wip

.azure/pipelines/jobs/fuzzing.yml

@@ -32,7 +32,7 @@ jobs:
       - bash: |
           cd fuzz
           ./run.sh $(TIMEOUT) ${{ parameters.method }}
-        displayName: run
+        displayName: run          
 
       - task: PublishBuildArtifacts@1
         condition: failed()

fuzz/init-system.sh

@@ -1,3 +1,26 @@
 #!/bin/bash
 
+aptUpdated=0
+
+# make, gcc, patch, etc. get installed if not available
+which gcc > /dev/null
+if [[ $? -ne 0 ]]; then
+    if [ $aptUpdated -eq 0 ]]; then
+        apt update
+        aptUpdated=1
+    fi
+
+    apt install -y build-essential
+fi
+
+which rename > /dev/null
+if [[ $? -ne 0 ]]; then
+    if [ $aptUpdated -eq 0 ]]; then
+        apt update
+        aptUpdated=1
+    fi
+
+    apt install -y rename
+fi
+
 echo core > /proc/sys/kernel/core_pattern

fuzz/init.sh

@@ -12,3 +12,5 @@ mkdir -p ./instrumented
 cp ../source/gfoidl.Base64/bin/Release/netcoreapp3.0/$lib ./instrumented/$lib
 
 sharpfuzz ./instrumented/$lib
+
+echo "$lib instrumented and ready to go"

fuzz/run.sh

@@ -22,5 +22,10 @@ timeout --preserve-status $duration afl-fuzz -i testcases -o findings -m 10000 -
 
 # when there are any reports in ./findings/crashes, so there are failures
 if [[ $(ls ./findings/crashes | wc -l) -gt 0 ]]; then
+    cd findings/crashes
+
+    rename 's|:|-|g' *
+    ls -la
+
     exit 1
 fi

fuzz/setup.sh

@@ -2,13 +2,6 @@
 
 set -e
 
-# make, gcc, patch, etc. get installed if not available
-which gcc > /dev/null
-if [[ $? -ne 0 ]]; then
-    apt update
-    apt install -y build-essential
-fi
-
 # Download and extract the latest afl-fuzz source package
 wget http://lcamtuf.coredump.cx/afl/releases/afl-latest.tgz
 tar -xvf afl-latest.tgz