fuzzing: improve coverage (#2495)

Fix detection of WebDAV and Gnutella (over HTTP) Fix detection of z3950 Add two fuzzers to test `ndpi_memmem()` and `ndpi_strnstr()` Remove some dead code: * RTP: the same exact check is performed at the very beginning of the function * MQTT: use a better helper to exclude the protocol * Colletd: `ndpi_hostname_sni_set()` never fails Update pl7m code (fix a Use-of-uninitialized-value error)
author: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com> 2024-07-12 14:22:25 +0200
committer: GitHub <noreply@github.com> 2024-07-12 14:22:25 +0200
commit: c3ba65311e2cf4aba8b51cdb6800a5654ef1d060 (patch)
tree: 7f0aa30fc4ab1d0aaec75f08b84cb7f3705d29fa /fuzz/fuzz_alg_strnstr.cpp
parent: 456f0fd4279ae727831a80c506a343b8a9aedd90 (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/fuzz/fuzz_alg_strnstr.cpp b/fuzz/fuzz_alg_strnstr.cpp
new file mode 100644
index 000000000..1a2bd3d2f
--- /dev/null
+++ b/fuzz/fuzz_alg_strnstr.cpp
@@ -0,0 +1,18 @@
+#include "ndpi_api.h"
+
+#include "fuzzer/FuzzedDataProvider.h"
+
+extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
+  FuzzedDataProvider fuzzed_data(data, size);
+  u_int16_t len;
+
+  /* No real memory allocations involved */
+
+  len = fuzzed_data.ConsumeIntegral<u_int16_t>();
+  std::string haystack = fuzzed_data.ConsumeRandomLengthString();
+  std::string needle = fuzzed_data.ConsumeRandomLengthString();
+
+  ndpi_strnstr(haystack.c_str(), needle.c_str(), len);
+
+  return 0;
+}
author	Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>	2024-07-12 14:22:25 +0200
committer	GitHub <noreply@github.com>	2024-07-12 14:22:25 +0200
commit	c3ba65311e2cf4aba8b51cdb6800a5654ef1d060 (patch)
tree	7f0aa30fc4ab1d0aaec75f08b84cb7f3705d29fa /fuzz/fuzz_alg_strnstr.cpp
parent	456f0fd4279ae727831a80c506a343b8a9aedd90 (diff)