SYS-OSS/FRET-LibAFL
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Improve Flexibility of DumpToDiskStage (#2753)

Browse Source 
* fixing empty multipart name

* fixing clippy

* improve flexibility of DumpToDiskStage

* adding note to MIGRATION.md
This commit is contained in:
Valentin Huber 2024-12-08 21:46:38 +01:00 committed by GitHub
parent c2a9018631
commit c61460a4f5
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 92 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
MIGRATION.md
View File

@ -6,4 +6,5 @@
- `MmapShMemProvider::new_shmem_persistent` has been removed in favour of `MmapShMem::persist`. You probably want to do something like this: `let shmem = MmapShMemProvider::new()?.new_shmem(size)?.persist()?;` - `MmapShMemProvider::new_shmem_persistent` has been removed in favour of `MmapShMem::persist`. You probably want to do something like this: `let shmem = MmapShMemProvider::new()?.new_shmem(size)?.persist()?;`
# 0.14.1 -> 0.14.2 # 0.14.1 -> 0.14.2
- `MmapShMem::new` and `MmapShMemProvider::new_shmem_with_id` now take `AsRef<Path>` instead of a byte array for the filename/id. - `MmapShMem::new` and `MmapShMemProvider::new_shmem_with_id` now take `AsRef<Path>` instead of a byte array for the filename/id.
- The closure passed to a `DumpToDiskStage` now provides the `Testcase` instead of just the `Input`.

124
libafl/src/stages/dump.rs
View File

@ -1,14 +1,20 @@
//! The [`DumpToDiskStage`] is a stage that dumps the corpus and the solutions to disk to e.g. allow AFL to sync //! The [`DumpToDiskStage`] is a stage that dumps the corpus and the solutions to disk to e.g. allow AFL to sync
use alloc::{string::String, vec::Vec}; use alloc::vec::Vec;
use core::{clone::Clone, marker::PhantomData}; use core::{clone::Clone, marker::PhantomData};
use std::{fs, fs::File, io::Write, path::PathBuf}; use std::{
fs::{self, File},
io::Write,
path::{Path, PathBuf},
string::{String, ToString},
};
use libafl_bolts::impl_serdeany; use libafl_bolts::impl_serdeany;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use crate::{ use crate::{
corpus::{Corpus, CorpusId}, corpus::{Corpus, CorpusId, Testcase},
inputs::Input,
stages::Stage, stages::Stage,
state::{HasCorpus, HasRand, HasSolutions, UsesState}, state::{HasCorpus, HasRand, HasSolutions, UsesState},
Error, HasMetadata, Error, HasMetadata,
@ -29,23 +35,26 @@ impl_serdeany!(DumpToDiskMetadata);
/// The [`DumpToDiskStage`] is a stage that dumps the corpus and the solutions to disk /// The [`DumpToDiskStage`] is a stage that dumps the corpus and the solutions to disk
#[derive(Debug)] #[derive(Debug)]
pub struct DumpToDiskStage<CB, EM, Z> { pub struct DumpToDiskStage<CB1, CB2, EM, Z> {
solutions_dir: PathBuf, solutions_dir: PathBuf,
corpus_dir: PathBuf, corpus_dir: PathBuf,
to_bytes: CB, to_bytes: CB1,
generate_filename: CB2,
phantom: PhantomData<(EM, Z)>, phantom: PhantomData<(EM, Z)>,
} }
impl<CB, EM, Z> UsesState for DumpToDiskStage<CB, EM, Z> impl<CB1, CB2, EM, Z> UsesState for DumpToDiskStage<CB1, CB2, EM, Z>
where where
EM: UsesState, EM: UsesState,
{ {
type State = EM::State; type State = EM::State;
} }
impl<CB, E, EM, Z> Stage<E, EM, Z> for DumpToDiskStage<CB, EM, Z> impl<CB1, CB2, P, E, EM, Z> Stage<E, EM, Z> for DumpToDiskStage<CB1, CB2, EM, Z>
where where
CB: FnMut(&Self::Input, &Self::State) -> Vec<u8>, CB1: FnMut(&Testcase<Self::Input>, &Self::State) -> Vec<u8>,
CB2: FnMut(&Testcase<Self::Input>, &CorpusId) -> P,
P: AsRef<Path>,
EM: UsesState, EM: UsesState,
E: UsesState<State = Self::State>, E: UsesState<State = Self::State>,
Z: UsesState<State = Self::State>, Z: UsesState<State = Self::State>,
@ -77,7 +86,8 @@ where
} }
} }
impl<CB, EM, Z> DumpToDiskStage<CB, EM, Z> /// Implementation for `DumpToDiskStage` with a default `generate_filename` function.
impl<CB1, EM, Z> DumpToDiskStage<CB1, fn(&Testcase<EM::Input>, &CorpusId) -> String, EM, Z>
where where
EM: UsesState, EM: UsesState,
Z: UsesState, Z: UsesState,
@ -85,8 +95,54 @@ where
<<EM as UsesState>::State as HasCorpus>::Corpus: Corpus<Input = EM::Input>, <<EM as UsesState>::State as HasCorpus>::Corpus: Corpus<Input = EM::Input>,
<<EM as UsesState>::State as HasSolutions>::Solutions: Corpus<Input = EM::Input>, <<EM as UsesState>::State as HasSolutions>::Solutions: Corpus<Input = EM::Input>,
{ {
/// Create a new [`DumpToDiskStage`] /// Create a new [`DumpToDiskStage`] with a default `generate_filename` function.
pub fn new<A, B>(to_bytes: CB, corpus_dir: A, solutions_dir: B) -> Result<Self, Error> pub fn new<A, B>(to_bytes: CB1, corpus_dir: A, solutions_dir: B) -> Result<Self, Error>
where
A: Into<PathBuf>,
B: Into<PathBuf>,
{
Self::new_with_custom_filenames(
to_bytes,
Self::generate_filename, // This is now of type `fn(&Testcase<EM::Input>, &CorpusId) -> String`
corpus_dir,
solutions_dir,
)
}
/// Default `generate_filename` function.
#[allow(clippy::trivially_copy_pass_by_ref)]
fn generate_filename(testcase: &Testcase<EM::Input>, id: &CorpusId) -> String {
[
Some(id.0.to_string()),
testcase.filename().clone(),
testcase
.input()
.as_ref()
.map(|t| t.generate_name(Some(*id))),
]
.iter()
.flatten()
.map(String::as_str)
.collect::<Vec<_>>()
.join("-")
}
}
impl<CB1, CB2, EM, Z> DumpToDiskStage<CB1, CB2, EM, Z>
where
EM: UsesState,
Z: UsesState,
<EM as UsesState>::State: HasCorpus + HasSolutions + HasRand + HasMetadata,
<<EM as UsesState>::State as HasCorpus>::Corpus: Corpus<Input = EM::Input>,
<<EM as UsesState>::State as HasSolutions>::Solutions: Corpus<Input = EM::Input>,
{
/// Create a new [`DumpToDiskStage`] with a custom `generate_filename` function.
pub fn new_with_custom_filenames<A, B>(
to_bytes: CB1,
generate_filename: CB2,
corpus_dir: A,
solutions_dir: B,
) -> Result<Self, Error>
where where
A: Into<PathBuf>, A: Into<PathBuf>,
B: Into<PathBuf>, B: Into<PathBuf>,
@ -102,7 +158,7 @@ where
} }
let solutions_dir = solutions_dir.into(); let solutions_dir = solutions_dir.into();
if let Err(e) = fs::create_dir(&solutions_dir) { if let Err(e) = fs::create_dir(&solutions_dir) {
if !corpus_dir.is_dir() { if !solutions_dir.is_dir() {
return Err(Error::os_error( return Err(Error::os_error(
e, e,
format!("Error creating directory {solutions_dir:?}"), format!("Error creating directory {solutions_dir:?}"),
@ -111,6 +167,7 @@ where
} }
Ok(Self { Ok(Self {
to_bytes, to_bytes,
generate_filename,
solutions_dir, solutions_dir,
corpus_dir, corpus_dir,
phantom: PhantomData, phantom: PhantomData,
@ -118,12 +175,19 @@ where
} }
#[inline] #[inline]
fn dump_state_to_disk(&mut self, state: &mut <Self as UsesState>::State) -> Result<(), Error> fn dump_state_to_disk<P: AsRef<Path>>(
&mut self,
state: &mut <Self as UsesState>::State,
) -> Result<(), Error>
where where
CB: FnMut( CB1: FnMut(
&<<<EM as UsesState>::State as HasCorpus>::Corpus as Corpus>::Input, &Testcase<<<<EM as UsesState>::State as HasCorpus>::Corpus as Corpus>::Input>,
&<EM as UsesState>::State, &<EM as UsesState>::State,
) -> Vec<u8>, ) -> Vec<u8>,
CB2: FnMut(
&Testcase<<<<EM as UsesState>::State as HasCorpus>::Corpus as Corpus>::Input>,
&CorpusId,
) -> P,
{ {
let (mut corpus_id, mut solutions_id) = let (mut corpus_id, mut solutions_id) =
if let Some(meta) = state.metadata_map().get::<DumpToDiskMetadata>() { if let Some(meta) = state.metadata_map().get::<DumpToDiskMetadata>() {
@ -138,37 +202,29 @@ where
while let Some(i) = corpus_id { while let Some(i) = corpus_id {
let mut testcase = state.corpus().get(i)?.borrow_mut(); let mut testcase = state.corpus().get(i)?.borrow_mut();
state.corpus().load_input_into(&mut testcase)?; state.corpus().load_input_into(&mut testcase)?;
let bytes = (self.to_bytes)(testcase.input().as_ref().unwrap(), state); let bytes = (self.to_bytes)(&testcase, state);
let fname = self.corpus_dir.join(format!( let fname = self
"id_{i}_{}", .corpus_dir
testcase .join((self.generate_filename)(&testcase, &i));
.filename()
.as_ref()
.map_or_else(|| "unnamed", String::as_str)
));
let mut f = File::create(fname)?; let mut f = File::create(fname)?;
drop(f.write_all(&bytes)); drop(f.write_all(&bytes));
corpus_id = state.corpus().next(i); corpus_id = state.corpus().next(i);
} }
while let Some(current_id) = solutions_id { while let Some(i) = solutions_id {
let mut testcase = state.solutions().get(current_id)?.borrow_mut(); let mut testcase = state.solutions().get(i)?.borrow_mut();
state.solutions().load_input_into(&mut testcase)?; state.solutions().load_input_into(&mut testcase)?;
let bytes = (self.to_bytes)(testcase.input().as_ref().unwrap(), state); let bytes = (self.to_bytes)(&testcase, state);
let fname = self.solutions_dir.join(format!( let fname = self
"id_{current_id}_{}", .solutions_dir
testcase .join((self.generate_filename)(&testcase, &i));
.filename()
.as_ref()
.map_or_else(|| "unnamed", String::as_str)
));
let mut f = File::create(fname)?; let mut f = File::create(fname)?;
drop(f.write_all(&bytes)); drop(f.write_all(&bytes));
solutions_id = state.solutions().next(current_id); solutions_id = state.solutions().next(i);
} }
state.add_metadata(DumpToDiskMetadata { state.add_metadata(DumpToDiskMetadata {