-
afl (2.34b-5) experimental; urgency=medium
* deb/rules:
+ pass custom mfpu also to $CXXFLAGS (Closes: #841474) [thanks to Michal
Zaleswki].
+ corrected an error in the info text.
-- Daniel Stender <email address hidden> Sat, 19 Nov 2016 22:39:34 +0100
-
afl (2.34b-4) experimental; urgency=medium
* use "vfpv3" to set mfpu.
-- Daniel Stender <email address hidden> Fri, 18 Nov 2016 17:40:00 +0100
-
afl (2.34b-3) experimental; urgency=medium
* deb/rules:
+ add -mfpu=vfp3 to $CFLAGS for clang on armhf (Closes: #841474).
+ pass $clang_cflags to make -C llvm_mode.
+ drop removal of -fstack-protector from $CFLAGS for clang (not needed
anymore).
-- Daniel Stender <email address hidden> Mon, 14 Nov 2016 14:00:47 +0100
-
afl (2.34b-1) experimental; urgency=medium
* New upstream release.
-- Daniel Stender <email address hidden> Mon, 19 Sep 2016 08:38:38 +0200
-
afl (2.33b-6) experimental; urgency=medium
* deb/rules: enable fstack-protector flag on all archs
(Closes: #786599).
* drop avoid-builtin-return-address.patch (not needed anymore).
-- Daniel Stender <email address hidden> Wed, 07 Sep 2016 16:36:02 +0200
-
afl (2.33b-5) experimental; urgency=medium
* unfuzz avoid-builtin-return-address.patch.
* build/run against llvm/clang 3.9.
-- Daniel Stender <email address hidden> Tue, 06 Sep 2016 14:03:41 +0200
-
afl (2.33b-3) experimental; urgency=medium
* deb/rules:
+ add missing empty override for dh_install.
+ don't try to remove non-empty /usr/lib/afl on non-x86 archs (ship
libdislocator and libtokencap).
-- Daniel Stender <email address hidden> Mon, 29 Aug 2016 11:03:52 +0200
-
afl (2.33b-2) experimental; urgency=medium
* build and ship libdislocator and libtokencap:
+ add make invocations for both companion libraries in deb/rules (build
them with custom CFLAGS and LDFLAGS without -fPIE).
+ add libraries and READMEs to deb/afl{,-doc}-install.
+ add info on them in deb/afl.NEWS.
* deb/afl-doc.install: include llvm_mode/README.llvm.
* add deb/clean (with llvm_mode/afl-llvm-pass.dwo).
-- Daniel Stender <email address hidden> Sun, 28 Aug 2016 21:46:35 +0200
-
afl (2.33b-1) experimental; urgency=medium
* New upstream release.
-- Daniel Stender <email address hidden> Sat, 27 Aug 2016 21:58:43 +0200
-
afl (2.30b-1) experimental; urgency=medium
* New upstream release.
-- Daniel Stender <email address hidden> Sat, 13 Aug 2016 20:31:35 +0200
-
afl (2.28b-1) experimental; urgency=medium
* New upstream release:
+ unfuzz avoid-builtin-return-address.patch.
* build/run against/on llvm 3.8 (Closes: #828178):
+ update build and package deps in deb/control.
+ update hardcode-clang-version.patch.
* deb/control:
+ put gnuplot into Suggests (thanks to Michał Staruch for pointer).
+ let binary depend on build-essential, and better in Depends.
-- Daniel Stender <email address hidden> Sun, 07 Aug 2016 14:57:25 +0200
-
afl (1.95b-1) experimental; urgency=medium
* New upstream release.
* deb/control: dropped Vcs-Git and Browser (not collaboratively maintained,
Git log not needed anymore for review of changes in sponsoring).
* deb/rules: rewritten for dh sequencer.
* Removed deb/gbp.conf (not needed now).
-- Daniel Stender <email address hidden> Wed, 02 Dec 2015 22:47:13 +0100
-
afl (1.56b-1) experimental; urgency=low
* New upstream release:
+ Make it possible to properly override LD_BIND_NOW.
+ Fix a bug in AFL_DUMB_FORKSRV.
+ Fix a bug with afl-showmap opening /dev/null with O_RDONLY when
running in quiet mode.
+ Add support for file format postprocessors.
-- Jakub Wilk <email address hidden> Thu, 05 Mar 2015 12:51:32 +0100
-
afl (1.50b-1) experimental; urgency=low
* New upstream release:
+ Save original command line in fuzzer_stats and crashes/README.txt. Also
save fuzzer version in fuzzer_stats.
+ Improve file descriptor handling.
+ Fix a flock() bug that would prevent dir reuse errors from kicking
in every now and then.
-- Jakub Wilk <email address hidden> Thu, 26 Feb 2015 20:08:57 +0100
-
afl (1.47b-1) experimental; urgency=low
* New upstream release:
+ Replace zero-sized files with symlinks in the variable behavior state
dir to simplify examining the relevant test cases.
+ Change the period of limited-range block ops from 5 to 10 minutes.
+ Improve instrumentation performance on 32-bit systems by getting rid of
xor-swap and tweaking alignment.
+ Made path depth numbers more accurate with imported test cases.
+ Fix a bug with afl-cmin in -Q mode complaining about binary being not
instrumented.
+ Fix another bug with argv handling for afl-fuzz in -Q mode.
+ Improve the use of colors when showing crash counts in -C mode.
-- Jakub Wilk <email address hidden> Thu, 19 Feb 2015 23:57:11 +0100
-
afl (1.44b-1) experimental; urgency=low
* New upstream release:
+ Exclude crashing inputs in afl-cmin by default.
+ Add option (-C) for keeping only crashing inputs in afl-cmin.
+ Make the afl-cmin output dir default to 0700, not 0755, to be consistent
with afl-fuzz; document the rationale for 0755 in afl-plot.
+ Lower the output dir reuse time limit to 25 minutes.
+ Make afl-showmap accept -o /dev/null.
+ Add support for crash / hang info in exit codes of afl-showmap.
+ Tweak block operation scaling to also factor in ballpark run time
in cases where queue passes take very little time.
+ Improve the documentation.
-- Jakub Wilk <email address hidden> Wed, 11 Feb 2015 20:13:55 +0100
-
afl (1.36b-1) experimental; urgency=low
* New upstream release:
+ Improve the naming of test cases when “orig:” is already present in the
file name.
+ Make substantial improvements to technical_details.txt.
+ Add -s (summary) option to afl-whatsup.
+ Add a sanity check in afl-tmin to detect minimization to zero len or
excess hangs.
+ Fix alphabet size counter in afl-tmin.
+ Slightly improve the handling of -B in afl-fuzz.
+ Fix process crash messages with -m none.
+ Add support for black-box instrumentation of binary-only code.
This is not enabled in Debian for the time being.
+ Modify afl-tmin and afl-showmap to search $PATH for binaries.
+ Fix an off-by-one bug in queue limit check when resuming sessions,
which could cause null pointer dereference.
* Add patch (afl-cmin-bash.diff) to fix the afl-cmin shebang.
-- Jakub Wilk <email address hidden> Sun, 01 Feb 2015 12:47:32 +0100
-
afl (1.28b-1) experimental; urgency=low
* New upstream release:
+ Improve exec failure detection in afl-fuzz and afl-showmap.
+ Improve Ctrl-C handling in afl-showmap.
+ Rework afl-showmap to support normal options, including -o, -q, -e.
Also add support for timeouts and memory limits.
+ Add afl-tmin, a handy instrumentation-enabled minimizer.
+ Add AFL_DUMB_FORKSRV. This works only in -n mode and allows afl-fuzz to
run with "dummy" fork servers that don't output any instrumentation, but
follow the same protocol.
+ Rename AFL_SKIP_CHECKS as AFL_SKIP_BIN_CHECK.
+ Add afl-cmin, a corpus minimization tool (formerly known as
minimize_corpus.sh).
+ Retire AFL_EDGES_ONLY.
+ Introduce afl-getcpu, an experimental tool to empirically measure
CPU preemption rates.
+ Introduce afl-whatsup, a simple tool for querying the status of local
synced instances of afl-fuzz.
+ Add technical_details.txt to the documentation.
+ Make a tweak to the instrumentation to preserve the directionality
of tuples (i.e., A -> B != B -> A) and to maintain the identity of tight
loops (A -> A). You need to recompile targeted binaries to leverage this.
* Update DEP-8 tests.
-- Jakub Wilk <email address hidden> Mon, 26 Jan 2015 19:34:33 +0100
-
afl (1.18b-1) experimental; urgency=low
* New upstream release:
+ Add AFL_NO_CPU_RED.
+ Tweak the havoc scaling logic added in 1.12b.
+ Add AFL_NO_VAR_CHECK to speed up resumption and inhibit variable path
warnings for some programs.
+ Make the trimmer run even for variable paths.
+ Make the UI a bit more descriptive by adding “n/a” instead of “0” in a
few corner cases.
+ Add code to make resumption pick up from the last known offset in the
queue, rather than always rewinding to the start.
+ Improve the consistency of saving fuzzer_stats, bitmap info, and
auto-dictionaries when aborting fuzzing sessions.
+ Switch to tighter timeout control for slow programs (3x rather than 5x
average exec speed at init).
+ Make several noticeable performance improvements to deterministic
arithmetic and known int steps.
+ Add -t nn+ mode for soft-skipping timing-out paths.
* Update the copyright file.
-- Jakub Wilk <email address hidden> Wed, 21 Jan 2015 11:03:22 +0100
-
afl (1.12b-1) experimental; urgency=low
* New upstream release.
+ Improve dictionary generation to avoid runs of identical bytes.
+ Add havoc cycle scaling to help with slow binaries in -d mode.
+ Add AFL_SYNC_FIRST for afl-fuzz.
+ Switch to more robust box drawing codes.
+ Create faster 64-bit variants of several critical-path bitmap functions.
-- Jakub Wilk <email address hidden> Sat, 17 Jan 2015 23:48:19 +0100
-
afl (1.11b-1) experimental; urgency=low
* New upstream release.
+ Revise the dictionary behavior to use insertion and overwrite in
deterministic steps, rather than just the latter. This improves coverage
with SQL and the like.
-- Jakub Wilk <email address hidden> Tue, 13 Jan 2015 11:07:18 +0100
-
afl (1.08b-1) experimental; urgency=low
* New upstream release.
+ Add code that automatically finds and extracts syntax tokens from the
input corpus.
-- Jakub Wilk <email address hidden> Sat, 10 Jan 2015 15:43:39 +0100
-
afl (1.06b-1) experimental; urgency=low
* New upstream release.
+ Improve error reporting.
+ Tweak the odds of fuzzing non-favored test cases to make sure that
baseline coverage of all inputs is reached sooner.
* Don't compress the minimize_corpus script.
-- Jakub Wilk <email address hidden> Fri, 02 Jan 2015 23:38:13 +0100
-
afl (1.00b-1) experimental; urgency=low
* New upstream release:
+ Slightly improve performance of the splicing code.
+ Fall back to copying when hardlinking input files fail.
+ Add support for in-place resume (-i-).
+ Add support for extra dictionaries.
+ Fix a minor bug in number formatting routines used by the UI.
+ Fix a very rare glitch when running instrumenting 64-bit code that makes
heavy use of XMM registers that are also touched by glibc.
+ Add support for "afl-as --version".
+ Improve calibration timeouts for resumed scans.
-- Jakub Wilk <email address hidden> Tue, 23 Dec 2014 21:59:58 +0100
-
afl (0.90b-1) experimental; urgency=medium
* New upstream release:
+ Move to an algorithm where paths are selected as preferred primarily
based on size and speed, rather than bitmap coverage. This should offer
noticeable performance gains in many use cases.
+ Refactor path calibration code; calibration now takes place as soon as
a test case is discovered, to facilitate better prioritization decisions
later on.
+ Change the way of marking variable paths to avoid .state metadata
inconsistencies.
+ Make sure that calibration routines always create a new test case to
avoid hypothetical problems with utilities that modify the input file.
+ Add bitmap saturation to fuzzer stats and plot data.
* Remove an accidentally included, unused patch.
-- Jakub Wilk <email address hidden> Mon, 15 Dec 2014 14:56:54 +0100
-
afl (0.89b-1) experimental; urgency=low
* New upstream release.
* Remove commented line from debian/rules.
* Update debian/copyright:
+ Add the Upstream-Contact field.
+ Update the Source field.
* Update Lintian overrides.
-- Jakub Wilk <email address hidden> Thu, 11 Dec 2014 18:09:45 +0100
-
afl (0.65b-1) experimental; urgency=low
* Initial release (closes: #766760).
-- Jakub Wilk <email address hidden> Mon, 24 Nov 2014 10:07:02 +0100
