Lines Matching defs:afl_forkserver
99 typedef struct afl_forkserver { struct
103 u8 *trace_bits; /* SHM with instrumentation bitmap */
105 s32 fsrv_pid, /* PID of the fork server */
106 child_pid, /* PID of the fuzzed program */
107 child_status, /* waitpid result for the child */
108 out_dir_fd; /* FD of the lock file */
110 s32 out_fd, /* Persistent fd for fsrv->out_file */
111 dev_urandom_fd, /* Persistent fd for /dev/urandom */
113 dev_null_fd, /* Persistent fd for /dev/null */
114 fsrv_ctl_fd, /* Fork server control pipe (write) */
115 fsrv_st_fd; /* Fork server status pipe (read) */
117 u32 exec_tmout; /* Configurable exec timeout (ms) */
118 u32 init_tmout; /* Configurable init timeout (ms) */
119 u32 map_size; /* map size used by the target */
120 u32 real_map_size; /* real map size, unaligned */
121 u32 snapshot; /* is snapshot feature used */
122 u64 mem_limit; /* Memory cap for child (MB) */
124 u64 total_execs; /* How often run_target was called */
126 u8 *out_file, /* File to fuzz, if any */
127 *target_path; /* Path of the target */
129 FILE *plot_file, /* Gnuplot output file */
130 *det_plot_file;
133 u32 last_run_timed_out; /* Traced process timed out? */
135 u8 last_kill_signal; /* Signal that killed the child */
137 bool use_shmem_fuzz; /* use shared mem for test cases */
139 bool support_shmem_fuzz; /* set by afl-fuzz */
141 bool use_fauxsrv; /* Fauxsrv for non-forking targets? */
143 bool qemu_mode; /* if running in qemu mode or not */
145 bool frida_mode; /* if running in frida mode or not */
147 bool frida_asan; /* if running with asan in frida mode */
149 bool cs_mode; /* if running in CoreSight mode or not */
151 bool use_stdin; /* use stdin for sending data */
153 bool no_unlink; /* do not unlink cur_input */
155 bool uses_asan; /* Target uses ASAN? */
180 void (*init_child_func)(struct afl_forkserver *fsrv, char **argv); argument
182 u8 *afl_ptr; /* for autodictionary: afl ptr */
207 } afl_forkserver_t; argument