aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

afl: enable afl dumps by envvar

Browse Source 
If SC_AFL_DUMP_FILES is set the inputs are stored to disk.
pull/3022/head
Victor Julien 9 years ago
parent f1da18ec1a
commit 71c3141ec6
1 changed files with 38 additions and 29 deletions
Show Stats Download Patch File Download Diff File

67
src/app-layer-parser.c
Unescape Escape View File

@ -1459,6 +1459,7 @@ void AppLayerParserStatePrintDetails(AppLayerParserState *pstate)
#ifdef AFLFUZZ_APPLAYER #ifdef AFLFUZZ_APPLAYER
int AppLayerParserRequestFromFile(uint8_t ipproto, AppProto alproto, char *filename) int AppLayerParserRequestFromFile(uint8_t ipproto, AppProto alproto, char *filename)
{ {
bool do_dump = (getenv("SC_AFL_DUMP_FILES") != NULL);
struct timeval ts; struct timeval ts;
memset(&ts, 0, sizeof(ts)); memset(&ts, 0, sizeof(ts));
gettimeofday(&ts, NULL); gettimeofday(&ts, NULL);
@ -1504,13 +1505,15 @@ int AppLayerParserRequestFromFile(uint8_t ipproto, AppProto alproto, char *filen
if (size < sizeof(buffer)) if (size < sizeof(buffer))
done = 1; done = 1;
char outfilename[256]; if (do_dump) {
snprintf(outfilename, sizeof(outfilename), "dump/%u-%u.%u", char outfilename[256];
(unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, cnt); snprintf(outfilename, sizeof(outfilename), "dump/%u-%u.%u",
FILE *out_fp = fopen(outfilename, "w"); (unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, cnt);
BUG_ON(out_fp == NULL); FILE *out_fp = fopen(outfilename, "w");
(void)fwrite(buffer, size, 1, out_fp); BUG_ON(out_fp == NULL);
fclose(out_fp); (void)fwrite(buffer, size, 1, out_fp);
fclose(out_fp);
}
//SCLogInfo("result %u done %d start %d", (uint)result, done, start); //SCLogInfo("result %u done %d start %d", (uint)result, done, start);
uint8_t flags = STREAM_TOSERVER; uint8_t flags = STREAM_TOSERVER;
@ -1536,13 +1539,15 @@ int AppLayerParserRequestFromFile(uint8_t ipproto, AppProto alproto, char *filen
} }
#endif /* AFLFUZZ_PERSISTANT_MODE */ #endif /* AFLFUZZ_PERSISTANT_MODE */
/* if we get here there was no crash, so we can remove our files */ if (do_dump) {
uint32_t x = 0; /* if we get here there was no crash, so we can remove our files */
for (x = 0; x < cnt; x++) { uint32_t x = 0;
char rmfilename[256]; for (x = 0; x < cnt; x++) {
snprintf(rmfilename, sizeof(rmfilename), "dump/%u-%u.%u", char rmfilename[256];
(unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, x); snprintf(rmfilename, sizeof(rmfilename), "dump/%u-%u.%u",
unlink(rmfilename); (unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, x);
unlink(rmfilename);
}
} }
result = 0; result = 0;
@ -1622,6 +1627,7 @@ end:
int AppLayerParserFromFile(uint8_t ipproto, AppProto alproto, char *filename) int AppLayerParserFromFile(uint8_t ipproto, AppProto alproto, char *filename)
{ {
bool do_dump = (getenv("SC_AFL_DUMP_FILES") != NULL);
struct timeval ts; struct timeval ts;
memset(&ts, 0, sizeof(ts)); memset(&ts, 0, sizeof(ts));
gettimeofday(&ts, NULL); gettimeofday(&ts, NULL);
@ -1667,14 +1673,15 @@ int AppLayerParserFromFile(uint8_t ipproto, AppProto alproto, char *filename)
size_t size = fread(&buffer, 1, sizeof(buffer), fp); size_t size = fread(&buffer, 1, sizeof(buffer), fp);
if (size < sizeof(buffer)) if (size < sizeof(buffer))
done = 1; done = 1;
if (do_dump) {
char outfilename[256]; char outfilename[256];
snprintf(outfilename, sizeof(outfilename), "dump/%u-%u.%u", snprintf(outfilename, sizeof(outfilename), "dump/%u-%u.%u",
(unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, cnt); (unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, cnt);
FILE *out_fp = fopen(outfilename, "w"); FILE *out_fp = fopen(outfilename, "w");
BUG_ON(out_fp == NULL); BUG_ON(out_fp == NULL);
(void)fwrite(buffer, size, 1, out_fp); (void)fwrite(buffer, size, 1, out_fp);
fclose(out_fp); fclose(out_fp);
}
//SCLogInfo("result %u done %d start %d", (uint)result, done, start); //SCLogInfo("result %u done %d start %d", (uint)result, done, start);
uint8_t flags = 0; uint8_t flags = 0;
@ -1709,13 +1716,15 @@ int AppLayerParserFromFile(uint8_t ipproto, AppProto alproto, char *filename)
} }
#endif /* AFLFUZZ_PERSISTANT_MODE */ #endif /* AFLFUZZ_PERSISTANT_MODE */
/* if we get here there was no crash, so we can remove our files */ if (do_dump) {
uint32_t x = 0; /* if we get here there was no crash, so we can remove our files */
for (x = 0; x < cnt; x++) { uint32_t x = 0;
char rmfilename[256]; for (x = 0; x < cnt; x++) {
snprintf(rmfilename, sizeof(rmfilename), "dump/%u-%u.%u", char rmfilename[256];
(unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, x); snprintf(rmfilename, sizeof(rmfilename), "dump/%u-%u.%u",
unlink(rmfilename); (unsigned int)ts.tv_sec, (unsigned int)ts.tv_usec, x);
unlink(rmfilename);
}
} }
result = 0; result = 0;

Write Preview
Loading…
Cancel
Save