move custom and pythoon mutators examples into examples/

author: Andrea Fioraldi <andreafioraldi@gmail.com> 2020-02-03 13:11:10 +0100
committer: Andrea Fioraldi <andreafioraldi@gmail.com> 2020-02-03 13:11:10 +0100
commit: 2fe7889912c9bb340f302a037585b7b1836ac94f (patch)
tree: 5c3e4e5829f45dce46794ebc2681732738d689fe /examples/argv_fuzzing/argv-fuzz-inl.h
parent: e2eedefc65bec1a04605f117a11ca8bdf9d80323 (diff)
download: afl++-2fe7889912c9bb340f302a037585b7b1836ac94f.tar.gz
1 files changed, 90 insertions, 0 deletions
diff --git a/examples/argv_fuzzing/argv-fuzz-inl.h b/examples/argv_fuzzing/argv-fuzz-inl.h
new file mode 100644
index 00000000..4d880020
--- /dev/null
+++ b/examples/argv_fuzzing/argv-fuzz-inl.h
@@ -0,0 +1,90 @@
+/*
+   american fuzzy lop++ - sample argv fuzzing wrapper
+   ------------------------------------------------
+
+   Originally written by Michal Zalewski
+
+   Copyright 2015 Google Inc. All rights reserved.
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at:
+
+     http://www.apache.org/licenses/LICENSE-2.0
+
+   This file shows a simple way to fuzz command-line parameters with stock
+   afl-fuzz. To use, add:
+
+   #include "/path/to/argv-fuzz-inl.h"
+
+   ...to the file containing main(), ideally placing it after all the
+   standard includes. Next, put AFL_INIT_ARGV(); near the very beginning of
+   main().
+
+   This will cause the program to read NUL-delimited input from stdin and
+   put it in argv[]. Two subsequent NULs terminate the array. Empty
+   params are encoded as a lone 0x02. Lone 0x02 can't be generated, but
+   that shouldn't matter in real life.
+
+   If you would like to always preserve argv[0], use this instead:
+   AFL_INIT_SET0("prog_name");
+
+*/
+
+#ifndef _HAVE_ARGV_FUZZ_INL
+#define _HAVE_ARGV_FUZZ_INL
+
+#include <unistd.h>
+
+#define AFL_INIT_ARGV()          \
+  do {                           \
+                                 \
+    argv = afl_init_argv(&argc); \
+                                 \
+  } while (0)
+
+#define AFL_INIT_SET0(_p)        \
+  do {                           \
+                                 \
+    argv = afl_init_argv(&argc); \
+    argv[0] = (_p);              \
+    if (!argc) argc = 1;         \
+                                 \
+  } while (0)
+
+#define MAX_CMDLINE_LEN 100000
+#define MAX_CMDLINE_PAR 1000
+
+static char** afl_init_argv(int* argc) {
+
+  static char  in_buf[MAX_CMDLINE_LEN];
+  static char* ret[MAX_CMDLINE_PAR];
+
+  char* ptr = in_buf;
+  int   rc = 0;
+
+  if (read(0, in_buf, MAX_CMDLINE_LEN - 2) < 0) {}
+
+  while (*ptr) {
+
+    ret[rc] = ptr;
+    if (ret[rc][0] == 0x02 && !ret[rc][1]) ret[rc]++;
+    rc++;
+
+    while (*ptr)
+      ptr++;
+    ptr++;
+
+  }
+
+  *argc = rc;
+
+  return ret;
+
+}
+
+#undef MAX_CMDLINE_LEN
+#undef MAX_CMDLINE_PAR
+
+#endif                                              /* !_HAVE_ARGV_FUZZ_INL */
+
author	Andrea Fioraldi <andreafioraldi@gmail.com>	2020-02-03 13:11:10 +0100
committer	Andrea Fioraldi <andreafioraldi@gmail.com>	2020-02-03 13:11:10 +0100
commit	2fe7889912c9bb340f302a037585b7b1836ac94f (patch)
tree	5c3e4e5829f45dce46794ebc2681732738d689fe /examples/argv_fuzzing/argv-fuzz-inl.h
parent	e2eedefc65bec1a04605f117a11ca8bdf9d80323 (diff)
download	afl++-2fe7889912c9bb340f302a037585b7b1836ac94f.tar.gz