could you tell me how to solve it? Thank you.

I ran into the problem Missing basic block map: 'fuzz_out//sfconvert.bblist'! At the beginning, I had the same problem as the last issue, but after I updated the path related to Dyninst, there was no error reported by UntracerDyninst any more, but the error remains. This is also the reason why I opened a new problem. config: I used Dynist-10.2.0 since the Dynins-9.x version was no longer supported. Other installation steps are the same as those provided in the readme. However, when I fuzzing, an error occured. I checked the fuzz_out folder again and found that %s.dummy was successfully created, but %s.bblist and %s.cur_trace were not created correctly. So I wonder how can I solve this problem? Do you have any suggestions? Thank you very much!