1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
|
#include "ndpi_api.h"
#include "fuzz_common_code.h"
#include <stdint.h>
#include <stdio.h>
#include <assert.h>
#include "fuzzer/FuzzedDataProvider.h"
extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
FuzzedDataProvider fuzzed_data(data, size);
u_int16_t i, num_iteration;
ndpi_serializer serializer, serializer_cloned, deserializer;
ndpi_serialization_format fmt;
int rc;
std::vector<char>d;
char kbuf[32];
u_int32_t buffer_len, kbuf_len;
/* To allow memory allocation failures */
fuzz_set_alloc_callbacks_and_seed(size);
fmt = static_cast<ndpi_serialization_format>(fuzzed_data.ConsumeIntegralInRange(1, 5));
if (fuzzed_data.ConsumeBool())
rc = ndpi_init_serializer(&serializer, fmt);
else
rc = ndpi_init_serializer_ll(&serializer, fmt, fuzzed_data.ConsumeIntegralInRange(0, 64));
if (rc != 0)
return 0;
if (fmt == ndpi_serialization_format_csv)
ndpi_serializer_set_csv_separator(&serializer, ',');
num_iteration = fuzzed_data.ConsumeIntegralInRange(0, 8);
for (i = 0; i < num_iteration; i++) {
memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */
snprintf(kbuf, sizeof(kbuf), "Key %d", i);
ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_uint32_int32(&serializer, i, fuzzed_data.ConsumeIntegral<int32_t>());
ndpi_serialize_uint32_uint64(&serializer, i, fuzzed_data.ConsumeIntegral<u_int64_t>());
ndpi_serialize_uint32_int64(&serializer, i, fuzzed_data.ConsumeIntegral<int64_t>());
ndpi_serialize_uint32_float(&serializer, i, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
if (fmt != ndpi_serialization_format_tlv)
ndpi_serialize_uint32_double(&serializer, i, fuzzed_data.ConsumeFloatingPoint<double>(), "%lf");
d = fuzzed_data.ConsumeBytes<char>(16);
ndpi_serialize_uint32_binary(&serializer, i, d.data(), d.size());
ndpi_serialize_uint32_string(&serializer, i, fuzzed_data.ConsumeBytesAsString(8).c_str());
ndpi_serialize_uint32_boolean(&serializer, i, fuzzed_data.ConsumeIntegral<int8_t>());
ndpi_serialize_string_uint32(&serializer, kbuf, fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_string_uint32_format(&serializer, kbuf, fuzzed_data.ConsumeIntegral<u_int32_t>(), "%d");
ndpi_serialize_string_int32(&serializer, kbuf, fuzzed_data.ConsumeIntegral<int32_t>());
ndpi_serialize_string_uint64(&serializer, kbuf, fuzzed_data.ConsumeIntegral<u_int64_t>());
ndpi_serialize_string_int64(&serializer, kbuf, fuzzed_data.ConsumeIntegral<int64_t>());
ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
if (fmt != ndpi_serialization_format_tlv)
ndpi_serialize_string_double(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint<double>(), "%lf");
d = fuzzed_data.ConsumeBytes<char>(16);
if (d.size())
ndpi_serialize_string_binary(&serializer, kbuf, d.data(), d.size());
ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str());
d = fuzzed_data.ConsumeBytes<char>(16);
if (d.size())
ndpi_serialize_string_raw(&serializer, kbuf, d.data(), d.size());
ndpi_serialize_string_boolean(&serializer, kbuf, fuzzed_data.ConsumeIntegral<int8_t>());
if (fuzzed_data.ConsumeBool()) {
snprintf(kbuf, sizeof(kbuf), "%d", i); /* To trigger OPTIMIZE_NUMERIC_KEYS */
kbuf_len = strlen(kbuf);
} else {
kbuf_len = sizeof(kbuf);
}
ndpi_serialize_binary_uint32(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_binary_int32(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral<int32_t>());
ndpi_serialize_binary_uint64(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral<u_int64_t>());
ndpi_serialize_binary_int64(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral<int64_t>());
ndpi_serialize_binary_float(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
if (fmt != ndpi_serialization_format_tlv)
ndpi_serialize_binary_double(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeFloatingPoint<double>(), "%lf");
ndpi_serialize_binary_boolean(&serializer, kbuf, kbuf_len, fuzzed_data.ConsumeIntegral<int8_t>());
d = fuzzed_data.ConsumeBytes<char>(16);
if (d.size())
ndpi_serialize_binary_binary(&serializer, kbuf, kbuf_len, d.data(), d.size());
if ((i & 0x3) == 0x3)
ndpi_serialize_end_of_record(&serializer);
}
ndpi_serializer_create_snapshot(&serializer);
if (fuzzed_data.ConsumeBool())
ndpi_serializer_skip_header(&serializer);
if (fuzzed_data.ConsumeBool()) {
ndpi_serialize_start_of_block(&serializer, "Block");
memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */
snprintf(kbuf, sizeof(kbuf), "K-Ignored");
ndpi_serialize_uint32_uint32(&serializer, fuzzed_data.ConsumeIntegral<u_int32_t>(), fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str());
ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral<int8_t>());
ndpi_serialize_end_of_block(&serializer);
}
if (fuzzed_data.ConsumeBool()) {
ndpi_serialize_start_of_block_uint32(&serializer, 0);
memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */
snprintf(kbuf, sizeof(kbuf), "K32-Ignored");
ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str());
ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral<int8_t>());
ndpi_serialize_end_of_block(&serializer);
}
if (fmt == ndpi_serialization_format_json) {
if (fuzzed_data.ConsumeBool()) {
d = fuzzed_data.ConsumeBytes<char>(8);
if (d.size())
ndpi_serialize_raw_record(&serializer, (u_char *)d.data(), d.size());
}
}
if (fuzzed_data.ConsumeBool())
ndpi_serializer_rollback_snapshot(&serializer);
rc = ndpi_serialize_start_of_list(&serializer, "List");
if (rc == 0) {
num_iteration = fuzzed_data.ConsumeIntegralInRange(0, 8);
for (i = 0; i < num_iteration; i++) {
memset(kbuf, '\0', sizeof(kbuf)); /* It is also used as binary key */
snprintf(kbuf, sizeof(kbuf), "Ignored");
ndpi_serialize_uint32_uint32(&serializer, i, fuzzed_data.ConsumeIntegral<u_int32_t>());
ndpi_serialize_string_string(&serializer, kbuf, fuzzed_data.ConsumeBytesAsString(8).c_str());
ndpi_serialize_string_float(&serializer, kbuf, fuzzed_data.ConsumeFloatingPoint<float>(), "%f");
ndpi_serialize_binary_boolean(&serializer, kbuf, sizeof(kbuf), fuzzed_data.ConsumeIntegral<int8_t>());
}
ndpi_serialize_end_of_list(&serializer);
ndpi_serialize_string_string(&serializer, "Last", "Ok");
}
if (fmt == ndpi_serialization_format_csv) {
ndpi_serializer_get_header(&serializer, &buffer_len);
ndpi_serializer_get_buffer(&serializer, &buffer_len);
ndpi_serializer_set_buffer_len(&serializer, fuzzed_data.ConsumeIntegral<u_int32_t>());
} else if (fmt == ndpi_serialization_format_tlv) {
/* Conversion from tlv to json */
rc = ndpi_init_deserializer(&deserializer, &serializer);
if (rc == 0) {
rc = ndpi_init_serializer_ll(&serializer_cloned, ndpi_serialization_format_json, fuzzed_data.ConsumeIntegralInRange(0, 2048));
if (rc == 0) {
ndpi_deserialize_clone_all(&deserializer, &serializer_cloned);
ndpi_serializer_get_format(&serializer_cloned);
ndpi_serializer_get_buffer(&serializer_cloned, &buffer_len);
ndpi_serializer_get_buffer_len(&serializer_cloned);
ndpi_serializer_get_internal_buffer_size(&serializer_cloned);
ndpi_term_serializer(&serializer_cloned);
assert(ndpi_deserialize_get_format(&deserializer) == ndpi_serialization_format_tlv);
}
}
rc = ndpi_init_deserializer(&deserializer, &serializer);
if (rc == 0) {
rc = ndpi_init_serializer_ll(&serializer_cloned, ndpi_serialization_format_tlv, fuzzed_data.ConsumeIntegralInRange(0, 2048));
if (rc == 0) {
ndpi_deserialize_clone_item(&deserializer, &serializer_cloned);
ndpi_term_serializer(&serializer_cloned);
}
}
}
ndpi_term_serializer(&serializer);
return 0;
}
|