git:master:1e711683: misc: fuzz: add msg parse fuzzer - sr-dev

2 Sep 2021

Module: kamailio
Branch: master
Commit: 1e71168342894c992ab376bf8538c0953db31fe4
URL: https://github.com/kamailio/kamailio/commit/1e71168342894c992ab376bf8538c095...
Author: David Korczynski david@adalogics.com
Committer: David Korczynski david@adalogics.com
Date: 2021-09-02T16:00:29+01:00
misc: fuzz: add msg parse fuzzer
this fuzzer targets various parsing routines and is meant to run
in the oss-fuzz infrastructure.
---
Added: misc/fuzz/fuzz_parse_msg.c
---
Diff:  https://github.com/kamailio/kamailio/commit/1e71168342894c992ab376bf8538c095...
Patch: https://github.com/kamailio/kamailio/commit/1e71168342894c992ab376bf8538c095...
---

diff --git a/misc/fuzz/fuzz_parse_msg.c b/misc/fuzz/fuzz_parse_msg.c
new file mode 100644
index 0000000000..ef656abd3a
--- /dev/null
+++ b/misc/fuzz/fuzz_parse_msg.c
@@ -0,0 +1,44 @@
+#include "../parser/sdp/sdp.h"
+#include "../parser/parse_uri.c"
+#include "../parser/parse_hname2.h"
+#include "../parser/contact/parse_contact.h"
+#include "../parser/parse_refer_to.h"
+#include "../parser/parse_ppi_pai.h"
+#include "../parser/parse_privacy.h"
+#include "../parser/parse_diversion.h"
+
+int LLVMFuzzerInitialize(int *argc, char ***argv) {
+    ksr_hname_init_index();
+    return 0;
+}
+
+int
+LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
+    sip_msg_t orig_inv = { };
+    orig_inv.buf = (char*)data;
+    orig_inv.len = size;
+    if (parse_msg(orig_inv.buf, orig_inv.len, &orig_inv) < 0) {
+        goto cleanup;
+    }
+  
+    parse_sdp(&orig_inv);
+
+    parse_headers(&orig_inv, HDR_TO_F, 0);
+
+    parse_contact_header(&orig_inv);
+
+    parse_refer_to_header(&orig_inv);
+
+    parse_to_header(&orig_inv);
+
+    parse_pai_header(&orig_inv);
+    
+    parse_diversion_header(&orig_inv);
+
+    parse_privacy(&orig_inv);
+
+cleanup:
+    free_sip_msg(&orig_inv);
+
+    return 0;
+}

    