From 245304f5938a700e93a3403b30509dea55a6549e Mon Sep 17 00:00:00 2001
From: h1994st <h1994st@gmail.com>
Date: Fri, 27 Mar 2020 02:03:20 -0400
Subject: Add a test case for the custom mutator

- Update the Makefile in examples/custom_mutators
- Add a test program for testing the custom mutator
- Update test.sh for testing the custom mutator
- [TODO] Update the result checking criterias of the custom mutator in
test.sh
---
 test/test-custom-mutator.c | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 test/test-custom-mutator.c

(limited to 'test/test-custom-mutator.c')

diff --git a/test/test-custom-mutator.c b/test/test-custom-mutator.c
new file mode 100644
index 00000000..b44c3634
--- /dev/null
+++ b/test/test-custom-mutator.c
@@ -0,0 +1,20 @@
+/**
+ * Reference: https://github.com/bruce30262/libprotobuf-mutator_fuzzing_learning/blob/master/4_libprotobuf_aflpp_custom_mutator/vuln.c
+ */
+
+#include <stdio.h>
+#include <string.h>
+#include <math.h>
+#include <stdlib.h>
+#include <unistd.h>
+
+int main(int argc, char *argv[])
+{
+    char str[100]={ };
+    read(0, str, 100);
+    int *ptr = NULL;
+    if( str[0] == 'P') {
+        *ptr = 123;
+    }
+    return 0;
+}
-- 
cgit 1.4.1


From 710a29a1e0b8c874cdba43a16879f7f77e917713 Mon Sep 17 00:00:00 2001
From: Dominik Maier <domenukk@gmail.com>
Date: Mon, 30 Mar 2020 18:20:20 +0200
Subject: fixed testcase

---
 test/test-custom-mutator.c | 7 +++----
 test/test.sh               | 4 +---
 2 files changed, 4 insertions(+), 7 deletions(-)

(limited to 'test/test-custom-mutator.c')

diff --git a/test/test-custom-mutator.c b/test/test-custom-mutator.c
index b44c3634..83baafab 100644
--- a/test/test-custom-mutator.c
+++ b/test/test-custom-mutator.c
@@ -10,11 +10,10 @@
 
 int main(int argc, char *argv[])
 {
-    char str[100]={ };
+    char str[100];
     read(0, str, 100);
-    int *ptr = NULL;
-    if( str[0] == 'P') {
-        *ptr = 123;
+    if( str[6] == 'A') {
+        abort();
     }
     return 0;
 }
diff --git a/test/test.sh b/test/test.sh
index 25aaad58..3e1b6c43 100755
--- a/test/test.sh
+++ b/test/test.sh
@@ -913,9 +913,7 @@ test -e test-custom-mutator.c -a -e ${CUSTOM_MUTATOR_PATH}/example.c -a -e ${CUS
     # Run afl-fuzz w/ the C mutator
     $ECHO "$GREY[*] running afl-fuzz for the C mutator, this will take approx 10 seconds"
     {
-      export AFL_CUSTOM_MUTATOR_LIBRARY=${CUSTOM_MUTATOR_PATH}/libexamplemutator.so
-      ../afl-fuzz -V10 -m ${MEM_LIMIT} -i in -o out -- ./test-custom-mutator >>errors 2>&1
-      unset AFL_CUSTOM_MUTATOR_LIBRARY
+      AFL_CUSTOM_MUTATOR_LIBRARY=${CUSTOM_MUTATOR_PATH}/libexamplemutator.so ../afl-fuzz -V10 -m ${MEM_LIMIT} -i in -o out -- ./test-custom-mutator >>errors 2>&1
     } >>errors 2>&1
 
     # Check results
-- 
cgit 1.4.1