Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Draft: add support for unicorn engine #1

Closed
wants to merge 27 commits into from
Closed

Draft: add support for unicorn engine #1

wants to merge 27 commits into from

Conversation

henri2h
Copy link
Owner

@henri2h henri2h commented Dec 15, 2022
edited
Loading

Add support for unicorn engine for CPU emulation

Currently support

  • X86
  • ARM
  • ARM64

@henri2h henri2h changed the title Henri2h/libafl unicorn Draft: add support for unicorn engine Jan 8, 2023
@henri2h henri2h force-pushed the henri2h/libafl_unicorn branch from 92b81b7 to 5947e22 Compare January 9, 2023 20:46
@henri2h
Copy link
Owner Author

henri2h commented Jan 19, 2023

Okay, now the fuzzing on unicorn works on this specific harnessed function

henri2h
henri2h commented Feb 5, 2023
View reviewed changes
libafl_unicorn/src/emu.rs Outdated
pub fn prog(emu: &mut unicorn_engine::Unicorn<'static, ()>, arm_code_len: u64) {
let result = emu.emu_start(
match emu.get_arch() {
Arch::ARM64 => CODE_ADDRESS + 0x40, // Position of main: 0x40 TODO: see if possible to get the main position from header file. Seems weird doing so
Copy link
Owner Author

@henri2h henri2h Feb 5, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TODO: delete this override
This was added as in the text program the section 0x0 - 0x3F contains invalid code

henri2h and others added 26 commits February 9, 2023 17:20
@henri2h
feat: init
db13fa3
@henri2h
feat: update dep
dde3d3e
@henri2h
feat: make it run
6381be7
@henri2h
feat: print read access
d49fa88
@henri2h
feat: properly register memory
706a8ad
@henri2h
feat: display block hook and write correctly memory data
7307b5b
@henri2h
fix: properly hook and display memory reads
579295d
@henri2h
feat: added location tracker
2a57bf1
@henri2h
feat: added edge coverage
ad3e69e
@henri2h
feat: startingq hooking the fuzzer
6a1a60c
@henri2h
feat: discard state
79e6ddf
@andreafioraldi @henri2h
Fix compilation
022584a
@henri2h
feat: rewritten the emulator to be less verbose and remove code dupli…
e98f753 
…cation
@henri2h
feat: reduce code duplication (again)
e09dda7
@henri2h
feat: allow to run emulator only
9f68628
@henri2h
feat: crash on wrong value
5da5b93
@henri2h
feat: replace debug and reset EDGES_MAP to 0 at start
d3458ef
@henri2h
fix: change generator type
c826fbf
@henri2h
fix: set MAX_EDGES_NUM and reduce verbosity
71e579c
@henri2h
fix: properly initialize input
97539ee
@andreafioraldi @henri2h
Fix OOM
00cbe7f
@henri2h
feat: code re write
20d70e3
@henri2h
feat: add multiple architectures
43f21bf
@henri2h
feat: provide disassembly and fuzz x86 code
e1a0e2c
@henri2h
fix: add possibility to fuzz different CPU platform
4a6e7f2
@henri2h
feat: change signal
6384d95
@henri2h henri2h force-pushed the henri2h/libafl_unicorn branch from 0fa711e to cf92098 Compare February 9, 2023 16:20
@henri2h henri2h mentioned this pull request Feb 9, 2023
Open
3 tasks
@henri2h henri2h closed this Feb 9, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@henri2h @andreafioraldi