Merge pull request #816 from realmadsci/add-more-qasan-checks

Add more qasan checks
author: Andrea Fioraldi <andreafioraldi@gmail.com> 2021-03-16 09:10:42 +0100
committer: GitHub <noreply@github.com> 2021-03-16 09:10:42 +0100
commit: 8e11546536979c8d462d927a61f28df5e909b2a0 (patch)
tree: 3c7f110e96121f2e1f4dca2f694894d04bcf0350 /qemu_mode/libqasan/hooks.c
parent: 73641be796feece877a8f141c6351ffb62e596f0 (diff)
parent: 96574854b34b42650190648014c7ca673cfd31ce (diff)
download: afl++-8e11546536979c8d462d927a61f28df5e909b2a0.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/qemu_mode/libqasan/hooks.c b/qemu_mode/libqasan/hooks.c
index 9c406c74..0e6c3e08 100644
--- a/qemu_mode/libqasan/hooks.c
+++ b/qemu_mode/libqasan/hooks.c
@@ -51,6 +51,7 @@ ssize_t write(int fd, const void *buf, size_t count) {
   void *rtv = __builtin_return_address(0);
 
   QASAN_DEBUG("%14p: write(%d, %p, %zu)\n", rtv, fd, buf, count);
+  QASAN_LOAD(buf, count);
   ssize_t r = __lq_libc_write(fd, buf, count);
   QASAN_DEBUG("\t\t = %zd\n", r);
 
@@ -63,6 +64,7 @@ ssize_t read(int fd, void *buf, size_t count) {
   void *rtv = __builtin_return_address(0);
 
   QASAN_DEBUG("%14p: read(%d, %p, %zu)\n", rtv, fd, buf, count);
+  QASAN_STORE(buf, count);
   ssize_t r = __lq_libc_read(fd, buf, count);
   QASAN_DEBUG("\t\t = %zd\n", r);
author	Andrea Fioraldi <andreafioraldi@gmail.com>	2021-03-16 09:10:42 +0100
committer	GitHub <noreply@github.com>	2021-03-16 09:10:42 +0100
commit	8e11546536979c8d462d927a61f28df5e909b2a0 (patch)
tree	3c7f110e96121f2e1f4dca2f694894d04bcf0350 /qemu_mode/libqasan/hooks.c
parent	73641be796feece877a8f141c6351ffb62e596f0 (diff)
parent	96574854b34b42650190648014c7ca673cfd31ce (diff)
download	afl++-8e11546536979c8d462d927a61f28df5e909b2a0.tar.gz