From 38c8ef9ef333bef078a6f2f725d9c1c57353552f Mon Sep 17 00:00:00 2001
From: msmeissn <>
Date: Feb 07 2024 19:03:59 +0000
Subject: Update afl to version 4.10c / rev 81 via SR 1144630
https://build.opensuse.org/request/show/1144630
by user msmeissn + anag+factory
- updated to 4.10c
- afl-fuzz:
- default power schedule is now EXPLORE, due a fix in fast schedules
explore is slightly better now.
- fixed minor issues in the mutation engine, thanks to @futhewo for
reporting!
- better deterministic fuzzing is now available, benchmarks have shown
to improve fuzzing. Enable with -D. Thanks to @kdsjZh for the PR!
- afl-cc:
- large rewrite by @SonicStark which fixes a few corner cases, thanks!
- LTO mode now requires llvm 12+
- workaround for ASAN with gcc_plugin mode
- instrumentation:
- LLVM 18 support, thanks to @devnexen!
- Injection (SQL, LDAP, XSS) fuzzing feature now available, see
`instrumentation/README.injections.md` how to activate/use/expand.
- compcov/LAF-intel:
- floating po
---
diff --git a/.files b/.files
index ea5cd4f..c0c28b7 100644
Binary files a/.files and b/.files differ
diff --git a/.rev b/.rev
index f9176ec..afd9ff0 100644
--- a/.rev
+++ b/.rev
@@ -1373,4 +1373,41 @@
speed is in comparison to other setups. (forwarded request 1133736 from msmeissn)
1133737
+
+ e1e9b912bcc0f050d9689d0f9f800c9d
+ 4.10c
+
+ anag+factory
+ - updated to 4.10c
+ - afl-fuzz:
+ - default power schedule is now EXPLORE, due a fix in fast schedules
+ explore is slightly better now.
+ - fixed minor issues in the mutation engine, thanks to @futhewo for
+ reporting!
+ - better deterministic fuzzing is now available, benchmarks have shown
+ to improve fuzzing. Enable with -D. Thanks to @kdsjZh for the PR!
+ - afl-cc:
+ - large rewrite by @SonicStark which fixes a few corner cases, thanks!
+ - LTO mode now requires llvm 12+
+ - workaround for ASAN with gcc_plugin mode
+ - instrumentation:
+ - LLVM 18 support, thanks to @devnexen!
+ - Injection (SQL, LDAP, XSS) fuzzing feature now available, see
+ `instrumentation/README.injections.md` how to activate/use/expand.
+ - compcov/LAF-intel:
+ - floating point splitting bug fix by @hexcoder
+ - due a bug in LLVM 17 integer splitting is disabled there!
+ - when splitting floats was selected, integers were always split as well,
+ fixed to require AFL_LLVM_LAF_SPLIT_COMPARES or _ALL as it should
+ - dynamic instrumentation filtering for LLVM NATIVE, thanks @Mozilla!
+ see utils/dynamic_covfilter/README.md
+ - qemu_mode:
+ - plugins are now activated by default and a new module is included that
+ produces drcov compatible traces for lighthouse/lightkeeper/...
+ thanks to @JRomainG to submitting!
+ - updated Nyx checkout (fixes a bug) and some QOL
+ - updated the custom grammar mutator
+ - document afl-cmin does not work on macOS (but afl-cmin.bash does) (forwarded request 1144629 from msmeissn)
+ 1144630
+
diff --git a/afl.changes b/afl.changes
index 858369b..1a21cb0 100644
--- a/afl.changes
+++ b/afl.changes
@@ -1,4 +1,38 @@
-------------------------------------------------------------------
+Mon Feb 5 10:30:56 UTC 2024 - Marcus Meissner
+
+- updated to 4.10c
+ - afl-fuzz:
+ - default power schedule is now EXPLORE, due a fix in fast schedules
+ explore is slightly better now.
+ - fixed minor issues in the mutation engine, thanks to @futhewo for
+ reporting!
+ - better deterministic fuzzing is now available, benchmarks have shown
+ to improve fuzzing. Enable with -D. Thanks to @kdsjZh for the PR!
+ - afl-cc:
+ - large rewrite by @SonicStark which fixes a few corner cases, thanks!
+ - LTO mode now requires llvm 12+
+ - workaround for ASAN with gcc_plugin mode
+ - instrumentation:
+ - LLVM 18 support, thanks to @devnexen!
+ - Injection (SQL, LDAP, XSS) fuzzing feature now available, see
+ `instrumentation/README.injections.md` how to activate/use/expand.
+ - compcov/LAF-intel:
+ - floating point splitting bug fix by @hexcoder
+ - due a bug in LLVM 17 integer splitting is disabled there!
+ - when splitting floats was selected, integers were always split as well,
+ fixed to require AFL_LLVM_LAF_SPLIT_COMPARES or _ALL as it should
+ - dynamic instrumentation filtering for LLVM NATIVE, thanks @Mozilla!
+ see utils/dynamic_covfilter/README.md
+ - qemu_mode:
+ - plugins are now activated by default and a new module is included that
+ produces drcov compatible traces for lighthouse/lightkeeper/...
+ thanks to @JRomainG to submitting!
+ - updated Nyx checkout (fixes a bug) and some QOL
+ - updated the custom grammar mutator
+ - document afl-cmin does not work on macOS (but afl-cmin.bash does)
+
+-------------------------------------------------------------------
Sun Dec 17 12:08:00 UTC 2023 - Marcus Meissner
- updated to 4.09c
diff --git a/afl.spec b/afl.spec
index facd807..048d87d 100644
--- a/afl.spec
+++ b/afl.spec
@@ -1,7 +1,7 @@
#
# spec file for package afl
#
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -27,7 +27,7 @@
%endif
Name: afl
-Version: 4.09c
+Version: 4.10c
Release: 0
Summary: American fuzzy lop is a security-oriented fuzzer
#URL: https://lcamtuf.coredump.cx/afl/
@@ -66,7 +66,7 @@ use cases - say, common image parsing or file compression libraries.
%prep
%setup -q -n AFLplusplus-%version
-%patch1 -p1
+%patch -P1 -p1
sed -i 's|#!/usr/bin/env sh|#!/bin/sh|g' afl-cmin
sed -i 's|#!/usr/bin/env bash|#!/bin/bash|g' afl-cmin.bash
@@ -110,6 +110,7 @@ chmod -x %{buildroot}/%{_libexecdir}/%{name}/*.o
%{_datadir}/%{name}/testcases/*
%dir %{_datadir}/afl/dictionaries/
%{_datadir}/afl/dictionaries/*
+%{_datadir}/afl/injections.dic
%{_mandir}/man8/afl*.8*
%changelog
diff --git a/v4.09c.tar.gz b/v4.09c.tar.gz
deleted file mode 120000
index 74f9226..0000000
--- a/v4.09c.tar.gz
+++ /dev/null
@@ -1 +0,0 @@
-/ipfs/bafybeiforxv3khgnomxo5jth5kfsq3vml4iasbje43bmspgqmlbv5h6zvi
\ No newline at end of file
diff --git a/v4.10c.tar.gz b/v4.10c.tar.gz
new file mode 120000
index 0000000..3188dbd
--- /dev/null
+++ b/v4.10c.tar.gz
@@ -0,0 +1 @@
+/ipfs/bafybeihfcvyg5mf3vbpjpduf5ov626zsl5o6xjpgw7765cgczosxgwficm
\ No newline at end of file