Merge pull request #1944 from AFLplusplus/inject

Inject fuzzing
author: van Hauser <vh@thc.org> 2023-12-30 10:51:47 +0100
committer: GitHub <noreply@github.com> 2023-12-30 10:51:47 +0100
commit: 2260a065f41d055d7e1515c620c18772ae7915d6 (patch)
tree: 19553169a33d1506c3a6bac675caa60adf24bff3 /src/afl-fuzz.c
parent: c39596c8bf44c9fe04180d9cf298fd2db36637ac (diff)
parent: 1eb54c4c3eb4ab4bc12f7f1f80f5ece15b238ef0 (diff)
download: afl++-2260a065f41d055d7e1515c620c18772ae7915d6.tar.gz
1 files changed, 28 insertions, 0 deletions
diff --git a/src/afl-fuzz.c b/src/afl-fuzz.c
index dd990e71..17949fd7 100644
--- a/src/afl-fuzz.c
+++ b/src/afl-fuzz.c
@@ -1749,6 +1749,34 @@ int main(int argc, char **argv_orig, char **envp) {
 
   }
 
+  // Marker: ADD_TO_INJECTIONS
+  if (getenv("AFL_LLVM_INJECTIONS_ALL") || getenv("AFL_LLVM_INJECTIONS_SQL") ||
+      getenv("AFL_LLVM_INJECTIONS_LDAP") || getenv("AFL_LLVM_INJECTIONS_XSS")) {
+
+    OKF("Adding injection tokens to dictionary.");
+    if (getenv("AFL_LLVM_INJECTIONS_ALL") ||
+        getenv("AFL_LLVM_INJECTIONS_SQL")) {
+
+      add_extra(afl, "'\"\"'", 4);
+
+    }
+
+    if (getenv("AFL_LLVM_INJECTIONS_ALL") ||
+        getenv("AFL_LLVM_INJECTIONS_LDAP")) {
+
+      add_extra(afl, "*)(1=*))(|", 10);
+
+    }
+
+    if (getenv("AFL_LLVM_INJECTIONS_ALL") ||
+        getenv("AFL_LLVM_INJECTIONS_XSS")) {
+
+      add_extra(afl, "1\"><\"", 5);
+
+    }
+
+  }
+
   OKF("Generating fuzz data with a length of min=%u max=%u", afl->min_length,
       afl->max_length);
   u32 min_alloc = MAX(64U, afl->min_length);
author	van Hauser <vh@thc.org>	2023-12-30 10:51:47 +0100
committer	GitHub <noreply@github.com>	2023-12-30 10:51:47 +0100
commit	2260a065f41d055d7e1515c620c18772ae7915d6 (patch)
tree	19553169a33d1506c3a6bac675caa60adf24bff3 /src/afl-fuzz.c
parent	c39596c8bf44c9fe04180d9cf298fd2db36637ac (diff)
parent	1eb54c4c3eb4ab4bc12f7f1f80f5ece15b238ef0 (diff)
download	afl++-2260a065f41d055d7e1515c620c18772ae7915d6.tar.gz