2020-02-20 05:11:11 +01:00
|
|
|
/*
|
|
|
|
* Fork-based fuzzing helpers
|
|
|
|
*
|
|
|
|
* Copyright Red Hat Inc., 2019
|
|
|
|
*
|
|
|
|
* Authors:
|
|
|
|
* Alexander Bulekov <alxndr@bu.edu>
|
|
|
|
*
|
|
|
|
* This work is licensed under the terms of the GNU GPL, version 2 or later.
|
|
|
|
* See the COPYING file in the top-level directory.
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "qemu/osdep.h"
|
|
|
|
#include "fork_fuzz.h"
|
|
|
|
|
|
|
|
|
|
|
|
void counter_shm_init(void)
|
|
|
|
{
|
2020-06-22 18:50:40 +02:00
|
|
|
/* Copy what's in the counter region to a temporary buffer.. */
|
|
|
|
void *copy = malloc(&__FUZZ_COUNTERS_END - &__FUZZ_COUNTERS_START);
|
|
|
|
memcpy(copy,
|
2020-02-20 05:11:11 +01:00
|
|
|
&__FUZZ_COUNTERS_START,
|
|
|
|
&__FUZZ_COUNTERS_END - &__FUZZ_COUNTERS_START);
|
|
|
|
|
2020-06-22 18:50:40 +02:00
|
|
|
/* Map a shared region over the counter region */
|
|
|
|
if (mmap(&__FUZZ_COUNTERS_START,
|
|
|
|
&__FUZZ_COUNTERS_END - &__FUZZ_COUNTERS_START,
|
|
|
|
PROT_READ | PROT_WRITE, MAP_SHARED | MAP_FIXED | MAP_ANONYMOUS,
|
|
|
|
0, 0) == MAP_FAILED) {
|
2020-02-20 05:11:11 +01:00
|
|
|
perror("Error: ");
|
|
|
|
exit(1);
|
|
|
|
}
|
2020-06-22 18:50:40 +02:00
|
|
|
|
|
|
|
/* Copy the original data back to the counter-region */
|
|
|
|
memcpy(&__FUZZ_COUNTERS_START, copy,
|
|
|
|
&__FUZZ_COUNTERS_END - &__FUZZ_COUNTERS_START);
|
|
|
|
free(copy);
|
2020-02-20 05:11:11 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|