-
Notifications
You must be signed in to change notification settings - Fork 132
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fuzzing libpng #17
Comments
Can you be more specific? What is the compilation error? |
Hi @deathholes CC=selected_compiler ./configure --disable-shared In LibPNG, there are some test programs like pngtest, pngimage, pngunknow, timepng ...You can try to fuzz them. |
I'm trying to mimic the run from your paper (libpng, CVE-ID : 2015-8540). I'm running a single instance of AFLGo. My run is going on for more than 30 mins and still I've not found the error. I've tried running it multiple times (30 mins max) but with no results. The paper mentioned that the mean TTE was 26s. Am I missing something here? |
Some bug may not cause the subject program (pngtest) to crash so you cannot see it on the AFL output screen. To check these types of bug, you can compile LibPNG with ASAN and run the subject program (asan version) with the test cases generated by AFL. |
Hi,
I'm trying to fuzz libpng using AFLGo. I'm using the method mentioned by michal here :
https://groups.google.com/forum/#!topic/afl-users/thZScGa6Qt0
But I'm unable to compile the readpng.c file.
Can you elaborate on how you fuzzed the libpng library?
The text was updated successfully, but these errors were encountered: