agoodm88

Thanks, this does get me further. After completing this I run into criu complaining that it wants netspace to dump a tun link: (00.012713) Error (criu/tun.c:306): tun: Net namespace is...

Its not the arg list I am struggling with now, criu wants the application running in a separate namespace (I believe?) so I tried modifying "client": and "server": lines adding...

I am not sure what you mean here, I tried adding the path to the directory with the binary in it to "server_files": ["/path/to/dir/with/binary"] But I still see Error while...

I am already running with "server_envs": {"QEMU_STRACE": "1"}, Where would I see the errors which might help me diagnose what is wrong? What is server_files supposed to be set to?...

Because criu is complaining that I need one if I dont use one: (00.012713) Error (criu/tun.c:306): tun: Net namespace is required to dump tun link Maybe its not possible to...

I am only really interested in fuzzing the negotiation phase of the connection, not the established connection once its created (where data would flow over the tun device). Does this...

Thanks for your input. Running the entire session in an 'unshare -n /bin/bash' session, and the edit you posted above both result in things getting further before bailing out. Both...

Thanks, very interesting points. I had presumed that for fuzzing purposes a static set of 'random' data might be better as I've had interesting problems fuzzing stuff that uses random...

Sure, do you have an email address or method I can contact you off list?

Hiya, Many thanks once again for taking the time to look at this at the week end and indeed sharing this interesting project. I've had this running for a few...