|
From: | Wouter van Gulik |
Subject: | [lwip-devel] [patch #10163] Fix failing fuzzer if compiling with ubsan |
Date: | Wed, 22 Dec 2021 06:41:03 -0500 (EST) |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:95.0) Gecko/20100101 Firefox/95.0 |
URL: <https://savannah.nongnu.org/patch/?10163> Summary: Fix failing fuzzer if compiling with ubsan Project: lwIP - A Lightweight TCP/IP stack Submitted by: wouter Submitted on: Wed 22 Dec 2021 11:41:00 AM UTC Category: Contrib Priority: 5 - Normal Status: None Privacy: Public Assigned to: None Originator Email: Open/Closed: Open Discussion Lock: Any Planned Release: None _______________________________________________________ Details: The "random" generator uses a 32 bit multiply that overflows. When building with "undefined behavior sanitizer" enabled the fuzzer stops before even parsing the packet. This make it impossible to use AFLPlusPlus (the 'successor' of AFL). The fix is trivial; make the intermediate variable 'val' 64bit and use it instead of state[0] in the multiplication. See attached patch. _______________________________________________________ File Attachments: ------------------------------------------------------- Date: Wed 22 Dec 2021 11:41:00 AM UTC Name: fuzz_common.patch Size: 577B By: wouter <http://savannah.nongnu.org/patch/download.php?file_id=52554> _______________________________________________________ Reply to this item at: <https://savannah.nongnu.org/patch/?10163> _______________________________________________ Message sent via Savannah https://savannah.nongnu.org/
[Prev in Thread] | Current Thread | [Next in Thread] |