dropbear: fuzz-harness.c annotate

annotate fuzz-harness.c @ 1630:9579377b5f8b

use strlcpy & strlcat (#74) * refactor checkpubkeyperms() with safe BSD functions fix gcc8 warnings ``` svr-authpubkey.c: In function 'checkpubkeyperms': svr-authpubkey.c:427:2: warning: 'strncat' specified bound 5 equals source length [-Wstringop-overflow=] strncat(filename, "/.ssh", 5); /* strlen("/.ssh") == 5 */ ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~ svr-authpubkey.c:433:2: warning: 'strncat' specified bound 16 equals source length [-Wstringop-overflow=] strncat(filename, "/authorized_keys", 16); ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ``` see https://www.sudo.ws/todd/papers/strlcpy.html * restore strlcpy in xstrdup see original https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/xmalloc.c?rev=1.16

author	François Perrad <francois.perrad@gadz.org>
date	Wed, 20 Mar 2019 15:09:19 +0100
parents	bff41a61a1b6
children	dfbe947bdf0d

rev	line source
1348 5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	1 #include "includes.h"
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	2 #include "buffer.h"
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	3 #include "dbutil.h"
1348 5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	4
5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	5 extern int LLVMFuzzerTestOneInput(const unsigned char *data, size_t size);
5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	6
5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	7 int main(int argc, char ** argv) {
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	8 int i;
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	9 buffer *input = buf_new(100000);
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	10
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	11 for (i = 1; i < argc; i++) {
1589 35af85194268 Add kexdh and kexecdh fuzzers Matt Johnston <matt@ucc.asn.au> parents: 1559 diff changeset	12 printf("arg %s\n", argv[i]);
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	13 #if DEBUG_TRACE
b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	14 if (strcmp(argv[i], "-v") == 0) {
b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	15 debug_trace = 1;
1373 9891bc31a1b3 fuzzers disable logging by default Matt Johnston <matt@ucc.asn.au> parents: 1363 diff changeset	16 TRACE(("debug printing on"))
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	17 }
1357 08f4fa4dc6a0 closer to working Matt Johnston <matt@ucc.asn.au> parents: 1354 diff changeset	18 #endif
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	19 }
1357 08f4fa4dc6a0 closer to working Matt Johnston <matt@ucc.asn.au> parents: 1354 diff changeset	20
1605 bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	21 int old_fuzz_wrapfds = 0;
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	22 for (i = 1; i < argc; i++) {
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	23 if (argv[i][0] == '-') {
1559 92c93b4a3646 Fix to be able to compile normal(ish) binaries with --enable-fuzz Matt Johnston <matt@ucc.asn.au> parents: 1373 diff changeset	24 /* ignore arguments */
1363 b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	25 continue;
b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	26 }
b2f295125ed6 -v for debug_trace Matt Johnston <matt@ucc.asn.au> parents: 1358 diff changeset	27
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	28 char* fn = argv[i];
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	29 buf_setlen(input, 0);
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	30 buf_readfile(input, fn);
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	31 buf_setpos(input, 0);
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	32
1605 bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	33 fuzz.wrapfds = old_fuzz_wrapfds;
1358 6b89eb92f872 glaring wrapfd problems fixed Matt Johnston <matt@ucc.asn.au> parents: 1357 diff changeset	34 printf("Running %s once \n", fn);
6b89eb92f872 glaring wrapfd problems fixed Matt Johnston <matt@ucc.asn.au> parents: 1357 diff changeset	35 LLVMFuzzerTestOneInput(input->data, input->len);
6b89eb92f872 glaring wrapfd problems fixed Matt Johnston <matt@ucc.asn.au> parents: 1357 diff changeset	36 printf("Running %s twice \n", fn);
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	37 LLVMFuzzerTestOneInput(input->data, input->len);
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	38 printf("Done %s\n", fn);
1605 bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	39
bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	40 /* Disable wrapfd so it won't interfere with buf_readfile() above */
bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	41 old_fuzz_wrapfds = fuzz.wrapfds;
bff41a61a1b6 Disable wrapfds outside of fuzzed code Matt Johnston <matt@ucc.asn.au> parents: 1589 diff changeset	42 fuzz.wrapfds = 0;
1354 7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	43 }
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	44
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	45 printf("Finished\n");
7618759e9327 better harness Matt Johnston <matt@ucc.asn.au> parents: 1348 diff changeset	46
1348 5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	47 return 0;
5c2899e35b63 fuzz harness Matt Johnston <matt@ucc.asn.au> parents: diff changeset	48 }

Mercurial > dropbear

annotate fuzz-harness.c @ 1630:9579377b5f8b