├── .gitignore ├── CMakeLists.txt ├── FuzzerBuiltins.h ├── FuzzerBuiltinsMsvc.h ├── FuzzerCommand.h ├── FuzzerCorpus.h ├── FuzzerCrossOver.cpp ├── FuzzerDataFlowTrace.cpp ├── FuzzerDataFlowTrace.h ├── FuzzerDefs.h ├── FuzzerDictionary.h ├── FuzzerDriver.cpp ├── FuzzerExtFunctions.def ├── FuzzerExtFunctions.h ├── FuzzerExtFunctionsDlsym.cpp ├── FuzzerExtFunctionsWeak.cpp ├── FuzzerExtFunctionsWindows.cpp ├── FuzzerExtraCounters.cpp ├── FuzzerFlags.def ├── FuzzerFork.cpp ├── FuzzerFork.h ├── FuzzerIO.cpp ├── FuzzerIO.h ├── FuzzerIOPosix.cpp ├── FuzzerIOWindows.cpp ├── FuzzerInterceptors.cpp ├── FuzzerInterface.h ├── FuzzerInternal.h ├── FuzzerLoop.cpp ├── FuzzerMain.cpp ├── FuzzerMerge.cpp ├── FuzzerMerge.h ├── FuzzerMutate.cpp ├── FuzzerMutate.h ├── FuzzerOptions.h ├── FuzzerPlatform.h ├── FuzzerRandom.h ├── FuzzerSHA1.cpp ├── FuzzerSHA1.h ├── FuzzerStateMachine.cpp ├── FuzzerStateMachine.h ├── FuzzerTracePC.cpp ├── FuzzerTracePC.h ├── FuzzerUtil.cpp ├── FuzzerUtil.h ├── FuzzerUtilDarwin.cpp ├── FuzzerUtilFuchsia.cpp ├── FuzzerUtilLinux.cpp ├── FuzzerUtilPosix.cpp ├── FuzzerUtilWindows.cpp ├── FuzzerValueBitMap.h ├── LICENSE ├── README.md ├── afl └── afl_driver.cpp ├── dataflow ├── DataFlow.cpp ├── DataFlow.h └── DataFlowCallbacks.cpp ├── example ├── live555 │ ├── Dockerfile │ ├── Readme.md │ ├── blocked_variables.txt │ ├── fuzzing.patch │ ├── in-rtsp │ │ └── rtsp_requests_mpg.raw │ ├── live.2021.08.13.tar.gz │ ├── rtsp.dict │ └── sample_media_sources │ │ ├── test.aac │ │ ├── test.ac3 │ │ ├── test.mkv │ │ ├── test.mp3 │ │ ├── test.mpg │ │ ├── test.wav │ │ └── test.webm └── openssl │ ├── Dockerfile │ ├── Readme.md │ ├── blocked_variables.txt │ ├── cert.pem │ ├── in-tls │ └── test.raw │ ├── key.pem │ └── tls.dict ├── robin_hood.h ├── sanitizer └── State_machine_instrument.py ├── scripts └── unbalanced_allocs.py ├── standalone └── StandaloneFuzzTargetMain.c └── tests ├── CMakeLists.txt ├── FuzzedDataProviderUnittest.cpp ├── FuzzerTest.cpp ├── FuzzerUnittest.cpp └── StateTest.cpp /.gitignore: -------------------------------------------------------------------------------- 1 | libsfuzzer.a -------------------------------------------------------------------------------- /CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/CMakeLists.txt -------------------------------------------------------------------------------- /FuzzerBuiltins.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerBuiltins.h -------------------------------------------------------------------------------- /FuzzerBuiltinsMsvc.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerBuiltinsMsvc.h -------------------------------------------------------------------------------- /FuzzerCommand.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerCommand.h -------------------------------------------------------------------------------- /FuzzerCorpus.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerCorpus.h -------------------------------------------------------------------------------- /FuzzerCrossOver.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerCrossOver.cpp -------------------------------------------------------------------------------- /FuzzerDataFlowTrace.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerDataFlowTrace.cpp -------------------------------------------------------------------------------- /FuzzerDataFlowTrace.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerDataFlowTrace.h -------------------------------------------------------------------------------- /FuzzerDefs.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerDefs.h -------------------------------------------------------------------------------- /FuzzerDictionary.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerDictionary.h -------------------------------------------------------------------------------- /FuzzerDriver.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerDriver.cpp -------------------------------------------------------------------------------- /FuzzerExtFunctions.def: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtFunctions.def -------------------------------------------------------------------------------- /FuzzerExtFunctions.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtFunctions.h -------------------------------------------------------------------------------- /FuzzerExtFunctionsDlsym.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtFunctionsDlsym.cpp -------------------------------------------------------------------------------- /FuzzerExtFunctionsWeak.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtFunctionsWeak.cpp -------------------------------------------------------------------------------- /FuzzerExtFunctionsWindows.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtFunctionsWindows.cpp -------------------------------------------------------------------------------- /FuzzerExtraCounters.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerExtraCounters.cpp -------------------------------------------------------------------------------- /FuzzerFlags.def: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerFlags.def -------------------------------------------------------------------------------- /FuzzerFork.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerFork.cpp -------------------------------------------------------------------------------- /FuzzerFork.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerFork.h -------------------------------------------------------------------------------- /FuzzerIO.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerIO.cpp -------------------------------------------------------------------------------- /FuzzerIO.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerIO.h -------------------------------------------------------------------------------- /FuzzerIOPosix.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerIOPosix.cpp -------------------------------------------------------------------------------- /FuzzerIOWindows.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerIOWindows.cpp -------------------------------------------------------------------------------- /FuzzerInterceptors.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerInterceptors.cpp -------------------------------------------------------------------------------- /FuzzerInterface.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerInterface.h -------------------------------------------------------------------------------- /FuzzerInternal.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerInternal.h -------------------------------------------------------------------------------- /FuzzerLoop.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerLoop.cpp -------------------------------------------------------------------------------- /FuzzerMain.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerMain.cpp -------------------------------------------------------------------------------- /FuzzerMerge.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerMerge.cpp -------------------------------------------------------------------------------- /FuzzerMerge.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerMerge.h -------------------------------------------------------------------------------- /FuzzerMutate.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerMutate.cpp -------------------------------------------------------------------------------- /FuzzerMutate.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerMutate.h -------------------------------------------------------------------------------- /FuzzerOptions.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerOptions.h -------------------------------------------------------------------------------- /FuzzerPlatform.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerPlatform.h -------------------------------------------------------------------------------- /FuzzerRandom.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerRandom.h -------------------------------------------------------------------------------- /FuzzerSHA1.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerSHA1.cpp -------------------------------------------------------------------------------- /FuzzerSHA1.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerSHA1.h -------------------------------------------------------------------------------- /FuzzerStateMachine.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerStateMachine.cpp -------------------------------------------------------------------------------- /FuzzerStateMachine.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerStateMachine.h -------------------------------------------------------------------------------- /FuzzerTracePC.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerTracePC.cpp -------------------------------------------------------------------------------- /FuzzerTracePC.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerTracePC.h -------------------------------------------------------------------------------- /FuzzerUtil.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtil.cpp -------------------------------------------------------------------------------- /FuzzerUtil.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtil.h -------------------------------------------------------------------------------- /FuzzerUtilDarwin.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtilDarwin.cpp -------------------------------------------------------------------------------- /FuzzerUtilFuchsia.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtilFuchsia.cpp -------------------------------------------------------------------------------- /FuzzerUtilLinux.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtilLinux.cpp -------------------------------------------------------------------------------- /FuzzerUtilPosix.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtilPosix.cpp -------------------------------------------------------------------------------- /FuzzerUtilWindows.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerUtilWindows.cpp -------------------------------------------------------------------------------- /FuzzerValueBitMap.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/FuzzerValueBitMap.h -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/README.md -------------------------------------------------------------------------------- /afl/afl_driver.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/afl/afl_driver.cpp -------------------------------------------------------------------------------- /dataflow/DataFlow.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/dataflow/DataFlow.cpp -------------------------------------------------------------------------------- /dataflow/DataFlow.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/dataflow/DataFlow.h -------------------------------------------------------------------------------- /dataflow/DataFlowCallbacks.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/dataflow/DataFlowCallbacks.cpp -------------------------------------------------------------------------------- /example/live555/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/Dockerfile -------------------------------------------------------------------------------- /example/live555/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/Readme.md -------------------------------------------------------------------------------- /example/live555/blocked_variables.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/blocked_variables.txt -------------------------------------------------------------------------------- /example/live555/fuzzing.patch: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/fuzzing.patch -------------------------------------------------------------------------------- /example/live555/in-rtsp/rtsp_requests_mpg.raw: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/in-rtsp/rtsp_requests_mpg.raw -------------------------------------------------------------------------------- /example/live555/live.2021.08.13.tar.gz: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/live.2021.08.13.tar.gz -------------------------------------------------------------------------------- /example/live555/rtsp.dict: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/rtsp.dict -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.aac: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.aac -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.ac3: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.ac3 -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.mkv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.mkv -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.mp3: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.mp3 -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.mpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.mpg -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.wav: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.wav -------------------------------------------------------------------------------- /example/live555/sample_media_sources/test.webm: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/live555/sample_media_sources/test.webm -------------------------------------------------------------------------------- /example/openssl/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/Dockerfile -------------------------------------------------------------------------------- /example/openssl/Readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/Readme.md -------------------------------------------------------------------------------- /example/openssl/blocked_variables.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/blocked_variables.txt -------------------------------------------------------------------------------- /example/openssl/cert.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/cert.pem -------------------------------------------------------------------------------- /example/openssl/in-tls/test.raw: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/in-tls/test.raw -------------------------------------------------------------------------------- /example/openssl/key.pem: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/key.pem -------------------------------------------------------------------------------- /example/openssl/tls.dict: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/example/openssl/tls.dict -------------------------------------------------------------------------------- /robin_hood.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/robin_hood.h -------------------------------------------------------------------------------- /sanitizer/State_machine_instrument.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/sanitizer/State_machine_instrument.py -------------------------------------------------------------------------------- /scripts/unbalanced_allocs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/scripts/unbalanced_allocs.py -------------------------------------------------------------------------------- /standalone/StandaloneFuzzTargetMain.c: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/standalone/StandaloneFuzzTargetMain.c -------------------------------------------------------------------------------- /tests/CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/tests/CMakeLists.txt -------------------------------------------------------------------------------- /tests/FuzzedDataProviderUnittest.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/tests/FuzzedDataProviderUnittest.cpp -------------------------------------------------------------------------------- /tests/FuzzerTest.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/tests/FuzzerTest.cpp -------------------------------------------------------------------------------- /tests/FuzzerUnittest.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/tests/FuzzerUnittest.cpp -------------------------------------------------------------------------------- /tests/StateTest.cpp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/bajinsheng/SGFuzz/HEAD/tests/StateTest.cpp --------------------------------------------------------------------------------