-
Notifications
You must be signed in to change notification settings - Fork 77
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SIGSEGV for every seed? #8
Comments
This is likely caused by zzuf not understanding what the application does in terms of read/write operations, and fuzzing data that shouldn’t be fuzzed, or not fuzzing data that should be fuzzed. You can use the Note that the OS X port hasn’t been maintained for years, as I don’t have access to Mac hardware and mostly rely on user contributions. |
I saw this for some C++ binaries, tracked it down to For a quick and dirty fix: theopolis@9edc7f9 |
I'll give it a try later, thanks @theopolis |
@samhocevar it could be done now without HW, using TravisCI (for free). @landaire, it is old. Did you tried that fix? |
Running zzuf on my target produces
zzuf[s=0,r=0.004]: signal 11 (SIGSEGV)
for every seed value provided. Running the application with the modified file though normally and in lldb I can see no evidence of a segfault. Is there a way to debug this false positive? Running the application withvalgrind -q
the only suspicious behavior I can see isConditional jump or move depends on uninitialised value(s)
andUse of uninitialised value of size 8
.This occurs on OS X 10.11.2 if it matters.
The text was updated successfully, but these errors were encountered: