add afl-fuzz -y fuzz length support

author: vanhauser-thc <vh@thc.org> 2022-02-05 08:27:17 +0100
committer: vanhauser-thc <vh@thc.org> 2022-02-05 08:27:17 +0100
commit: d5b9cd4b73253c2fbbc7da88015ae0eac303eb32 (patch)
tree: 987c3ab057607e26bba6fbd7309f894d6107b07d /include
parent: ce5032cc2949366260db12a7d52699b23ff9cda4 (diff)
download: afl++-d5b9cd4b73253c2fbbc7da88015ae0eac303eb32.tar.gz
1 files changed, 6 insertions, 3 deletions
diff --git a/include/afl-fuzz.h b/include/afl-fuzz.h
index e225211f..3712fc4f 100644
--- a/include/afl-fuzz.h
+++ b/include/afl-fuzz.h
@@ -726,6 +726,9 @@ typedef struct afl_state {
   /* queue entries ready for splicing count (len > 4) */
   u32 ready_for_splicing_count;
 
+  /* min/max length for generated fuzzing inputs */
+  u32 min_length, max_length;
+
   /* This is the user specified maximum size to use for the testcase cache */
   u64 q_testcase_max_cache_size;
 
@@ -1090,12 +1093,12 @@ int  statsd_format_metric(afl_state_t *afl, char *buff, size_t bufflen);
 
 /* Run */
 
-fsrv_run_result_t fuzz_run_target(afl_state_t *, afl_forkserver_t *fsrv, u32);
-void              write_to_testcase(afl_state_t *, void *, u32);
-u8   calibrate_case(afl_state_t *, struct queue_entry *, u8 *, u32, u8);
 void sync_fuzzers(afl_state_t *);
+u32  write_to_testcase(afl_state_t *, void *, u32, u32);
+u8   calibrate_case(afl_state_t *, struct queue_entry *, u8 *, u32, u8);
 u8   trim_case(afl_state_t *, struct queue_entry *, u8 *);
 u8   common_fuzz_stuff(afl_state_t *, u8 *, u32);
+fsrv_run_result_t fuzz_run_target(afl_state_t *, afl_forkserver_t *fsrv, u32);
 
 /* Fuzz one */
author	vanhauser-thc <vh@thc.org>	2022-02-05 08:27:17 +0100
committer	vanhauser-thc <vh@thc.org>	2022-02-05 08:27:17 +0100
commit	d5b9cd4b73253c2fbbc7da88015ae0eac303eb32 (patch)
tree	987c3ab057607e26bba6fbd7309f894d6107b07d /include
parent	ce5032cc2949366260db12a7d52699b23ff9cda4 (diff)
download	afl++-d5b9cd4b73253c2fbbc7da88015ae0eac303eb32.tar.gz