Skip to content
This repository has been archived by the owner on Mar 22, 2024. It is now read-only.

Introduce unix socket mode for AFL #52

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Introduce unix socket mode for AFL #52

wants to merge 2 commits into from

Conversation

dstepanovsrc
Copy link

Add new unix socket mode for AFL to send input not only using stdin or shared file, but using the unix socket communication. The main idea was to use it to fuzz low-level cases like emulated devices or some kind of the network servers. In this case AFL will be independent of the transport level.
We used this approach to fuzz virtio block device implementation for both QEMU and SPDK. Also we presented it on the KVM Forum 2019 event.

Maybe this mode can be helpful for somebody else ).

Dima Stepanov and others added 2 commits November 17, 2019 20:31
@dstepanovsrc
afl-fuzz: add unix socket mode
0da95fb 
The current implementation of AFL is using stdin and files as the input
for the application. Introduce new unix socket mode for AFL:
  afl-fuzz ... -u <sock_name> ...
In this mode fuzzer will connect to the sock_name unix socket and all
the testcases will be send thought this socket. The socket can be the
fuzzed application itself or just a proxy which will redirect input to
the fuzzed application.

Signed-off-by: Dima Stepanov <[email protected]>
@dstepanovsrc
docs/technical_details: add the unix mode description
ca1cd23 
Add unix mode description to the README file. Describe why it can be
useful and what is the main use case.

Signed-off-by: Dima Stepanov <[email protected]>
@googlebot
Copy link

Thanks for your pull request. It looks like this may be your first contribution to a Google open source project (if not, look below for help). Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

📝 Please visit https://cla.developers.google.com/ to sign.

Once you've signed (or fixed any issues), please reply here with @googlebot I signed it! and we'll verify it.

What to do if you already signed the CLA

Individual signers
Corporate signers

ℹ️ Googlers: Go here for more info.

1 similar comment
@googlebot
Copy link

Thanks for your pull request. It looks like this may be your first contribution to a Google open source project (if not, look below for help). Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA).

📝 Please visit https://cla.developers.google.com/ to sign.

Once you've signed (or fixed any issues), please reply here with @googlebot I signed it! and we'll verify it.

What to do if you already signed the CLA

Individual signers
Corporate signers

ℹ️ Googlers: Go here for more info.

@dstepanovsrc
Copy link
Author

@googlebot I signed it!

@googlebot
Copy link

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

1 similar comment
@googlebot
Copy link

We found a Contributor License Agreement for you (the sender of this pull request), but were unable to find agreements for all the commit author(s) or Co-authors. If you authored these, maybe you used a different email address in the git commits than was used to sign the CLA (login here to double check)? If these were authored by someone else, then they will need to sign a CLA as well, and confirm that they're okay with these being contributed to Google.
In order to pass this check, please resolve this problem and then comment @googlebot I fixed it.. If the bot doesn't comment, it means it doesn't think anything has changed.

ℹ️ Googlers: Go here for more info.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dstepanovsrc @googlebot