curl
diff --git a/‎.gitignore
Lines changed: 1 addition & 0 deletions b/‎.gitignore
Lines changed: 1 addition & 0 deletions
diff --git a/‎CMakeLists.txt
Lines changed: 353 additions & 0 deletions b/‎CMakeLists.txt
Lines changed: 353 additions & 0 deletions
diff --git a/‎DEBIAN.md
Lines changed: 0 additions & 31 deletions b/‎DEBIAN.md
Lines changed: 0 additions & 31 deletions
@@ -6,6 +6,7 @@
 .idea/
 aclocal.m4*
 autom4te.cache/
+build/
 buildconf.tmp*
 compile
 config.guess
 
@@ -0,0 +1,353 @@
+cmake_minimum_required(VERSION 3.11)
+project(curl_fuzzer_deps)
+
+include(ExternalProject)
+
+# Install zlib
+#
+# renovate: datasource=github-tags depName=madler/zlib
+set(ZLIB_VERSION 1.3.1)
+set(ZLIB_URL https://zlib.net/zlib-${ZLIB_VERSION}.tar.gz)
+set(ZLIB_INSTALL_DIR ${CMAKE_BINARY_DIR}/zlib-install)
+
+ExternalProject_Add(
+    zlib_external
+    URL ${ZLIB_URL}
+    PREFIX ${CMAKE_BINARY_DIR}/zlib
+    SOURCE_SUBDIR .
+    CONFIGURE_COMMAND <SOURCE_DIR>/configure --static --prefix=${ZLIB_INSTALL_DIR}
+    BUILD_COMMAND $(MAKE)
+    INSTALL_COMMAND $(MAKE) install
+    BUILD_IN_SOURCE 1
+    DOWNLOAD_EXTRACT_TIMESTAMP TRUE
+)
+set(ZLIB_STATIC_LIB ${ZLIB_INSTALL_DIR}/lib/libz.a)
+
+# For the memory sanitizer build, turn off OpenSSL as it causes bugs we can't
+# affect (see 16697, 17624)
+if(NOT (DEFINED ENV{SANITIZER} AND "$ENV{SANITIZER}" STREQUAL "memory"))
+    # Install openssl
+    #
+    # renovate: datasource=github-tags depName=openssl/openssl
+    set(OPENSSL_VERSION 3.5.0)
+    set(OPENSSL_URL https://www.openssl.org/source/openssl-${OPENSSL_VERSION}.tar.gz)
+    set(OPENSSL_INSTALL_DIR ${CMAKE_BINARY_DIR}/openssl-install)
+    set(OPENSSL_SRC_DIR ${CMAKE_BINARY_DIR}/openssl/src/openssl_external)
+
+    # Architecture and sanitizer logic
+    set(OPENSSL_ARCH_PROG "")
+    set(OPENSSL_EC_FLAG "enable-ec_nistp_64_gcc_128")
+    if(DEFINED ENV{ARCHITECTURE} AND "$ENV{ARCHITECTURE}" STREQUAL "i386")
+        set(OPENSSL_ARCH_PROG "setarch i386")
+        set(OPENSSL_EC_FLAG "no-threads")
+    endif()
+
+    set(OPENSSL_ASM_FLAG "")
+    if(DEFINED ENV{SANITIZER} AND "$ENV{SANITIZER}" STREQUAL "memory")
+        set(OPENSSL_ASM_FLAG "no-asm")
+    endif()
+
+    # Compose the config command
+    set(OPENSSL_CONFIGURE_COMMAND
+        ${OPENSSL_ARCH_PROG} ./config
+        --prefix=${OPENSSL_INSTALL_DIR}
+        --libdir=lib
+        --debug
+        -DPEDANTIC
+        -DFUZZING_BUILD_MODE_UNSAFE_FOR_PRODUCTION
+        no-shared
+        ${OPENSSL_ASM_FLAG}
+        enable-tls1_3
+        enable-rc5
+        enable-md2
+        enable-ssl3
+        ${OPENSSL_EC_FLAG}
+        enable-ssl3-method
+        enable-nextprotoneg
+        enable-weak-ssl-ciphers
+        --with-zlib-include=${ZLIB_INSTALL_DIR}/include
+        --with-zlib-lib=${ZLIB_INSTALL_DIR}/lib
+        $ENV{OPENSSLFLAGS}
+    )
+
+    ExternalProject_Add(
+        openssl_external
+        URL ${OPENSSL_URL}
+        PREFIX ${CMAKE_BINARY_DIR}/openssl
+        SOURCE_SUBDIR .
+        CONFIGURE_COMMAND ${OPENSSL_CONFIGURE_COMMAND}
+        BUILD_COMMAND $(MAKE)
+        INSTALL_COMMAND $(MAKE) install_sw
+        BUILD_IN_SOURCE 1
+        DOWNLOAD_EXTRACT_TIMESTAMP TRUE
+    )
+
+    # Build zlib before openssl
+    add_dependencies(openssl_external zlib_external)
+
+    # Set the OpenSSL option for nghttp2
+    set(NGHTTP2_OPENSSL_OPTION --with-openssl=${OPENSSL_INSTALL_DIR})
+
+    # Set the dependency option for openssl
+    set(OPENSSL_DEP openssl_external)
+    set(OPENSSL_STATIC_LIB ${OPENSSL_INSTALL_DIR}/lib/libssl.a ${OPENSSL_INSTALL_DIR}/lib/libcrypto.a)
+else()
+    set(NGHTTP2_OPENSSL_OPTION --without-openssl)
+    set(OPENSSL_DEP "")
+    set(OPENSSL_STATIC_LIB "")
+endif()
+
+# Install nghttp2
+#
+# renovate: datasource=github-tags depName=nghttp2/nghttp2
+set(NGHTTP2_VERSION 1.61.0)
+set(NGHTTP2_URL https://github.com/nghttp2/nghttp2/releases/download/v${NGHTTP2_VERSION}/nghttp2-${NGHTTP2_VERSION}.tar.gz)
+set(NGHTTP2_INSTALL_DIR ${CMAKE_BINARY_DIR}/nghttp2-install)
+
+set(NGHTTP2_CONFIGURE_COMMAND
+    autoreconf -i &&
+    ./configure --prefix=${NGHTTP2_INSTALL_DIR}
+                --disable-shared
+                --enable-static
+                --disable-threads
+                --enable-lib-only
+                ${NGHTTP2_OPENSSL_OPTION}
+)
+
+ExternalProject_Add(
+    nghttp2_external
+    URL ${NGHTTP2_URL}
+    PREFIX ${CMAKE_BINARY_DIR}/nghttp2
+    SOURCE_SUBDIR .
+    CONFIGURE_COMMAND ${NGHTTP2_CONFIGURE_COMMAND}
+    BUILD_COMMAND $(MAKE)
+    INSTALL_COMMAND $(MAKE) install
+    BUILD_IN_SOURCE 1
+    DOWNLOAD_EXTRACT_TIMESTAMP TRUE
+)
+set(NGHTTP2_STATIC_LIB ${NGHTTP2_INSTALL_DIR}/lib/libnghttp2.a)
+
+# Ensure zlib and openssl are built before nghttp2
+add_dependencies(nghttp2_external ${OPENSSL_DEP} zlib_external)
+
+# Install GDB if GDBMODE is set
+set(GDB_VERSION 13.2)
+set(GDB_URL https://ftp.gnu.org/gnu/gdb/gdb-${GDB_VERSION}.tar.gz)
+set(GDB_INSTALL_DIR ${CMAKE_BINARY_DIR}/gdb-install)
+
+option(BUILD_GDB "Build GDB as an external project" OFF)
+if(BUILD_GDB)
+    ExternalProject_Add(
+        gdb_external
+        URL ${GDB_URL}
+        PREFIX ${CMAKE_BINARY_DIR}/gdb
+        SOURCE_SUBDIR .
+        CONFIGURE_COMMAND ./configure --prefix=${GDB_INSTALL_DIR}
+        BUILD_COMMAND $(MAKE)
+        INSTALL_COMMAND $(MAKE) install
+        BUILD_IN_SOURCE 1
+    )
+    set(GDB_DEP gdb_external)
+else()
+    set(GDB_DEP "")
+endif()
+
+# Group dependencies into a single target
+add_custom_target(deps
+    DEPENDS zlib_external ${OPENSSL_DEP} nghttp2_external ${GDB_DEP}
+)
+
+# Now for the main dependencies!
+#
+# Compile and install curl.
+set(CURL_INSTALL_DIR ${CMAKE_BINARY_DIR}/curl-install)
+
+# Determine SSL and nghttp2 options
+if(TARGET openssl_external)
+    set(CURL_SSL_OPTION "--with-ssl=${OPENSSL_INSTALL_DIR}")
+else()
+    set(CURL_SSL_OPTION "--without-ssl")
+endif()
+
+set(CURL_NGHTTP2_OPTION "--with-nghttp2=${NGHTTP2_INSTALL_DIR}")
+set(CURL_CONFIGURE_COMMAND
+    autoreconf -fi &&
+    ./configure
+        --prefix=${CURL_INSTALL_DIR}
+        --disable-shared
+        --enable-debug
+        --enable-maintainer-mode
+        --disable-symbol-hiding
+        --disable-docs
+        --enable-ipv6
+        --enable-websockets
+        --without-libpsl
+        --with-random=/dev/null
+        ${CURL_SSL_OPTION}
+        ${CURL_NGHTTP2_OPTION}
+)
+
+set(CURL_POST_INSTALL_COMMAND
+    COMMAND ${CMAKE_COMMAND} -E make_directory ${CURL_INSTALL_DIR}/utfuzzer
+    COMMAND ${CMAKE_COMMAND} -E copy_if_different <SOURCE_DIR>/lib/curl_fnmatch.h ${CURL_INSTALL_DIR}/utfuzzer/
+    COMMAND ${CMAKE_COMMAND} -E copy_if_different <SOURCE_DIR>/lib/bufq.h ${CURL_INSTALL_DIR}/utfuzzer/
+    COMMAND ${CMAKE_COMMAND} -E touch ${CURL_INSTALL_DIR}/utfuzzer/curl_setup.h
+)
+
+# Conditionally check to see if there's a source directory or not.
+# If there is, use it. Otherwise, download the latest version.
+#
+if (DEFINED ENV{CURL_SOURCE_DIR})
+    ExternalProject_Add(
+        curl_external
+        SOURCE_DIR $ENV{CURL_SOURCE_DIR}
+        CONFIGURE_COMMAND ${CURL_CONFIGURE_COMMAND}
+        BUILD_COMMAND $(MAKE)
+        INSTALL_COMMAND $(MAKE) install
+        ${CURL_POST_INSTALL_COMMAND}
+        BUILD_IN_SOURCE 1
+    )
+else()
+    set(CURL_VERSION 8.14.1)
+    # The URL needs dots replaced with underscores for curl's release naming convention.
+    string(REPLACE "." "_" CURL_VERSION_UNDERSCORE ${CURL_VERSION})
+    set(CURL_URL https://github.com/curl/curl/releases/download/curl-${CURL_VERSION_UNDERSCORE}/curl-${CURL_VERSION}.tar.gz)
+    ExternalProject_Add(
+        curl_external
+        URL ${CURL_URL}
+        PREFIX ${CMAKE_BINARY_DIR}/curl
+        CONFIGURE_COMMAND ${CURL_CONFIGURE_COMMAND}
+        BUILD_COMMAND $(MAKE)
+        INSTALL_COMMAND $(MAKE) install
+        ${CURL_POST_INSTALL_COMMAND}
+        BUILD_IN_SOURCE 1
+        DOWNLOAD_EXTRACT_TIMESTAMP TRUE
+    )
+endif()
+
+set(CURL_STATIC_LIB ${CURL_INSTALL_DIR}/lib/libcurl.a)
+
+# Add dependencies for curl
+add_dependencies(curl_external nghttp2_external ${OPENSSL_DEP} zlib_external)
+
+# Now it's time for the main targets!
+#
+# Paths to curl install (adjust as needed)
+set(CURL_INCLUDE_DIRS
+    ${CURL_INSTALL_DIR}/include
+    ${CURL_INSTALL_DIR}/utfuzzer
+)
+set(CURL_LIB_DIR ${CURL_INSTALL_DIR}/lib)
+
+# Fuzzing engine
+if (DEFINED ENV{LIB_FUZZING_ENGINE})
+    set(LIB_FUZZING_ENGINE $ENV{LIB_FUZZING_ENGINE})
+else()
+    add_library(standaloneengine STATIC standalone_fuzz_target_runner.cc)
+    set_target_properties(standaloneengine PROPERTIES ARCHIVE_OUTPUT_DIRECTORY ${CMAKE_BINARY_DIR})
+    set(LIB_FUZZING_ENGINE ${CMAKE_BINARY_DIR}/libstandaloneengine.a)
+endif()
+
+# Common sources and flags
+set(COMMON_SOURCES curl_fuzzer.cc curl_fuzzer_tlv.cc curl_fuzzer_callback.cc)
+set(COMMON_FLAGS -g -DCURL_DISABLE_DEPRECATION)
+set(COMMON_LINK_LIBS
+    ${CURL_LIB_DIR}/libcurl.a
+    ${NGHTTP2_STATIC_LIB}
+    ${OPENSSL_STATIC_LIB}
+    ${ZLIB_STATIC_LIB}
+    ${LIB_FUZZING_ENGINE}
+    pthread
+    m
+)
+
+# Helper macro to define a fuzzer target
+macro(add_curl_fuzzer name proto)
+    add_executable(${name} ${COMMON_SOURCES})
+    target_compile_options(${name} PRIVATE ${COMMON_FLAGS} -DFUZZ_PROTOCOLS_${proto})
+    target_include_directories(${name} PRIVATE ${CURL_INCLUDE_DIRS})
+    target_link_libraries(${name} PRIVATE ${COMMON_LINK_LIBS} ${LIB_FUZZING_ENGINE})
+endmacro()
+
+# Main fuzzer (all protocols)
+add_executable(curl_fuzzer ${COMMON_SOURCES})
+target_compile_options(curl_fuzzer PRIVATE ${COMMON_FLAGS} -DFUZZ_PROTOCOLS_ALL)
+target_include_directories(curl_fuzzer PRIVATE ${CURL_INCLUDE_DIRS})
+target_link_libraries(curl_fuzzer PRIVATE ${COMMON_LINK_LIBS} ${LIB_FUZZING_ENGINE})
+
+# Protocol-specific fuzzers
+add_curl_fuzzer(curl_fuzzer_dict      DICT)
+add_curl_fuzzer(curl_fuzzer_file      FILE)
+add_curl_fuzzer(curl_fuzzer_ftp       FTP)
+add_curl_fuzzer(curl_fuzzer_gopher    GOPHER)
+add_curl_fuzzer(curl_fuzzer_http      HTTP)
+add_curl_fuzzer(curl_fuzzer_https     HTTPS)
+add_curl_fuzzer(curl_fuzzer_imap      IMAP)
+add_curl_fuzzer(curl_fuzzer_mqtt      MQTT)
+add_curl_fuzzer(curl_fuzzer_pop3      POP3)
+add_curl_fuzzer(curl_fuzzer_rtsp      RTSP)
+add_curl_fuzzer(curl_fuzzer_smb       SMB)
+add_curl_fuzzer(curl_fuzzer_smtp      SMTP)
+add_curl_fuzzer(curl_fuzzer_tftp      TFTP)
+add_curl_fuzzer(curl_fuzzer_ws        WS)
+
+# BUFQ fuzzer
+add_executable(curl_fuzzer_bufq fuzz_bufq.cc)
+target_compile_options(curl_fuzzer_bufq PRIVATE ${COMMON_FLAGS})
+target_include_directories(curl_fuzzer_bufq PRIVATE ${CURL_INCLUDE_DIRS})
+target_link_libraries(curl_fuzzer_bufq PRIVATE ${COMMON_LINK_LIBS})
+
+# URL fuzzer
+add_executable(fuzz_url fuzz_url.cc)
+target_compile_options(fuzz_url PRIVATE ${COMMON_FLAGS})
+target_include_directories(fuzz_url PRIVATE ${CURL_INCLUDE_DIRS})
+target_link_libraries(fuzz_url PRIVATE ${COMMON_LINK_LIBS})
+
+# Unit test fuzzer
+add_executable(curl_fuzzer_fnmatch fuzz_fnmatch.cc)
+target_compile_options(curl_fuzzer_fnmatch PRIVATE ${COMMON_FLAGS})
+target_include_directories(curl_fuzzer_fnmatch PRIVATE ${CURL_INCLUDE_DIRS})
+target_link_libraries(curl_fuzzer_fnmatch PRIVATE ${COMMON_LINK_LIBS})
+
+# Add dependencies so fuzzers build after curl
+add_dependencies(curl_fuzzer curl_external)
+add_dependencies(curl_fuzzer_dict curl_external)
+add_dependencies(curl_fuzzer_file curl_external)
+add_dependencies(curl_fuzzer_ftp curl_external)
+add_dependencies(curl_fuzzer_gopher curl_external)
+add_dependencies(curl_fuzzer_http curl_external)
+add_dependencies(curl_fuzzer_https curl_external)
+add_dependencies(curl_fuzzer_imap curl_external)
+add_dependencies(curl_fuzzer_mqtt curl_external)
+add_dependencies(curl_fuzzer_pop3 curl_external)
+add_dependencies(curl_fuzzer_rtsp curl_external)
+add_dependencies(curl_fuzzer_smb curl_external)
+add_dependencies(curl_fuzzer_smtp curl_external)
+add_dependencies(curl_fuzzer_tftp curl_external)
+add_dependencies(curl_fuzzer_ws curl_external)
+add_dependencies(curl_fuzzer_bufq curl_external)
+add_dependencies(fuzz_url curl_external)
+add_dependencies(curl_fuzzer_fnmatch curl_external)
+
+# Create a custom target for all fuzzers
+add_custom_target(fuzz
+    DEPENDS
+        curl_fuzzer
+        curl_fuzzer_dict
+        curl_fuzzer_file
+        curl_fuzzer_ftp
+        curl_fuzzer_gopher
+        curl_fuzzer_http
+        curl_fuzzer_https
+        curl_fuzzer_imap
+        curl_fuzzer_mqtt
+        curl_fuzzer_pop3
+        curl_fuzzer_rtsp
+        curl_fuzzer_smb
+        curl_fuzzer_smtp
+        curl_fuzzer_tftp
+        curl_fuzzer_ws
+        curl_fuzzer_bufq
+        fuzz_url
+        curl_fuzzer_fnmatch
+)