lwip-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[lwip-devel] [patch #10163] Fix failing fuzzer if compiling with ubsan

From: Wouter van Gulik
Subject: [lwip-devel] [patch #10163] Fix failing fuzzer if compiling with ubsan
Date: Wed, 22 Dec 2021 06:41:03 -0500 (EST)
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:95.0) Gecko/20100101 Firefox/95.0 
URL:
  <https://savannah.nongnu.org/patch/?10163>

                 Summary: Fix failing fuzzer if compiling with ubsan
                 Project: lwIP - A Lightweight TCP/IP stack
            Submitted by: wouter
            Submitted on: Wed 22 Dec 2021 11:41:00 AM UTC
                Category: Contrib
                Priority: 5 - Normal
                  Status: None
                 Privacy: Public
             Assigned to: None
        Originator Email: 
             Open/Closed: Open
         Discussion Lock: Any
         Planned Release: None

    _______________________________________________________

Details:

The "random" generator uses a 32 bit multiply that overflows.
When building with "undefined behavior sanitizer" enabled the fuzzer stops
before even parsing the packet.
This make it impossible to use AFLPlusPlus (the 'successor' of AFL).
The fix is trivial; make the intermediate variable 'val' 64bit and use it
instead of state[0] in the multiplication. See attached patch.




    _______________________________________________________

File Attachments:


-------------------------------------------------------
Date: Wed 22 Dec 2021 11:41:00 AM UTC  Name: fuzz_common.patch  Size: 577B  
By: wouter

<http://savannah.nongnu.org/patch/download.php?file_id=52554>

    _______________________________________________________

Reply to this item at:

  <https://savannah.nongnu.org/patch/?10163>

_______________________________________________
  Message sent via Savannah
  https://savannah.nongnu.org/
reply via email to
[Prev in Thread] Current Thread [Next in Thread]