Giters

0vercl0k / wtf

wtf is a distributed, code-coverage guided, customizable, cross-platform snapshot-based fuzzer designed for attacking user and / or kernel-mode targets running on Microsoft Windows and Linux user-mode (experimental!).

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Crash file not generated

donghyunlee00 opened this issue · comments

commented 
...
#30220 cov: 76576 exec/s: 15.2 lastcov: 6.0s crash: 37 timeout: 0 cr3: 17696 uptime: 33.2min

The client.cc log indicates a crash, but the crash_detection_umode.cc log has no output and no crash file is generated.

I used the code below.

if (!SetupFilesystemHooks()) {
  fmt::print("Failed to SetupFilesystemHooks\n");
  return false;
}

If I input the crash file directly, it seems that the crash detection is normal.

$ sudo ../../src/build/wtf run --name abc --state state --backend kvm --limit 100 --input null_dereference.xlsx
The debugger instance is loaded with 19 items
Parsing coverage/xxx.cov..
Parsing coverage/yyy.cov..
Applied 1367271 code coverage breakpoints
Setting debug register status to zero.
Setting debug register status to zero.
Resolved breakpoint 0x72cbb5a7 at GPA 0x716135a7 aka HVA 0x55c0ed34c5a7
Resolved breakpoint 0x6fbc3640 at GPA 0x75097640 aka HVA 0x55c0f0143640
Resolved breakpoint 0x76546b80 at GPA 0xd6ae3b80 aka HVA 0x55c0f04ffb80
Resolved breakpoint 0x6f018f50 at GPA 0x667c4f50 aka HVA 0x55c0ec896f50
Resolved breakpoint 0x7ffb7502d110 at GPA 0x100f8e110 aka HVA 0x55c0f0501110
Resolved breakpoint 0x7ffb7502d6d0 at GPA 0x100f8e6d0 aka HVA 0x55c0f05016d0
Resolved breakpoint 0x7ffb7502d9d0 at GPA 0x100f8e9d0 aka HVA 0x55c0f05019d0
Resolved breakpoint 0xfffff80438888a00 at GPA 0x2e88a00 aka HVA 0x55c0f0503a00
Resolved breakpoint 0xfffff804387fbc40 at GPA 0x2dfbc40 aka HVA 0x55c0f0505c40
Resolved breakpoint 0xfffff804387ea3b0 at GPA 0x2dea3b0 aka HVA 0x55c0f05073b0
Resolved breakpoint 0xfffff80438465f70 at GPA 0x2a65f70 aka HVA 0x55c0f0509f70
Resolved breakpoint 0xfffff80438809d50 at GPA 0x2e09d50 aka HVA 0x55c0f050bd50
Resolved breakpoint 0xfffff8043880a980 at GPA 0x2e0a980 aka HVA 0x55c0f050d980
Could not set a breakpoint at hal!HalpPerfInterrupt.
Failed to set breakpoint on HalpPerfInterrupt, but ignoring..
Resolved breakpoint 0xfffff804387118c0 at GPA 0x2d118c0 aka HVA 0x55c0f050f8c0
Resolved breakpoint 0xfffff804385ff950 at GPA 0x2bff950 aka HVA 0x55c0f0511950
Resolved breakpoint 0x7ffb74fe1210 at GPA 0x101495210 aka HVA 0x55c0f0513210
Resolved breakpoint 0xfffff80438608d00 at GPA 0x2c08d00 aka HVA 0x55c0f0515d00
Running null_dereference.xlsx
ucrash: KiRaiseSecurityCheckFailure triggered @ 0xfffff8043865c985
--------------------------------------------------
Run stats:
          Dirty pages: 51257344 bytes, 12514 pages, 3 MB
            UffdPages: 82870272 bytes, 20232 pages, 4 MB
              VMExits: 4762
#1 cov: 4582 exec/s: 0.3 lastcov: 0.0s crash: 1 timeout: 0 cr3: 0 uptime: 3.0s