Refactor to new forkserver #3183
Conversation
|
The clippy CI says something wrong in executors/forkserver.c, but that code I did not touch. Strange... |
|
I will investigate into the broken pipe issue... |
|
Does it surpass my #3087 ? If so I will take care of this. Just let me know when you are satisfied with the code. |
|
Maybe yes. This PR enables us to conduct the fallback in downstream. If this PR got merged, I will further modify unicornafl to fit in. :) |
|
Finally passed all tests... @wtdcode The code is ready for review. Thank you for your patience :) |
|
can you do some benchmark comparing forkserver.rs and forkserver.c |
…rkserver parent has not idea of whether it is persistent and the persistent version can handle the non-persistent version
Sure, I'll do it asap. |
|
Tested |
|
then it's ok |
|
#3087 can be closed in favor of this I think. |
|
Thank you @wtdcode :) I already have a worked version of unicornafl for this patch that still needs some cleanup. Please wait me for about 4-5 days (some other stuff occupies me) and I will send a patch. |
|
No hurry, I'm on academic travel. |
|
I have merged the latest commit in main branch, please notify me if there is anything I missed to get this PR accepted :) |
|
Thanks =) |
* Refactor to new forkserver * Fix fuzzer examples and delete forkserver.c * Fix clippy and doc warnings * Fix symbol error * Format Cargo.toml; Fix wrong doc link * Fix silly typo. * Rename ForkServer to Forkserver to make it more consistent * Fix build.rs * Merge StdForkserverParent and PersistentForkserverParent since the forkserver parent has not idea of whether it is persistent and the persistent version can handle the non-persistent version * Fix clippy * Do not take ownership for last_child_pid since it may be in persistent mode
Description
Currently in the implementation of
start_forkserver, the communication to AFL forkserver is coupled with communication with children. I'm improving unicornafl to better use LibAFL, and this makes it hard to custom communication between parent and children.Moreover, I found the forkserver logic is written in C, which I didn't find some specific reason for that.
As a result, I use Rust to implement such logic (it's one-to-one rewrite, no logic change except for removing codes under
USEMMAPmacro that are never compiled), and add convenient trait for parent-children communication.I'm poor at naming, so please correct me if I give name wrong, especially for forkserver-related names:
In my understanding, there are several entities in forkserver logic:
The main process part
This part conduct the mutation, scheduling, etc., and both AFL++ (
afl-fuzzexecutable) and LibAFL (ForkserverExecutorinlibafl::executors) have implementations.The parent process part
This part communicate with main part with dedicated forkserver fd to indicate the process of each round. And it also in charge of spawning children and communicate with children. This part is where
start_forkserverfunction should be invoked.ForkServerParentis used as a helper trait to communicate with children.The child process part
This part is forked by the parent process, and does the real execution and observation.
Checklist
./scripts/precommit.shand addressed all comments