updated example to new naming schema

Author: PBetzler

.cifuzz-findings/predictive_ant/crashing-input

@@ -0,0 +1,27 @@
+{
+  "name": "predictive_ant",
+  "type": "WARNING",
+  "input_data": "inGKcf+S3ESO5gI73P///zvc/////////wEBAP9DjuaC",
+  "logs": [
+    "Slow input: 27 seconds for processing",
+    "artifact_prefix='/tmp/libfuzzer-out-3809360830/'; Test unit written to .cifuzz-findings/predictive_ant/crashing-input",
+    "Base64: inGKcf+S3ESO5gI73P///zvc/////////wEBAP9DjuaC",
+    "In loop at position: 0 of 922747137",
+    "In loop at position: 100000000 of 922747137",
+    "In loop at position: 200000000 of 922747137",
+    "In loop at position: 300000000 of 922747137",
+    "In loop at position: 400000000 of 922747137",
+    "In loop at position: 500000000 of 922747137",
+    "In loop at position: 600000000 of 922747137",
+    "In loop at position: 700000000 of 922747137",
+    "In loop at position: 800000000 of 922747137",
+    "In loop at position: 900000000 of 922747137"
+  ],
+  "details": "Slow input detected. Processing time: 27 s",
+  "more_details": {
+    "id": "slow_input"
+  },
+  "created_at": "2024-09-12T17:54:29.70674698+02:00",
+  "input_file": ".cifuzz-findings/predictive_ant/crashing-input",
+  "fuzz_test": "slow_input_checks_fuzz_test"
+}

.cifuzz-findings/predictive_ant/finding.json

@@ -0,0 +1 @@
+Attacker~#;�����

.cifuzz-findings/unruffled_labrador/crashing-input

@@ -0,0 +1,92 @@
+{
+  "name": "unruffled_labrador",
+  "type": "CRASH",
+  "input_data": "QXR0YWNrZXJ+IzutsbOzsw==",
+  "logs": [
+    "==59462==ERROR: AddressSanitizer: global-buffer-overflow on address 0x58f4a8007dc5 at pc 0x58f4a71e2a34 bp 0x7ffc609b03c0 sp 0x7ffc609afb80",
+    "WRITE of size 8 at 0x58f4a8007dc5 thread T0",
+    "    #0 0x58f4a71e2a33 in __asan_memcpy (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0x16ba33) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #1 0x58f4a722c922 in trigger_global_buffer_overflow(std::__cxx11::basic_string\u003cchar, std::char_traits\u003cchar\u003e, std::allocator\u003cchar\u003e \u003e const\u0026) /home/philip/Code/examples/c-cpp-example/src/simple_examples/explore_me.cpp:40:3",
+    "    #2 0x58f4a722c922 in ExploreSimpleChecks(int, int, std::__cxx11::basic_string\u003cchar, std::char_traits\u003cchar\u003e, std::allocator\u003cchar\u003e \u003e) /home/philip/Code/examples/c-cpp-example/src/simple_examples/explore_me.cpp:15:11",
+    "    #3 0x58f4a722a1dc in LLVMFuzzerTestOneInputNoReturn(unsigned char const*, unsigned long) /home/philip/Code/examples/c-cpp-example/src/simple_examples/simple_checks_test.cpp:24:3",
+    "    #4 0x58f4a722a7b7 in LLVMFuzzerTestOneInput /home/philip/Code/examples/c-cpp-example/src/simple_examples/simple_checks_test.cpp:18:1",
+    "    #5 0x58f4a7131c20 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const*, unsigned long) (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xbac20) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #6 0x58f4a7131395 in fuzzer::Fuzzer::RunOne(unsigned char const*, unsigned long, bool, fuzzer::InputInfo*, bool, bool*) (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xba395) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #7 0x58f4a7133026 in fuzzer::Fuzzer::ReadAndExecuteSeedCorpora(std::vector\u003cfuzzer::SizedFile, std::allocator\u003cfuzzer::SizedFile\u003e \u003e\u0026) (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xbc026) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #8 0x58f4a7133593 in fuzzer::Fuzzer::Loop(std::vector\u003cfuzzer::SizedFile, std::allocator\u003cfuzzer::SizedFile\u003e \u003e\u0026) (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xbc593) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #9 0x58f4a712189f in fuzzer::FuzzerDriver(int*, char***, int (*)(unsigned char const*, unsigned long)) (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xaa89f) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #10 0x58f4a714a932 in main (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0xd3932) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "    #11 0x7fa793829d8f in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58:16",
+    "    #12 0x7fa793829e3f in __libc_start_main ../csu/libc-start.c:392:3",
+    "    #13 0x58f4a7116e14 in _start (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0x9fe14) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259)",
+    "",
+    "0x58f4a8007dc5 is located 0 bytes after global variable 'gBuffer' defined in '/home/philip/Code/examples/c-cpp-example/src/simple_examples/explore_me.cpp' (0x58f4a8007dc0) of size 5",
+    "SUMMARY: AddressSanitizer: global-buffer-overflow (/home/philip/Code/examples/c-cpp-example/.cifuzz-build/libfuzzer/address+undefined/src/simple_examples/simple_checks_fuzz_test+0x16ba33) (BuildId: 8cecfc4051a1a8d091763e4d316dd04ebc33f259) in __asan_memcpyShadow bytes around the buggy address:",
+    "  0x58f4a8007b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007c80: 00 00 00 00 00 00 00 00 01 f9 f9 f9 00 00 00 00",
+    "  0x58f4a8007d00: f9 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9 00 f9 f9 f9",
+    "=\u003e0x58f4a8007d80: 00 00 00 00 00 f9 f9 f9[05]f9 f9 f9 00 00 00 00",
+    "  0x58f4a8007e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8007f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "  0x58f4a8008000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00",
+    "Shadow byte legend (one shadow byte represents 8 application bytes):",
+    "  Addressable:           00",
+    "  Partially addressable: 01 02 03 04 05 06 07 ",
+    "  Heap left redzone:       fa",
+    "  Freed heap region:       fd",
+    "  Stack left redzone:      f1",
+    "  Stack mid redzone:       f2",
+    "  Stack right redzone:     f3",
+    "  Stack after return:      f5",
+    "  Stack use after scope:   f8",
+    "  Global redzone:          f9",
+    "  Global init order:       f6",
+    "  Poisoned by user:        f7",
+    "  Container overflow:      fc",
+    "  Array cookie:            ac",
+    "  Intra object redzone:    bb",
+    "  ASan internal:           fe",
+    "  Left alloca redzone:     ca",
+    "  Right alloca redzone:    cb",
+    "==59462==ABORTING",
+    "MS: 0 ; base unit: 0000000000000000000000000000000000000000",
+    "0x41,0x74,0x74,0x61,0x63,0x6b,0x65,0x72,0x7e,0x23,0x3b,0xad,0xb1,0xb3,0xb3,0xb3,",
+    "Attacker~#;\\255\\261\\263\\263\\263",
+    "artifact_prefix='/tmp/libfuzzer-out-4219054219/'; Test unit written to .cifuzz-findings/unruffled_labrador/crashing-input",
+    "Base64: QXR0YWNrZXJ+IzutsbOzsw=="
+  ],
+  "details": "global-buffer-overflow on address 0x58f4a8007dc5 at pc 0x58f4a71e2a34 bp 0x7ffc609b03c0 sp 0x7ffc609afb80",
+  "more_details": {
+    "id": "global_buffer_overflow"
+  },
+  "created_at": "2024-09-12T17:52:52.026384581+02:00",
+  "input_file": ".cifuzz-findings/unruffled_labrador/crashing-input",
+  "stack_trace": [
+    {
+      "SourceFile": "src/simple_examples/explore_me.cpp",
+      "Line": 40,
+      "Column": 3,
+      "FrameNumber": 1,
+      "Function": "trigger_global_buffer_overflow"
+    },
+    {
+      "SourceFile": "src/simple_examples/explore_me.cpp",
+      "Line": 15,
+      "Column": 11,
+      "FrameNumber": 2,
+      "Function": "ExploreSimpleChecks"
+    },
+    {
+      "SourceFile": "src/simple_examples/simple_checks_test.cpp",
+      "Line": 24,
+      "Column": 3,
+      "FrameNumber": 3,
+      "Function": "LLVMFuzzerTestOneInputNoReturn"
+    }
+  ],
+  "fuzz_test": "simple_checks_fuzz_test"
+}

.cifuzz-findings/unruffled_labrador/finding.json

@@ -11,7 +11,7 @@ lcov.info
 !.cifuzz-findings/
 
 .cifuzz-findings/*
-!.cifuzz-findings/awesome_gnu/
-.cifuzz-findings/awesome_gnu/.lock
-!.cifuzz-findings/philosophical_capybara/
-.cifuzz-findings/philosophical_capybara/.lock
+!.cifuzz-findings/unruffled_labrador/
+.cifuzz-findings/unruffled_labrador/.lock
+!.cifuzz-findings/predictive_ant/
+.cifuzz-findings/predictive_ant/.lock

.gitignore

@@ -5,15 +5,15 @@
 #include <gtest/gtest.h>
 
 TEST(ExploreSlowInputsChecks, FirstTest) {
-    
+
     EXPECT_NO_THROW(ExploreSlowInputsChecks(23323, 100));
 }
 
 TEST(ExploreSlowInputsChecks, SecondTest) {
     EXPECT_NO_THROW(ExploreSlowInputsChecks(1324153, 192198));
 }
 
-DEBUG_FINDING(philosophical_capybara)
+DEBUG_FINDING(predictive_ant)
 FUZZ_TEST(const uint8_t *data, size_t size) {
     FuzzedDataProvider fdp(data, size);
     long a = fdp.ConsumeIntegral<int>();

src/advanced_examples/slow_input_checks_test.cpp

@@ -13,7 +13,7 @@ TEST(ExploreSimpleChecksTests, MaintainerTest) {
   EXPECT_NO_THROW(ExploreSimpleChecks(20, -10, "Maintainer"));
 }
 
-DEBUG_FINDING(awesome_gnu)
+DEBUG_FINDING(unruffled_labrador)
 
 FUZZ_TEST(const uint8_t *data, size_t size) {
   FuzzedDataProvider fdp(data, size);