From 0535e54484467861a6f5a98ad36c980e9c24ee23 Mon Sep 17 00:00:00 2001
From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>
Date: Fri, 12 Apr 2024 22:55:51 +0200
Subject: STUN: fix boundary checks on attribute list parsing (#2387)

Restore all unit tests.
Add some configuration knobs.
Fix the endianess.
---
 fuzz/fuzz_config.cpp | 10 ++++++++++
 1 file changed, 10 insertions(+)

(limited to 'fuzz/fuzz_config.cpp')

diff --git a/fuzz/fuzz_config.cpp b/fuzz/fuzz_config.cpp
index 3654e583e..708b4b048 100644
--- a/fuzz/fuzz_config.cpp
+++ b/fuzz/fuzz_config.cpp
@@ -178,6 +178,16 @@ extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
     sprintf(cfg_value, "%d", value);
     ndpi_set_config(ndpi_info_mod, "stun", "max_packets_extra_dissection", cfg_value);
   }
+  if(fuzzed_data.ConsumeBool()) {
+    value = fuzzed_data.ConsumeIntegralInRange(0, 1 + 1);
+    sprintf(cfg_value, "%d", value);
+    ndpi_set_config(ndpi_info_mod, "stun", "metadata.attribute.response_origin", cfg_value);
+  }
+  if(fuzzed_data.ConsumeBool()) {
+    value = fuzzed_data.ConsumeIntegralInRange(0, 1 + 1);
+    sprintf(cfg_value, "%d", value);
+    ndpi_set_config(ndpi_info_mod, "stun", "metadata.attribute.other_address", cfg_value);
+  }
   if(fuzzed_data.ConsumeBool()) {
     value = fuzzed_data.ConsumeIntegralInRange(0, 1 + 1);
     sprintf(cfg_value, "%d", value);
-- 
cgit v1.2.3