#include "ndpi_api.h" #include "fuzz_common_code.h" #include #include #include #include "fuzzer/FuzzedDataProvider.h" extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) { FuzzedDataProvider fuzzed_data(data, size); u_int16_t i, num_iteration; ndpi_serializer serializer, serializer_cloned, deserializer; ndpi_serialization_format fmt; int rc; std::vectord; char kbuf[32]; u_int32_t buffer_len, kbuf_len; /* To allow memory allocation failures */ fuzz_set_alloc_callbacks_and_seed(size); fmt = static_cast(fuzzed_data.ConsumeIntegralInRange(1, 5)); if (fuzzed_data.ConsumeBool()) rc = ndpi_init_serializer(&serializer, fmt); else rc = ndpi_init_serializer_ll(&serializer, fmt, fuzzed_data.ConsumeIntegralInRange(0, 64)); if (rc != 0) return 0; if (fmt == ndpi_serialization_format_csv) ndpi_serializer_set_csv_separator(&serializer, ','); num_iteration = fuzzed_data.ConsumeIntegralInRange(0, 8); for (i = 0; i < num_iteration; i++) { memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */ snprintf(kbuf, sizeof(kbuf), "Key %d", i); ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_uint32_int32(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_uint32_uint64(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_uint32_int64(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_uint32_float(&serializer, i, fuzzed_data.ConsumeFloatingPoint(), "%f"); if (fmt != ndpi_serialization_format_tlv) ndpi_serialize_uint32_double(&serializer, i, fuzzed_data.ConsumeFloatingPoint(), "%lf"); d = fuzzed_data.ConsumeBytes(16); ndpi_serialize_uint32_binary(&serializer, i, d.data(), d.size()); ndpi_serialize_uint32_string(&serializer, i, fuzzed_data.ConsumeBytesAsString(8).c_str()); ndpi_serialize_uint32_boolean(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_uint32(&serializer, kbuf, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_uint32_format(&serializer, kbuf, fuzzed_data.ConsumeIntegral(), "%d"); ndpi_serialize_string_int32(&serializer, kbuf, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_uint64(&serializer, kbuf, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_int64(&serializer, kbuf, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint(), "%f"); if (fmt != ndpi_serialization_format_tlv) ndpi_serialize_string_double(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint(), "%lf"); d = fuzzed_data.ConsumeBytes(16); if (d.size()) ndpi_serialize_string_binary(&serializer, kbuf, d.data(), d.size()); ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str()); d = fuzzed_data.ConsumeBytes(16); if (d.size()) ndpi_serialize_string_raw(&serializer, kbuf, d.data(), d.size()); ndpi_serialize_string_boolean(&serializer, kbuf, fuzzed_data.ConsumeIntegral()); if (fuzzed_data.ConsumeBool()) { snprintf(kbuf, sizeof(kbuf), "%d", i); /* To trigger OPTIMIZE_NUMERIC_KEYS */ kbuf_len = strlen(kbuf); } else { kbuf_len = sizeof(kbuf); } ndpi_serialize_binary_uint32(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral()); ndpi_serialize_binary_int32(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral()); ndpi_serialize_binary_uint64(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral()); ndpi_serialize_binary_int64(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral()); ndpi_serialize_binary_float(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeFloatingPoint(), "%f"); if (fmt != ndpi_serialization_format_tlv) ndpi_serialize_binary_double(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeFloatingPoint(), "%lf"); ndpi_serialize_binary_boolean(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral()); d = fuzzed_data.ConsumeBytes(16); if (d.size()) ndpi_serialize_binary_binary(&serializer, kbuf, kbuf_len, d.data(), d.size()); if ((i & 0x3) == 0x3) ndpi_serialize_end_of_record(&serializer); } ndpi_serializer_create_snapshot(&serializer); if (fuzzed_data.ConsumeBool()) ndpi_serializer_skip_header(&serializer); if (fuzzed_data.ConsumeBool()) { ndpi_serialize_start_of_block(&serializer, "Block"); memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */ snprintf(kbuf, sizeof(kbuf), "K-Ignored"); ndpi_serialize_uint32_uint32(&serializer, fuzzed_data.ConsumeIntegral(), fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str()); ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint(), "%f"); ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral()); ndpi_serialize_end_of_block(&serializer); } if (fuzzed_data.ConsumeBool()) { ndpi_serialize_start_of_block_uint32(&serializer, 0); memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */ snprintf(kbuf, sizeof(kbuf), "K32-Ignored"); ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str()); ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint(), "%f"); ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral()); ndpi_serialize_end_of_block(&serializer); } if (fmt == ndpi_serialization_format_json) { if (fuzzed_data.ConsumeBool()) { d = fuzzed_data.ConsumeBytes(8); if (d.size()) ndpi_serialize_raw_record(&serializer, (u_char *)d.data(), d.size()); } } if (fuzzed_data.ConsumeBool()) ndpi_serializer_rollback_snapshot(&serializer); rc = ndpi_serialize_start_of_list(&serializer, "List"); if (rc == 0) { num_iteration = fuzzed_data.ConsumeIntegralInRange(0, 8); for (i = 0; i < num_iteration; i++) { memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */ snprintf(kbuf, sizeof(kbuf), "Ignored"); ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral()); ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str()); ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint(), "%f"); ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral()); } ndpi_serialize_end_of_list(&serializer); ndpi_serialize_string_string(&serializer, "Last", "Ok"); } if (fmt == ndpi_serialization_format_csv) { ndpi_serializer_get_header(&serializer, &buffer_len); ndpi_serializer_get_buffer(&serializer, &buffer_len); ndpi_serializer_set_buffer_len(&serializer, fuzzed_data.ConsumeIntegral()); } else if (fmt == ndpi_serialization_format_tlv) { /* Conversion from tlv to json */ rc = ndpi_init_deserializer(&deserializer, &serializer); if (rc == 0) { rc = ndpi_init_serializer_ll(&serializer_cloned, ndpi_serialization_format_json, fuzzed_data.ConsumeIntegralInRange(0, 2048)); if (rc == 0) { ndpi_deserialize_clone_all(&deserializer, &serializer_cloned); ndpi_serializer_get_format(&serializer_cloned); ndpi_serializer_get_buffer(&serializer_cloned, &buffer_len); ndpi_serializer_get_buffer_len(&serializer_cloned); ndpi_serializer_get_internal_buffer_size(&serializer_cloned); ndpi_term_serializer(&serializer_cloned); assert(ndpi_deserialize_get_format(&deserializer) == ndpi_serialization_format_tlv); } } rc = ndpi_init_deserializer(&deserializer, &serializer); if (rc == 0) { rc = ndpi_init_serializer_ll(&serializer_cloned, ndpi_serialization_format_tlv, fuzzed_data.ConsumeIntegralInRange(0, 2048)); if (rc == 0) { ndpi_deserialize_clone_item(&deserializer, &serializer_cloned); ndpi_term_serializer(&serializer_cloned); } } } ndpi_term_serializer(&serializer); return 0; }