On 2014/11/21 01:11, Jonathan Gray wrote: > On Thu, Nov 20, 2014 at 01:40:13PM +0000, Stuart Henderson wrote: > > On 2014/11/21 00:14, Jonathan Gray wrote: > > > On Thu, Nov 20, 2014 at 11:44:08PM +1100, Jonathan Gray wrote: > > > > On Wed, Nov 19, 2014 at 02:08:32PM +1100, Jonathan Gray wrote: > > > > > Here is a quick port of lcamtuf/Michal Zalewski's instrumented fuzzer > > > > > 'American fuzzy lop'. Only tested on amd64 where it requires the > > > > > binutils > > > > > change I just committed to allow sahf/lahf instructions. > > > > > > > > > > http://lcamtuf.coredump.cx/afl/ for more details > > > > > > > > Updated port attached for version 0.60b that includes > > > > various changes made by Michal Zalewski upstream for OpenBSD. > > > > In particular afl can now handle instrumenting OpenBSD binaries > > > > without having to disable pie. > > > > > > > > Also adds a change to the Makefile to raise the fd ulimit to > > > > ensure the regress test passes from Daniel Dickman. > > > > > > And here is another version of the port as sthen@ points > > > out the distfile was rerolled. Apparently for a workaround > > > for lahf / sahf on older releases of OpenBSD/amd64 before > > > http://marc.info/?l=openbsd-cvs&m=141636589924400 > > > > One minor thing, I think this means that afl requires VT to be available > > on the CPU (and possibly enabled in BIOS)? If that's correct, then a short > > comment in DESCR is probably appropriate. > > I think you might be getting confused on what the instructions do. > They are for loading and setting the cpu flags (carry, zero etc) > via the low byte in a register.
I'm aware of that, I looked it up. And many of the pages which described them said that Intel added them as part of VT-x...
