1*08b48e0bSAndroid Build Coastguard Worker /*
2*08b48e0bSAndroid Build Coastguard Worker
3*08b48e0bSAndroid Build Coastguard Worker american fuzzy lop++ - extract tokens passed to strcmp / memcmp
4*08b48e0bSAndroid Build Coastguard Worker -------------------------------------------------------------
5*08b48e0bSAndroid Build Coastguard Worker
6*08b48e0bSAndroid Build Coastguard Worker Originally written by Michal Zalewski
7*08b48e0bSAndroid Build Coastguard Worker
8*08b48e0bSAndroid Build Coastguard Worker Copyright 2016 Google Inc. All rights reserved.
9*08b48e0bSAndroid Build Coastguard Worker Copyright 2019-2024 AFLplusplus Project. All rights reserved.
10*08b48e0bSAndroid Build Coastguard Worker
11*08b48e0bSAndroid Build Coastguard Worker Licensed under the Apache License, Version 2.0 (the "License");
12*08b48e0bSAndroid Build Coastguard Worker you may not use this file except in compliance with the License.
13*08b48e0bSAndroid Build Coastguard Worker You may obtain a copy of the License at:
14*08b48e0bSAndroid Build Coastguard Worker
15*08b48e0bSAndroid Build Coastguard Worker http://www.apache.org/licenses/LICENSE-2.0
16*08b48e0bSAndroid Build Coastguard Worker
17*08b48e0bSAndroid Build Coastguard Worker This Linux-only companion library allows you to instrument strcmp(),
18*08b48e0bSAndroid Build Coastguard Worker memcmp(), and related functions to automatically extract tokens.
19*08b48e0bSAndroid Build Coastguard Worker See README.tokencap.md for more info.
20*08b48e0bSAndroid Build Coastguard Worker
21*08b48e0bSAndroid Build Coastguard Worker */
22*08b48e0bSAndroid Build Coastguard Worker
23*08b48e0bSAndroid Build Coastguard Worker #ifndef _GNU_SOURCE
24*08b48e0bSAndroid Build Coastguard Worker #define _GNU_SOURCE
25*08b48e0bSAndroid Build Coastguard Worker #endif
26*08b48e0bSAndroid Build Coastguard Worker #include <stdio.h>
27*08b48e0bSAndroid Build Coastguard Worker #include <string.h>
28*08b48e0bSAndroid Build Coastguard Worker #include <ctype.h>
29*08b48e0bSAndroid Build Coastguard Worker #include <unistd.h>
30*08b48e0bSAndroid Build Coastguard Worker #include <fcntl.h>
31*08b48e0bSAndroid Build Coastguard Worker #include <stdbool.h>
32*08b48e0bSAndroid Build Coastguard Worker
33*08b48e0bSAndroid Build Coastguard Worker #include "../types.h"
34*08b48e0bSAndroid Build Coastguard Worker #include "../config.h"
35*08b48e0bSAndroid Build Coastguard Worker
36*08b48e0bSAndroid Build Coastguard Worker #include "debug.h"
37*08b48e0bSAndroid Build Coastguard Worker
38*08b48e0bSAndroid Build Coastguard Worker #if !defined __linux__ && !defined __APPLE__ && !defined __FreeBSD__ && \
39*08b48e0bSAndroid Build Coastguard Worker !defined __OpenBSD__ && !defined __NetBSD__ && !defined __DragonFly__ && \
40*08b48e0bSAndroid Build Coastguard Worker !defined(__HAIKU__) && !defined(__sun)
41*08b48e0bSAndroid Build Coastguard Worker #error "Sorry, this library is unsupported in this platform for now!"
42*08b48e0bSAndroid Build Coastguard Worker #endif /* !__linux__ && !__APPLE__ && ! __FreeBSD__ && ! __OpenBSD__ && \
43*08b48e0bSAndroid Build Coastguard Worker !__NetBSD__*/
44*08b48e0bSAndroid Build Coastguard Worker
45*08b48e0bSAndroid Build Coastguard Worker #if defined __APPLE__
46*08b48e0bSAndroid Build Coastguard Worker #include <mach/vm_map.h>
47*08b48e0bSAndroid Build Coastguard Worker #include <mach/mach_init.h>
48*08b48e0bSAndroid Build Coastguard Worker #elif defined __FreeBSD__ || defined __OpenBSD__ || defined __NetBSD__
49*08b48e0bSAndroid Build Coastguard Worker #include <sys/types.h>
50*08b48e0bSAndroid Build Coastguard Worker #include <sys/sysctl.h>
51*08b48e0bSAndroid Build Coastguard Worker #if !defined __NetBSD__
52*08b48e0bSAndroid Build Coastguard Worker #include <sys/user.h>
53*08b48e0bSAndroid Build Coastguard Worker #endif
54*08b48e0bSAndroid Build Coastguard Worker #include <sys/mman.h>
55*08b48e0bSAndroid Build Coastguard Worker #elif defined __HAIKU__
56*08b48e0bSAndroid Build Coastguard Worker #include <kernel/image.h>
57*08b48e0bSAndroid Build Coastguard Worker #elif defined __sun
58*08b48e0bSAndroid Build Coastguard Worker /* For map addresses the old struct is enough */
59*08b48e0bSAndroid Build Coastguard Worker #include <sys/procfs.h>
60*08b48e0bSAndroid Build Coastguard Worker #include <limits.h>
61*08b48e0bSAndroid Build Coastguard Worker #endif
62*08b48e0bSAndroid Build Coastguard Worker
63*08b48e0bSAndroid Build Coastguard Worker #include <dlfcn.h>
64*08b48e0bSAndroid Build Coastguard Worker
65*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
66*08b48e0bSAndroid Build Coastguard Worker /* The libc functions are a magnitude faster than our replacements.
67*08b48e0bSAndroid Build Coastguard Worker Use them when RTLD_NEXT is available. */
68*08b48e0bSAndroid Build Coastguard Worker int (*__libc_strcmp)(const char *str1, const char *str2);
69*08b48e0bSAndroid Build Coastguard Worker int (*__libc_strncmp)(const char *str1, const char *str2, size_t len);
70*08b48e0bSAndroid Build Coastguard Worker int (*__libc_strcasecmp)(const char *str1, const char *str2);
71*08b48e0bSAndroid Build Coastguard Worker int (*__libc_strncasecmp)(const char *str1, const char *str2, size_t len);
72*08b48e0bSAndroid Build Coastguard Worker int (*__libc_memcmp)(const void *mem1, const void *mem2, size_t len);
73*08b48e0bSAndroid Build Coastguard Worker int (*__libc_bcmp)(const void *mem1, const void *mem2, size_t len);
74*08b48e0bSAndroid Build Coastguard Worker char *(*__libc_strstr)(const char *haystack, const char *needle);
75*08b48e0bSAndroid Build Coastguard Worker char *(*__libc_strcasestr)(const char *haystack, const char *needle);
76*08b48e0bSAndroid Build Coastguard Worker void *(*__libc_memmem)(const void *haystack, size_t haystack_len,
77*08b48e0bSAndroid Build Coastguard Worker const void *needle, size_t needle_len);
78*08b48e0bSAndroid Build Coastguard Worker #endif
79*08b48e0bSAndroid Build Coastguard Worker
80*08b48e0bSAndroid Build Coastguard Worker /* Mapping data and such */
81*08b48e0bSAndroid Build Coastguard Worker
82*08b48e0bSAndroid Build Coastguard Worker #define MAX_MAPPINGS 1024
83*08b48e0bSAndroid Build Coastguard Worker
84*08b48e0bSAndroid Build Coastguard Worker static struct mapping {
85*08b48e0bSAndroid Build Coastguard Worker
86*08b48e0bSAndroid Build Coastguard Worker void *st, *en;
87*08b48e0bSAndroid Build Coastguard Worker
88*08b48e0bSAndroid Build Coastguard Worker } __tokencap_ro[MAX_MAPPINGS];
89*08b48e0bSAndroid Build Coastguard Worker
90*08b48e0bSAndroid Build Coastguard Worker static u32 __tokencap_ro_cnt;
91*08b48e0bSAndroid Build Coastguard Worker static u8 __tokencap_ro_loaded;
92*08b48e0bSAndroid Build Coastguard Worker static int __tokencap_out_file = -1;
93*08b48e0bSAndroid Build Coastguard Worker static pid_t __tokencap_pid = -1;
94*08b48e0bSAndroid Build Coastguard Worker
95*08b48e0bSAndroid Build Coastguard Worker /* Identify read-only regions in memory. Only parameters that fall into these
96*08b48e0bSAndroid Build Coastguard Worker ranges are worth dumping when passed to strcmp() and so on. Read-write
97*08b48e0bSAndroid Build Coastguard Worker regions are far more likely to contain user input instead. */
98*08b48e0bSAndroid Build Coastguard Worker
__tokencap_load_mappings(void)99*08b48e0bSAndroid Build Coastguard Worker static void __tokencap_load_mappings(void) {
100*08b48e0bSAndroid Build Coastguard Worker
101*08b48e0bSAndroid Build Coastguard Worker #if defined __linux__
102*08b48e0bSAndroid Build Coastguard Worker
103*08b48e0bSAndroid Build Coastguard Worker u8 buf[MAX_LINE];
104*08b48e0bSAndroid Build Coastguard Worker FILE *f = fopen("/proc/self/maps", "r");
105*08b48e0bSAndroid Build Coastguard Worker
106*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro_loaded = 1;
107*08b48e0bSAndroid Build Coastguard Worker
108*08b48e0bSAndroid Build Coastguard Worker if (!f) return;
109*08b48e0bSAndroid Build Coastguard Worker
110*08b48e0bSAndroid Build Coastguard Worker while (fgets(buf, MAX_LINE, f)) {
111*08b48e0bSAndroid Build Coastguard Worker
112*08b48e0bSAndroid Build Coastguard Worker u8 rf, wf;
113*08b48e0bSAndroid Build Coastguard Worker void *st, *en;
114*08b48e0bSAndroid Build Coastguard Worker
115*08b48e0bSAndroid Build Coastguard Worker if (sscanf(buf, "%p-%p %c%c", &st, &en, &rf, &wf) != 4) continue;
116*08b48e0bSAndroid Build Coastguard Worker if (wf == 'w' || rf != 'r') continue;
117*08b48e0bSAndroid Build Coastguard Worker
118*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].st = (void *)st;
119*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].en = (void *)en;
120*08b48e0bSAndroid Build Coastguard Worker
121*08b48e0bSAndroid Build Coastguard Worker if (++__tokencap_ro_cnt == MAX_MAPPINGS) break;
122*08b48e0bSAndroid Build Coastguard Worker
123*08b48e0bSAndroid Build Coastguard Worker }
124*08b48e0bSAndroid Build Coastguard Worker
125*08b48e0bSAndroid Build Coastguard Worker fclose(f);
126*08b48e0bSAndroid Build Coastguard Worker
127*08b48e0bSAndroid Build Coastguard Worker #elif defined __APPLE__
128*08b48e0bSAndroid Build Coastguard Worker
129*08b48e0bSAndroid Build Coastguard Worker struct vm_region_submap_info_64 region;
130*08b48e0bSAndroid Build Coastguard Worker mach_msg_type_number_t cnt = VM_REGION_SUBMAP_INFO_COUNT_64;
131*08b48e0bSAndroid Build Coastguard Worker vm_address_t base = 0;
132*08b48e0bSAndroid Build Coastguard Worker vm_size_t size = 0;
133*08b48e0bSAndroid Build Coastguard Worker natural_t depth = 0;
134*08b48e0bSAndroid Build Coastguard Worker
135*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro_loaded = 1;
136*08b48e0bSAndroid Build Coastguard Worker
137*08b48e0bSAndroid Build Coastguard Worker while (1) {
138*08b48e0bSAndroid Build Coastguard Worker
139*08b48e0bSAndroid Build Coastguard Worker if (vm_region_recurse_64(mach_task_self(), &base, &size, &depth,
140*08b48e0bSAndroid Build Coastguard Worker (vm_region_info_64_t)®ion,
141*08b48e0bSAndroid Build Coastguard Worker &cnt) != KERN_SUCCESS)
142*08b48e0bSAndroid Build Coastguard Worker break;
143*08b48e0bSAndroid Build Coastguard Worker
144*08b48e0bSAndroid Build Coastguard Worker if (region.is_submap) {
145*08b48e0bSAndroid Build Coastguard Worker
146*08b48e0bSAndroid Build Coastguard Worker depth++;
147*08b48e0bSAndroid Build Coastguard Worker
148*08b48e0bSAndroid Build Coastguard Worker } else {
149*08b48e0bSAndroid Build Coastguard Worker
150*08b48e0bSAndroid Build Coastguard Worker /* We only care of main map addresses and the read only kinds */
151*08b48e0bSAndroid Build Coastguard Worker if ((region.protection & VM_PROT_READ) &&
152*08b48e0bSAndroid Build Coastguard Worker !(region.protection & VM_PROT_WRITE)) {
153*08b48e0bSAndroid Build Coastguard Worker
154*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].st = (void *)base;
155*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].en = (void *)(base + size);
156*08b48e0bSAndroid Build Coastguard Worker
157*08b48e0bSAndroid Build Coastguard Worker if (++__tokencap_ro_cnt == MAX_MAPPINGS) break;
158*08b48e0bSAndroid Build Coastguard Worker
159*08b48e0bSAndroid Build Coastguard Worker }
160*08b48e0bSAndroid Build Coastguard Worker
161*08b48e0bSAndroid Build Coastguard Worker base += size;
162*08b48e0bSAndroid Build Coastguard Worker size = 0;
163*08b48e0bSAndroid Build Coastguard Worker
164*08b48e0bSAndroid Build Coastguard Worker }
165*08b48e0bSAndroid Build Coastguard Worker
166*08b48e0bSAndroid Build Coastguard Worker }
167*08b48e0bSAndroid Build Coastguard Worker
168*08b48e0bSAndroid Build Coastguard Worker #elif defined __FreeBSD__ || defined __OpenBSD__ || defined __NetBSD__
169*08b48e0bSAndroid Build Coastguard Worker
170*08b48e0bSAndroid Build Coastguard Worker #if defined __FreeBSD__
171*08b48e0bSAndroid Build Coastguard Worker int mib[] = {CTL_KERN, KERN_PROC, KERN_PROC_VMMAP, __tokencap_pid};
172*08b48e0bSAndroid Build Coastguard Worker #elif defined __OpenBSD__
173*08b48e0bSAndroid Build Coastguard Worker int mib[] = {CTL_KERN, KERN_PROC_VMMAP, __tokencap_pid};
174*08b48e0bSAndroid Build Coastguard Worker #elif defined __NetBSD__
175*08b48e0bSAndroid Build Coastguard Worker int mib[] = {CTL_VM, VM_PROC, VM_PROC_MAP, __tokencap_pid,
176*08b48e0bSAndroid Build Coastguard Worker sizeof(struct kinfo_vmentry)};
177*08b48e0bSAndroid Build Coastguard Worker #endif
178*08b48e0bSAndroid Build Coastguard Worker char *buf, *low, *high;
179*08b48e0bSAndroid Build Coastguard Worker size_t miblen = sizeof(mib) / sizeof(mib[0]);
180*08b48e0bSAndroid Build Coastguard Worker size_t len;
181*08b48e0bSAndroid Build Coastguard Worker
182*08b48e0bSAndroid Build Coastguard Worker if (sysctl(mib, miblen, NULL, &len, NULL, 0) == -1) return;
183*08b48e0bSAndroid Build Coastguard Worker
184*08b48e0bSAndroid Build Coastguard Worker #if defined __FreeBSD__ || defined __NetBSD__
185*08b48e0bSAndroid Build Coastguard Worker len = len * 4 / 3;
186*08b48e0bSAndroid Build Coastguard Worker #elif defined __OpenBSD__
187*08b48e0bSAndroid Build Coastguard Worker len -= len % sizeof(struct kinfo_vmentry);
188*08b48e0bSAndroid Build Coastguard Worker #endif
189*08b48e0bSAndroid Build Coastguard Worker
190*08b48e0bSAndroid Build Coastguard Worker buf = mmap(NULL, len, PROT_READ | PROT_WRITE, MAP_SHARED | MAP_ANON, -1, 0);
191*08b48e0bSAndroid Build Coastguard Worker if (buf == MAP_FAILED) return;
192*08b48e0bSAndroid Build Coastguard Worker
193*08b48e0bSAndroid Build Coastguard Worker if (sysctl(mib, miblen, buf, &len, NULL, 0) == -1) {
194*08b48e0bSAndroid Build Coastguard Worker
195*08b48e0bSAndroid Build Coastguard Worker munmap(buf, len);
196*08b48e0bSAndroid Build Coastguard Worker return;
197*08b48e0bSAndroid Build Coastguard Worker
198*08b48e0bSAndroid Build Coastguard Worker }
199*08b48e0bSAndroid Build Coastguard Worker
200*08b48e0bSAndroid Build Coastguard Worker low = buf;
201*08b48e0bSAndroid Build Coastguard Worker high = low + len;
202*08b48e0bSAndroid Build Coastguard Worker
203*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro_loaded = 1;
204*08b48e0bSAndroid Build Coastguard Worker
205*08b48e0bSAndroid Build Coastguard Worker while (low < high) {
206*08b48e0bSAndroid Build Coastguard Worker
207*08b48e0bSAndroid Build Coastguard Worker struct kinfo_vmentry *region = (struct kinfo_vmentry *)low;
208*08b48e0bSAndroid Build Coastguard Worker
209*08b48e0bSAndroid Build Coastguard Worker #if defined __FreeBSD__ || defined __NetBSD__
210*08b48e0bSAndroid Build Coastguard Worker
211*08b48e0bSAndroid Build Coastguard Worker #if defined __FreeBSD__
212*08b48e0bSAndroid Build Coastguard Worker size_t size = region->kve_structsize;
213*08b48e0bSAndroid Build Coastguard Worker
214*08b48e0bSAndroid Build Coastguard Worker if (size == 0) break;
215*08b48e0bSAndroid Build Coastguard Worker #elif defined __NetBSD__
216*08b48e0bSAndroid Build Coastguard Worker size_t size = sizeof(*region);
217*08b48e0bSAndroid Build Coastguard Worker #endif
218*08b48e0bSAndroid Build Coastguard Worker
219*08b48e0bSAndroid Build Coastguard Worker /* We go through the whole mapping of the process and track read-only
220*08b48e0bSAndroid Build Coastguard Worker * addresses */
221*08b48e0bSAndroid Build Coastguard Worker if ((region->kve_protection & KVME_PROT_READ) &&
222*08b48e0bSAndroid Build Coastguard Worker !(region->kve_protection & KVME_PROT_WRITE)) {
223*08b48e0bSAndroid Build Coastguard Worker
224*08b48e0bSAndroid Build Coastguard Worker #elif defined __OpenBSD__
225*08b48e0bSAndroid Build Coastguard Worker
226*08b48e0bSAndroid Build Coastguard Worker size_t size = sizeof(*region);
227*08b48e0bSAndroid Build Coastguard Worker
228*08b48e0bSAndroid Build Coastguard Worker /* We go through the whole mapping of the process and track read-only
229*08b48e0bSAndroid Build Coastguard Worker * addresses */
230*08b48e0bSAndroid Build Coastguard Worker if ((region->kve_protection & KVE_PROT_READ) &&
231*08b48e0bSAndroid Build Coastguard Worker !(region->kve_protection & KVE_PROT_WRITE)) {
232*08b48e0bSAndroid Build Coastguard Worker
233*08b48e0bSAndroid Build Coastguard Worker #endif
234*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].st = (void *)region->kve_start;
235*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].en = (void *)region->kve_end;
236*08b48e0bSAndroid Build Coastguard Worker
237*08b48e0bSAndroid Build Coastguard Worker if (++__tokencap_ro_cnt == MAX_MAPPINGS) break;
238*08b48e0bSAndroid Build Coastguard Worker
239*08b48e0bSAndroid Build Coastguard Worker }
240*08b48e0bSAndroid Build Coastguard Worker
241*08b48e0bSAndroid Build Coastguard Worker low += size;
242*08b48e0bSAndroid Build Coastguard Worker
243*08b48e0bSAndroid Build Coastguard Worker }
244*08b48e0bSAndroid Build Coastguard Worker
245*08b48e0bSAndroid Build Coastguard Worker munmap(buf, len);
246*08b48e0bSAndroid Build Coastguard Worker #elif defined __HAIKU__
247*08b48e0bSAndroid Build Coastguard Worker image_info ii;
248*08b48e0bSAndroid Build Coastguard Worker int32_t group = 0;
249*08b48e0bSAndroid Build Coastguard Worker
250*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro_loaded = 1;
251*08b48e0bSAndroid Build Coastguard Worker
252*08b48e0bSAndroid Build Coastguard Worker while (get_next_image_info(0, &group, &ii) == B_OK) {
253*08b48e0bSAndroid Build Coastguard Worker
254*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].st = ii.text;
255*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].en = ((char *)ii.text) + ii.text_size;
256*08b48e0bSAndroid Build Coastguard Worker
257*08b48e0bSAndroid Build Coastguard Worker if (++__tokencap_ro_cnt == MAX_MAPPINGS) break;
258*08b48e0bSAndroid Build Coastguard Worker
259*08b48e0bSAndroid Build Coastguard Worker }
260*08b48e0bSAndroid Build Coastguard Worker
261*08b48e0bSAndroid Build Coastguard Worker #elif defined __sun
262*08b48e0bSAndroid Build Coastguard Worker prmap_t *c, *map;
263*08b48e0bSAndroid Build Coastguard Worker char path[PATH_MAX];
264*08b48e0bSAndroid Build Coastguard Worker ssize_t r;
265*08b48e0bSAndroid Build Coastguard Worker size_t hint;
266*08b48e0bSAndroid Build Coastguard Worker int fd;
267*08b48e0bSAndroid Build Coastguard Worker
268*08b48e0bSAndroid Build Coastguard Worker snprintf(path, sizeof(path), "/proc/%ld/map", getpid());
269*08b48e0bSAndroid Build Coastguard Worker fd = open(path, O_RDONLY);
270*08b48e0bSAndroid Build Coastguard Worker hint = (1 << 20);
271*08b48e0bSAndroid Build Coastguard Worker map = malloc(hint);
272*08b48e0bSAndroid Build Coastguard Worker
273*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro_loaded = 1;
274*08b48e0bSAndroid Build Coastguard Worker
275*08b48e0bSAndroid Build Coastguard Worker for (; (r = pread(fd, map, hint, 0)) == hint;) {
276*08b48e0bSAndroid Build Coastguard Worker
277*08b48e0bSAndroid Build Coastguard Worker hint <<= 1;
278*08b48e0bSAndroid Build Coastguard Worker map = realloc(map, hint);
279*08b48e0bSAndroid Build Coastguard Worker
280*08b48e0bSAndroid Build Coastguard Worker }
281*08b48e0bSAndroid Build Coastguard Worker
282*08b48e0bSAndroid Build Coastguard Worker for (c = map; r > 0; c++, r -= sizeof(prmap_t)) {
283*08b48e0bSAndroid Build Coastguard Worker
284*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].st = (void *)c->pr_vaddr;
285*08b48e0bSAndroid Build Coastguard Worker __tokencap_ro[__tokencap_ro_cnt].en = (void *)(c->pr_vaddr + c->pr_size);
286*08b48e0bSAndroid Build Coastguard Worker
287*08b48e0bSAndroid Build Coastguard Worker if (++__tokencap_ro_cnt == MAX_MAPPINGS) break;
288*08b48e0bSAndroid Build Coastguard Worker
289*08b48e0bSAndroid Build Coastguard Worker }
290*08b48e0bSAndroid Build Coastguard Worker
291*08b48e0bSAndroid Build Coastguard Worker free(map);
292*08b48e0bSAndroid Build Coastguard Worker close(fd);
293*08b48e0bSAndroid Build Coastguard Worker #endif
294*08b48e0bSAndroid Build Coastguard Worker
295*08b48e0bSAndroid Build Coastguard Worker }
296*08b48e0bSAndroid Build Coastguard Worker
297*08b48e0bSAndroid Build Coastguard Worker /* Check an address against the list of read-only mappings. */
298*08b48e0bSAndroid Build Coastguard Worker
299*08b48e0bSAndroid Build Coastguard Worker static u8 __tokencap_is_ro(const void *ptr) {
300*08b48e0bSAndroid Build Coastguard Worker
301*08b48e0bSAndroid Build Coastguard Worker u32 i;
302*08b48e0bSAndroid Build Coastguard Worker
303*08b48e0bSAndroid Build Coastguard Worker if (!__tokencap_ro_loaded) __tokencap_load_mappings();
304*08b48e0bSAndroid Build Coastguard Worker
305*08b48e0bSAndroid Build Coastguard Worker for (i = 0; i < __tokencap_ro_cnt; i++)
306*08b48e0bSAndroid Build Coastguard Worker if (ptr >= __tokencap_ro[i].st && ptr <= __tokencap_ro[i].en) return 1;
307*08b48e0bSAndroid Build Coastguard Worker
308*08b48e0bSAndroid Build Coastguard Worker return 0;
309*08b48e0bSAndroid Build Coastguard Worker
310*08b48e0bSAndroid Build Coastguard Worker }
311*08b48e0bSAndroid Build Coastguard Worker
312*08b48e0bSAndroid Build Coastguard Worker /* Dump an interesting token to output file, quoting and escaping it
313*08b48e0bSAndroid Build Coastguard Worker properly. */
314*08b48e0bSAndroid Build Coastguard Worker
315*08b48e0bSAndroid Build Coastguard Worker static void __tokencap_dump(const u8 *ptr, size_t len, u8 is_text) {
316*08b48e0bSAndroid Build Coastguard Worker
317*08b48e0bSAndroid Build Coastguard Worker u8 buf[MAX_AUTO_EXTRA * 4 + 1];
318*08b48e0bSAndroid Build Coastguard Worker u32 i;
319*08b48e0bSAndroid Build Coastguard Worker u32 pos = 0;
320*08b48e0bSAndroid Build Coastguard Worker
321*08b48e0bSAndroid Build Coastguard Worker if (len < MIN_AUTO_EXTRA || len > MAX_AUTO_EXTRA || __tokencap_out_file == -1)
322*08b48e0bSAndroid Build Coastguard Worker return;
323*08b48e0bSAndroid Build Coastguard Worker
324*08b48e0bSAndroid Build Coastguard Worker for (i = 0; i < len; i++) {
325*08b48e0bSAndroid Build Coastguard Worker
326*08b48e0bSAndroid Build Coastguard Worker if (is_text && !ptr[i]) break;
327*08b48e0bSAndroid Build Coastguard Worker
328*08b48e0bSAndroid Build Coastguard Worker switch (ptr[i]) {
329*08b48e0bSAndroid Build Coastguard Worker
330*08b48e0bSAndroid Build Coastguard Worker case 0 ... 31:
331*08b48e0bSAndroid Build Coastguard Worker case 127 ... 255:
332*08b48e0bSAndroid Build Coastguard Worker case '\"':
333*08b48e0bSAndroid Build Coastguard Worker case '\\':
334*08b48e0bSAndroid Build Coastguard Worker
335*08b48e0bSAndroid Build Coastguard Worker sprintf(buf + pos, "\\x%02x", ptr[i]);
336*08b48e0bSAndroid Build Coastguard Worker pos += 4;
337*08b48e0bSAndroid Build Coastguard Worker break;
338*08b48e0bSAndroid Build Coastguard Worker
339*08b48e0bSAndroid Build Coastguard Worker default:
340*08b48e0bSAndroid Build Coastguard Worker buf[pos++] = ptr[i];
341*08b48e0bSAndroid Build Coastguard Worker
342*08b48e0bSAndroid Build Coastguard Worker }
343*08b48e0bSAndroid Build Coastguard Worker
344*08b48e0bSAndroid Build Coastguard Worker }
345*08b48e0bSAndroid Build Coastguard Worker
346*08b48e0bSAndroid Build Coastguard Worker buf[pos] = 0;
347*08b48e0bSAndroid Build Coastguard Worker
348*08b48e0bSAndroid Build Coastguard Worker int wrt_ok = (1 == write(__tokencap_out_file, "\"", 1));
349*08b48e0bSAndroid Build Coastguard Worker wrt_ok &= (pos == write(__tokencap_out_file, buf, pos));
350*08b48e0bSAndroid Build Coastguard Worker wrt_ok &= (2 == write(__tokencap_out_file, "\"\n", 2));
351*08b48e0bSAndroid Build Coastguard Worker
352*08b48e0bSAndroid Build Coastguard Worker if (!wrt_ok) { DEBUGF("%s", "writing to the token file failed\n"); }
353*08b48e0bSAndroid Build Coastguard Worker
354*08b48e0bSAndroid Build Coastguard Worker }
355*08b48e0bSAndroid Build Coastguard Worker
356*08b48e0bSAndroid Build Coastguard Worker /* Replacements for strcmp(), memcmp(), and so on. Note that these will be used
357*08b48e0bSAndroid Build Coastguard Worker only if the target is compiled with -fno-builtins and linked dynamically. */
358*08b48e0bSAndroid Build Coastguard Worker
359*08b48e0bSAndroid Build Coastguard Worker #undef strcmp
360*08b48e0bSAndroid Build Coastguard Worker
361*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int strcmp(const char *str1, const char *str2) {
362*08b48e0bSAndroid Build Coastguard Worker
363*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str1)) __tokencap_dump(str1, strlen(str1), 1);
364*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str2)) __tokencap_dump(str2, strlen(str2), 1);
365*08b48e0bSAndroid Build Coastguard Worker
366*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
367*08b48e0bSAndroid Build Coastguard Worker if (__libc_strcmp) return __libc_strcmp(str1, str2);
368*08b48e0bSAndroid Build Coastguard Worker #endif
369*08b48e0bSAndroid Build Coastguard Worker
370*08b48e0bSAndroid Build Coastguard Worker while (1) {
371*08b48e0bSAndroid Build Coastguard Worker
372*08b48e0bSAndroid Build Coastguard Worker const unsigned char c1 = *str1, c2 = *str2;
373*08b48e0bSAndroid Build Coastguard Worker
374*08b48e0bSAndroid Build Coastguard Worker if (c1 != c2) return (c1 > c2) ? 1 : -1;
375*08b48e0bSAndroid Build Coastguard Worker if (!c1) return 0;
376*08b48e0bSAndroid Build Coastguard Worker str1++;
377*08b48e0bSAndroid Build Coastguard Worker str2++;
378*08b48e0bSAndroid Build Coastguard Worker
379*08b48e0bSAndroid Build Coastguard Worker }
380*08b48e0bSAndroid Build Coastguard Worker
381*08b48e0bSAndroid Build Coastguard Worker }
382*08b48e0bSAndroid Build Coastguard Worker
383*08b48e0bSAndroid Build Coastguard Worker #undef strncmp
384*08b48e0bSAndroid Build Coastguard Worker
385*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int strncmp(const char *str1, const char *str2,
386*08b48e0bSAndroid Build Coastguard Worker size_t len) {
387*08b48e0bSAndroid Build Coastguard Worker
388*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str1)) __tokencap_dump(str1, len, 1);
389*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str2)) __tokencap_dump(str2, len, 1);
390*08b48e0bSAndroid Build Coastguard Worker
391*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
392*08b48e0bSAndroid Build Coastguard Worker if (__libc_strncmp) return __libc_strncmp(str1, str2, len);
393*08b48e0bSAndroid Build Coastguard Worker #endif
394*08b48e0bSAndroid Build Coastguard Worker
395*08b48e0bSAndroid Build Coastguard Worker while (len--) {
396*08b48e0bSAndroid Build Coastguard Worker
397*08b48e0bSAndroid Build Coastguard Worker unsigned char c1 = *str1, c2 = *str2;
398*08b48e0bSAndroid Build Coastguard Worker
399*08b48e0bSAndroid Build Coastguard Worker if (c1 != c2) return (c1 > c2) ? 1 : -1;
400*08b48e0bSAndroid Build Coastguard Worker if (!c1) return 0;
401*08b48e0bSAndroid Build Coastguard Worker str1++;
402*08b48e0bSAndroid Build Coastguard Worker str2++;
403*08b48e0bSAndroid Build Coastguard Worker
404*08b48e0bSAndroid Build Coastguard Worker }
405*08b48e0bSAndroid Build Coastguard Worker
406*08b48e0bSAndroid Build Coastguard Worker return 0;
407*08b48e0bSAndroid Build Coastguard Worker
408*08b48e0bSAndroid Build Coastguard Worker }
409*08b48e0bSAndroid Build Coastguard Worker
410*08b48e0bSAndroid Build Coastguard Worker #undef strcasecmp
411*08b48e0bSAndroid Build Coastguard Worker
412*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int strcasecmp(const char *str1, const char *str2) {
413*08b48e0bSAndroid Build Coastguard Worker
414*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str1)) __tokencap_dump(str1, strlen(str1), 1);
415*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str2)) __tokencap_dump(str2, strlen(str2), 1);
416*08b48e0bSAndroid Build Coastguard Worker
417*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
418*08b48e0bSAndroid Build Coastguard Worker if (__libc_strcasecmp) return __libc_strcasecmp(str1, str2);
419*08b48e0bSAndroid Build Coastguard Worker #endif
420*08b48e0bSAndroid Build Coastguard Worker
421*08b48e0bSAndroid Build Coastguard Worker while (1) {
422*08b48e0bSAndroid Build Coastguard Worker
423*08b48e0bSAndroid Build Coastguard Worker const unsigned char c1 = tolower((int)*str1), c2 = tolower((int)*str2);
424*08b48e0bSAndroid Build Coastguard Worker
425*08b48e0bSAndroid Build Coastguard Worker if (c1 != c2) return (c1 > c2) ? 1 : -1;
426*08b48e0bSAndroid Build Coastguard Worker if (!c1) return 0;
427*08b48e0bSAndroid Build Coastguard Worker str1++;
428*08b48e0bSAndroid Build Coastguard Worker str2++;
429*08b48e0bSAndroid Build Coastguard Worker
430*08b48e0bSAndroid Build Coastguard Worker }
431*08b48e0bSAndroid Build Coastguard Worker
432*08b48e0bSAndroid Build Coastguard Worker }
433*08b48e0bSAndroid Build Coastguard Worker
434*08b48e0bSAndroid Build Coastguard Worker #undef strncasecmp
435*08b48e0bSAndroid Build Coastguard Worker
436*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int strncasecmp(const char *str1, const char *str2,
437*08b48e0bSAndroid Build Coastguard Worker size_t len) {
438*08b48e0bSAndroid Build Coastguard Worker
439*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str1)) __tokencap_dump(str1, len, 1);
440*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(str2)) __tokencap_dump(str2, len, 1);
441*08b48e0bSAndroid Build Coastguard Worker
442*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
443*08b48e0bSAndroid Build Coastguard Worker if (__libc_strncasecmp) return __libc_strncasecmp(str1, str2, len);
444*08b48e0bSAndroid Build Coastguard Worker #endif
445*08b48e0bSAndroid Build Coastguard Worker
446*08b48e0bSAndroid Build Coastguard Worker while (len--) {
447*08b48e0bSAndroid Build Coastguard Worker
448*08b48e0bSAndroid Build Coastguard Worker const unsigned char c1 = tolower((int)*str1), c2 = tolower((int)*str2);
449*08b48e0bSAndroid Build Coastguard Worker
450*08b48e0bSAndroid Build Coastguard Worker if (c1 != c2) return (c1 > c2) ? 1 : -1;
451*08b48e0bSAndroid Build Coastguard Worker if (!c1) return 0;
452*08b48e0bSAndroid Build Coastguard Worker str1++;
453*08b48e0bSAndroid Build Coastguard Worker str2++;
454*08b48e0bSAndroid Build Coastguard Worker
455*08b48e0bSAndroid Build Coastguard Worker }
456*08b48e0bSAndroid Build Coastguard Worker
457*08b48e0bSAndroid Build Coastguard Worker return 0;
458*08b48e0bSAndroid Build Coastguard Worker
459*08b48e0bSAndroid Build Coastguard Worker }
460*08b48e0bSAndroid Build Coastguard Worker
461*08b48e0bSAndroid Build Coastguard Worker #undef memcmp
462*08b48e0bSAndroid Build Coastguard Worker
463*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int memcmp(const void *mem1, const void *mem2,
464*08b48e0bSAndroid Build Coastguard Worker size_t len) {
465*08b48e0bSAndroid Build Coastguard Worker
466*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(mem1)) __tokencap_dump(mem1, len, 0);
467*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(mem2)) __tokencap_dump(mem2, len, 0);
468*08b48e0bSAndroid Build Coastguard Worker
469*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
470*08b48e0bSAndroid Build Coastguard Worker if (__libc_memcmp) return __libc_memcmp(mem1, mem2, len);
471*08b48e0bSAndroid Build Coastguard Worker #endif
472*08b48e0bSAndroid Build Coastguard Worker
473*08b48e0bSAndroid Build Coastguard Worker const char *strmem1 = (const char *)mem1;
474*08b48e0bSAndroid Build Coastguard Worker const char *strmem2 = (const char *)mem2;
475*08b48e0bSAndroid Build Coastguard Worker
476*08b48e0bSAndroid Build Coastguard Worker while (len--) {
477*08b48e0bSAndroid Build Coastguard Worker
478*08b48e0bSAndroid Build Coastguard Worker const unsigned char c1 = *strmem1, c2 = *strmem2;
479*08b48e0bSAndroid Build Coastguard Worker if (c1 != c2) return (c1 > c2) ? 1 : -1;
480*08b48e0bSAndroid Build Coastguard Worker strmem1++;
481*08b48e0bSAndroid Build Coastguard Worker strmem2++;
482*08b48e0bSAndroid Build Coastguard Worker
483*08b48e0bSAndroid Build Coastguard Worker }
484*08b48e0bSAndroid Build Coastguard Worker
485*08b48e0bSAndroid Build Coastguard Worker return 0;
486*08b48e0bSAndroid Build Coastguard Worker
487*08b48e0bSAndroid Build Coastguard Worker }
488*08b48e0bSAndroid Build Coastguard Worker
489*08b48e0bSAndroid Build Coastguard Worker #undef bcmp
490*08b48e0bSAndroid Build Coastguard Worker
491*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) int bcmp(const void *mem1, const void *mem2, size_t len) {
492*08b48e0bSAndroid Build Coastguard Worker
493*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(mem1)) __tokencap_dump(mem1, len, 0);
494*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(mem2)) __tokencap_dump(mem2, len, 0);
495*08b48e0bSAndroid Build Coastguard Worker
496*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
497*08b48e0bSAndroid Build Coastguard Worker if (__libc_bcmp) return __libc_bcmp(mem1, mem2, len);
498*08b48e0bSAndroid Build Coastguard Worker #endif
499*08b48e0bSAndroid Build Coastguard Worker
500*08b48e0bSAndroid Build Coastguard Worker const char *strmem1 = (const char *)mem1;
501*08b48e0bSAndroid Build Coastguard Worker const char *strmem2 = (const char *)mem2;
502*08b48e0bSAndroid Build Coastguard Worker
503*08b48e0bSAndroid Build Coastguard Worker while (len--) {
504*08b48e0bSAndroid Build Coastguard Worker
505*08b48e0bSAndroid Build Coastguard Worker int diff = *strmem1 ^ *strmem2;
506*08b48e0bSAndroid Build Coastguard Worker if (diff != 0) return 1;
507*08b48e0bSAndroid Build Coastguard Worker strmem1++;
508*08b48e0bSAndroid Build Coastguard Worker strmem2++;
509*08b48e0bSAndroid Build Coastguard Worker
510*08b48e0bSAndroid Build Coastguard Worker }
511*08b48e0bSAndroid Build Coastguard Worker
512*08b48e0bSAndroid Build Coastguard Worker return 0;
513*08b48e0bSAndroid Build Coastguard Worker
514*08b48e0bSAndroid Build Coastguard Worker }
515*08b48e0bSAndroid Build Coastguard Worker
516*08b48e0bSAndroid Build Coastguard Worker #undef strstr
517*08b48e0bSAndroid Build Coastguard Worker
518*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) char *strstr(const char *haystack, const char *needle) {
519*08b48e0bSAndroid Build Coastguard Worker
520*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(haystack))
521*08b48e0bSAndroid Build Coastguard Worker __tokencap_dump(haystack, strlen(haystack), 1);
522*08b48e0bSAndroid Build Coastguard Worker
523*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(needle)) __tokencap_dump(needle, strlen(needle), 1);
524*08b48e0bSAndroid Build Coastguard Worker
525*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
526*08b48e0bSAndroid Build Coastguard Worker if (__libc_strstr) return __libc_strstr(haystack, needle);
527*08b48e0bSAndroid Build Coastguard Worker #endif
528*08b48e0bSAndroid Build Coastguard Worker
529*08b48e0bSAndroid Build Coastguard Worker do {
530*08b48e0bSAndroid Build Coastguard Worker
531*08b48e0bSAndroid Build Coastguard Worker const char *n = needle;
532*08b48e0bSAndroid Build Coastguard Worker const char *h = haystack;
533*08b48e0bSAndroid Build Coastguard Worker
534*08b48e0bSAndroid Build Coastguard Worker while (*n && *h && *n == *h)
535*08b48e0bSAndroid Build Coastguard Worker n++, h++;
536*08b48e0bSAndroid Build Coastguard Worker
537*08b48e0bSAndroid Build Coastguard Worker if (!*n) return (char *)haystack;
538*08b48e0bSAndroid Build Coastguard Worker
539*08b48e0bSAndroid Build Coastguard Worker } while (*(haystack++));
540*08b48e0bSAndroid Build Coastguard Worker
541*08b48e0bSAndroid Build Coastguard Worker return 0;
542*08b48e0bSAndroid Build Coastguard Worker
543*08b48e0bSAndroid Build Coastguard Worker }
544*08b48e0bSAndroid Build Coastguard Worker
545*08b48e0bSAndroid Build Coastguard Worker #undef strcasestr
546*08b48e0bSAndroid Build Coastguard Worker
547*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) char *strcasestr(const char *haystack,
548*08b48e0bSAndroid Build Coastguard Worker const char *needle) {
549*08b48e0bSAndroid Build Coastguard Worker
550*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(haystack))
551*08b48e0bSAndroid Build Coastguard Worker __tokencap_dump(haystack, strlen(haystack), 1);
552*08b48e0bSAndroid Build Coastguard Worker
553*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(needle)) __tokencap_dump(needle, strlen(needle), 1);
554*08b48e0bSAndroid Build Coastguard Worker
555*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
556*08b48e0bSAndroid Build Coastguard Worker if (__libc_strcasestr) return __libc_strcasestr(haystack, needle);
557*08b48e0bSAndroid Build Coastguard Worker #endif
558*08b48e0bSAndroid Build Coastguard Worker
559*08b48e0bSAndroid Build Coastguard Worker do {
560*08b48e0bSAndroid Build Coastguard Worker
561*08b48e0bSAndroid Build Coastguard Worker const char *n = needle;
562*08b48e0bSAndroid Build Coastguard Worker const char *h = haystack;
563*08b48e0bSAndroid Build Coastguard Worker
564*08b48e0bSAndroid Build Coastguard Worker while (*n && *h && tolower((int)*n) == tolower((int)*h))
565*08b48e0bSAndroid Build Coastguard Worker n++, h++;
566*08b48e0bSAndroid Build Coastguard Worker
567*08b48e0bSAndroid Build Coastguard Worker if (!*n) return (char *)haystack;
568*08b48e0bSAndroid Build Coastguard Worker
569*08b48e0bSAndroid Build Coastguard Worker } while (*(haystack++));
570*08b48e0bSAndroid Build Coastguard Worker
571*08b48e0bSAndroid Build Coastguard Worker return 0;
572*08b48e0bSAndroid Build Coastguard Worker
573*08b48e0bSAndroid Build Coastguard Worker }
574*08b48e0bSAndroid Build Coastguard Worker
575*08b48e0bSAndroid Build Coastguard Worker #undef memmem
576*08b48e0bSAndroid Build Coastguard Worker
577*08b48e0bSAndroid Build Coastguard Worker __attribute__((hot)) void *memmem(const void *haystack, size_t haystack_len,
578*08b48e0bSAndroid Build Coastguard Worker const void *needle, size_t needle_len) {
579*08b48e0bSAndroid Build Coastguard Worker
580*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(haystack)) __tokencap_dump(haystack, haystack_len, 1);
581*08b48e0bSAndroid Build Coastguard Worker
582*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_is_ro(needle)) __tokencap_dump(needle, needle_len, 1);
583*08b48e0bSAndroid Build Coastguard Worker
584*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
585*08b48e0bSAndroid Build Coastguard Worker if (__libc_memmem)
586*08b48e0bSAndroid Build Coastguard Worker return __libc_memmem(haystack, haystack_len, needle, needle_len);
587*08b48e0bSAndroid Build Coastguard Worker #endif
588*08b48e0bSAndroid Build Coastguard Worker
589*08b48e0bSAndroid Build Coastguard Worker const char *n = (const char *)needle;
590*08b48e0bSAndroid Build Coastguard Worker const char *h = (const char *)haystack;
591*08b48e0bSAndroid Build Coastguard Worker if (haystack_len < needle_len) return 0;
592*08b48e0bSAndroid Build Coastguard Worker if (needle_len == 0) return (void *)haystack;
593*08b48e0bSAndroid Build Coastguard Worker if (needle_len == 1) return memchr(haystack, *n, haystack_len);
594*08b48e0bSAndroid Build Coastguard Worker
595*08b48e0bSAndroid Build Coastguard Worker const char *end = h + (haystack_len - needle_len);
596*08b48e0bSAndroid Build Coastguard Worker
597*08b48e0bSAndroid Build Coastguard Worker do {
598*08b48e0bSAndroid Build Coastguard Worker
599*08b48e0bSAndroid Build Coastguard Worker if (*h == *n) {
600*08b48e0bSAndroid Build Coastguard Worker
601*08b48e0bSAndroid Build Coastguard Worker if (memcmp(h, n, needle_len) == 0) return (void *)h;
602*08b48e0bSAndroid Build Coastguard Worker
603*08b48e0bSAndroid Build Coastguard Worker }
604*08b48e0bSAndroid Build Coastguard Worker
605*08b48e0bSAndroid Build Coastguard Worker } while (h++ <= end);
606*08b48e0bSAndroid Build Coastguard Worker
607*08b48e0bSAndroid Build Coastguard Worker return 0;
608*08b48e0bSAndroid Build Coastguard Worker
609*08b48e0bSAndroid Build Coastguard Worker }
610*08b48e0bSAndroid Build Coastguard Worker
611*08b48e0bSAndroid Build Coastguard Worker /* Common libraries wrappers (from honggfuzz) */
612*08b48e0bSAndroid Build Coastguard Worker
613*08b48e0bSAndroid Build Coastguard Worker /*
614*08b48e0bSAndroid Build Coastguard Worker * Apache's httpd wrappers
615*08b48e0bSAndroid Build Coastguard Worker */
616*08b48e0bSAndroid Build Coastguard Worker int ap_cstr_casecmp(const char *s1, const char *s2) {
617*08b48e0bSAndroid Build Coastguard Worker
618*08b48e0bSAndroid Build Coastguard Worker return strcasecmp(s1, s2);
619*08b48e0bSAndroid Build Coastguard Worker
620*08b48e0bSAndroid Build Coastguard Worker }
621*08b48e0bSAndroid Build Coastguard Worker
622*08b48e0bSAndroid Build Coastguard Worker int ap_cstr_casecmpn(const char *s1, const char *s2, size_t n) {
623*08b48e0bSAndroid Build Coastguard Worker
624*08b48e0bSAndroid Build Coastguard Worker return strncasecmp(s1, s2, n);
625*08b48e0bSAndroid Build Coastguard Worker
626*08b48e0bSAndroid Build Coastguard Worker }
627*08b48e0bSAndroid Build Coastguard Worker
628*08b48e0bSAndroid Build Coastguard Worker const char *ap_strcasestr(const char *s1, const char *s2) {
629*08b48e0bSAndroid Build Coastguard Worker
630*08b48e0bSAndroid Build Coastguard Worker return strcasestr(s1, s2);
631*08b48e0bSAndroid Build Coastguard Worker
632*08b48e0bSAndroid Build Coastguard Worker }
633*08b48e0bSAndroid Build Coastguard Worker
634*08b48e0bSAndroid Build Coastguard Worker int apr_cstr_casecmp(const char *s1, const char *s2) {
635*08b48e0bSAndroid Build Coastguard Worker
636*08b48e0bSAndroid Build Coastguard Worker return strcasecmp(s1, s2);
637*08b48e0bSAndroid Build Coastguard Worker
638*08b48e0bSAndroid Build Coastguard Worker }
639*08b48e0bSAndroid Build Coastguard Worker
640*08b48e0bSAndroid Build Coastguard Worker int apr_cstr_casecmpn(const char *s1, const char *s2, size_t n) {
641*08b48e0bSAndroid Build Coastguard Worker
642*08b48e0bSAndroid Build Coastguard Worker return strncasecmp(s1, s2, n);
643*08b48e0bSAndroid Build Coastguard Worker
644*08b48e0bSAndroid Build Coastguard Worker }
645*08b48e0bSAndroid Build Coastguard Worker
646*08b48e0bSAndroid Build Coastguard Worker /*
647*08b48e0bSAndroid Build Coastguard Worker * *SSL wrappers
648*08b48e0bSAndroid Build Coastguard Worker */
649*08b48e0bSAndroid Build Coastguard Worker int CRYPTO_memcmp(const void *m1, const void *m2, size_t len) {
650*08b48e0bSAndroid Build Coastguard Worker
651*08b48e0bSAndroid Build Coastguard Worker return memcmp(m1, m2, len);
652*08b48e0bSAndroid Build Coastguard Worker
653*08b48e0bSAndroid Build Coastguard Worker }
654*08b48e0bSAndroid Build Coastguard Worker
655*08b48e0bSAndroid Build Coastguard Worker int OPENSSL_memcmp(const void *m1, const void *m2, size_t len) {
656*08b48e0bSAndroid Build Coastguard Worker
657*08b48e0bSAndroid Build Coastguard Worker return memcmp(m1, m2, len);
658*08b48e0bSAndroid Build Coastguard Worker
659*08b48e0bSAndroid Build Coastguard Worker }
660*08b48e0bSAndroid Build Coastguard Worker
661*08b48e0bSAndroid Build Coastguard Worker int OPENSSL_strcasecmp(const char *s1, const char *s2) {
662*08b48e0bSAndroid Build Coastguard Worker
663*08b48e0bSAndroid Build Coastguard Worker return strcasecmp(s1, s2);
664*08b48e0bSAndroid Build Coastguard Worker
665*08b48e0bSAndroid Build Coastguard Worker }
666*08b48e0bSAndroid Build Coastguard Worker
667*08b48e0bSAndroid Build Coastguard Worker int OPENSSL_strncasecmp(const char *s1, const char *s2, size_t len) {
668*08b48e0bSAndroid Build Coastguard Worker
669*08b48e0bSAndroid Build Coastguard Worker return strncasecmp(s1, s2, len);
670*08b48e0bSAndroid Build Coastguard Worker
671*08b48e0bSAndroid Build Coastguard Worker }
672*08b48e0bSAndroid Build Coastguard Worker
673*08b48e0bSAndroid Build Coastguard Worker int32_t memcmpct(const void *s1, const void *s2, size_t len) {
674*08b48e0bSAndroid Build Coastguard Worker
675*08b48e0bSAndroid Build Coastguard Worker return memcmp(s1, s2, len);
676*08b48e0bSAndroid Build Coastguard Worker
677*08b48e0bSAndroid Build Coastguard Worker }
678*08b48e0bSAndroid Build Coastguard Worker
679*08b48e0bSAndroid Build Coastguard Worker /*
680*08b48e0bSAndroid Build Coastguard Worker * libXML wrappers
681*08b48e0bSAndroid Build Coastguard Worker */
682*08b48e0bSAndroid Build Coastguard Worker int xmlStrncmp(const char *s1, const char *s2, int len) {
683*08b48e0bSAndroid Build Coastguard Worker
684*08b48e0bSAndroid Build Coastguard Worker if (len <= 0) { return 0; }
685*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return 0; }
686*08b48e0bSAndroid Build Coastguard Worker if (s1 == NULL) { return -1; }
687*08b48e0bSAndroid Build Coastguard Worker if (s2 == NULL) { return 1; }
688*08b48e0bSAndroid Build Coastguard Worker return strncmp(s1, s2, (size_t)len);
689*08b48e0bSAndroid Build Coastguard Worker
690*08b48e0bSAndroid Build Coastguard Worker }
691*08b48e0bSAndroid Build Coastguard Worker
692*08b48e0bSAndroid Build Coastguard Worker int xmlStrcmp(const char *s1, const char *s2) {
693*08b48e0bSAndroid Build Coastguard Worker
694*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return 0; }
695*08b48e0bSAndroid Build Coastguard Worker if (s1 == NULL) { return -1; }
696*08b48e0bSAndroid Build Coastguard Worker if (s2 == NULL) { return 1; }
697*08b48e0bSAndroid Build Coastguard Worker return strcmp(s1, s2);
698*08b48e0bSAndroid Build Coastguard Worker
699*08b48e0bSAndroid Build Coastguard Worker }
700*08b48e0bSAndroid Build Coastguard Worker
701*08b48e0bSAndroid Build Coastguard Worker int xmlStrEqual(const char *s1, const char *s2) {
702*08b48e0bSAndroid Build Coastguard Worker
703*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return 1; }
704*08b48e0bSAndroid Build Coastguard Worker if (s1 == NULL) { return 0; }
705*08b48e0bSAndroid Build Coastguard Worker if (s2 == NULL) { return 0; }
706*08b48e0bSAndroid Build Coastguard Worker if (strcmp(s1, s2) == 0) { return 1; }
707*08b48e0bSAndroid Build Coastguard Worker return 0;
708*08b48e0bSAndroid Build Coastguard Worker
709*08b48e0bSAndroid Build Coastguard Worker }
710*08b48e0bSAndroid Build Coastguard Worker
711*08b48e0bSAndroid Build Coastguard Worker int xmlStrcasecmp(const char *s1, const char *s2) {
712*08b48e0bSAndroid Build Coastguard Worker
713*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return 0; }
714*08b48e0bSAndroid Build Coastguard Worker if (s1 == NULL) { return -1; }
715*08b48e0bSAndroid Build Coastguard Worker if (s2 == NULL) { return 1; }
716*08b48e0bSAndroid Build Coastguard Worker return strcasecmp(s1, s2);
717*08b48e0bSAndroid Build Coastguard Worker
718*08b48e0bSAndroid Build Coastguard Worker }
719*08b48e0bSAndroid Build Coastguard Worker
720*08b48e0bSAndroid Build Coastguard Worker int xmlStrncasecmp(const char *s1, const char *s2, int len) {
721*08b48e0bSAndroid Build Coastguard Worker
722*08b48e0bSAndroid Build Coastguard Worker if (len <= 0) { return 0; }
723*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return 0; }
724*08b48e0bSAndroid Build Coastguard Worker if (s1 == NULL) { return -1; }
725*08b48e0bSAndroid Build Coastguard Worker if (s2 == NULL) { return 1; }
726*08b48e0bSAndroid Build Coastguard Worker return strncasecmp(s1, s2, (size_t)len);
727*08b48e0bSAndroid Build Coastguard Worker
728*08b48e0bSAndroid Build Coastguard Worker }
729*08b48e0bSAndroid Build Coastguard Worker
730*08b48e0bSAndroid Build Coastguard Worker const char *xmlStrstr(const char *haystack, const char *needle) {
731*08b48e0bSAndroid Build Coastguard Worker
732*08b48e0bSAndroid Build Coastguard Worker if (haystack == NULL) { return NULL; }
733*08b48e0bSAndroid Build Coastguard Worker if (needle == NULL) { return NULL; }
734*08b48e0bSAndroid Build Coastguard Worker return strstr(haystack, needle);
735*08b48e0bSAndroid Build Coastguard Worker
736*08b48e0bSAndroid Build Coastguard Worker }
737*08b48e0bSAndroid Build Coastguard Worker
738*08b48e0bSAndroid Build Coastguard Worker const char *xmlStrcasestr(const char *haystack, const char *needle) {
739*08b48e0bSAndroid Build Coastguard Worker
740*08b48e0bSAndroid Build Coastguard Worker if (haystack == NULL) { return NULL; }
741*08b48e0bSAndroid Build Coastguard Worker if (needle == NULL) { return NULL; }
742*08b48e0bSAndroid Build Coastguard Worker return strcasestr(haystack, needle);
743*08b48e0bSAndroid Build Coastguard Worker
744*08b48e0bSAndroid Build Coastguard Worker }
745*08b48e0bSAndroid Build Coastguard Worker
746*08b48e0bSAndroid Build Coastguard Worker /*
747*08b48e0bSAndroid Build Coastguard Worker * Samba wrappers
748*08b48e0bSAndroid Build Coastguard Worker */
749*08b48e0bSAndroid Build Coastguard Worker int memcmp_const_time(const void *s1, const void *s2, size_t n) {
750*08b48e0bSAndroid Build Coastguard Worker
751*08b48e0bSAndroid Build Coastguard Worker return memcmp(s1, s2, n);
752*08b48e0bSAndroid Build Coastguard Worker
753*08b48e0bSAndroid Build Coastguard Worker }
754*08b48e0bSAndroid Build Coastguard Worker
755*08b48e0bSAndroid Build Coastguard Worker bool strcsequal(const void *s1, const void *s2) {
756*08b48e0bSAndroid Build Coastguard Worker
757*08b48e0bSAndroid Build Coastguard Worker if (s1 == s2) { return true; }
758*08b48e0bSAndroid Build Coastguard Worker if (!s1 || !s2) { return false; }
759*08b48e0bSAndroid Build Coastguard Worker return (strcmp(s1, s2) == 0);
760*08b48e0bSAndroid Build Coastguard Worker
761*08b48e0bSAndroid Build Coastguard Worker }
762*08b48e0bSAndroid Build Coastguard Worker
763*08b48e0bSAndroid Build Coastguard Worker /* bcmp/memcmp BSD flavors, similar to CRYPTO_memcmp */
764*08b48e0bSAndroid Build Coastguard Worker
765*08b48e0bSAndroid Build Coastguard Worker int timingsafe_bcmp(const void *mem1, const void *mem2, size_t len) {
766*08b48e0bSAndroid Build Coastguard Worker
767*08b48e0bSAndroid Build Coastguard Worker return bcmp(mem1, mem2, len);
768*08b48e0bSAndroid Build Coastguard Worker
769*08b48e0bSAndroid Build Coastguard Worker }
770*08b48e0bSAndroid Build Coastguard Worker
771*08b48e0bSAndroid Build Coastguard Worker int timingsafe_memcmp(const void *mem1, const void *mem2, size_t len) {
772*08b48e0bSAndroid Build Coastguard Worker
773*08b48e0bSAndroid Build Coastguard Worker return memcmp(mem1, mem2, len);
774*08b48e0bSAndroid Build Coastguard Worker
775*08b48e0bSAndroid Build Coastguard Worker }
776*08b48e0bSAndroid Build Coastguard Worker
777*08b48e0bSAndroid Build Coastguard Worker /* Init code to open the output file (or default to stderr). */
778*08b48e0bSAndroid Build Coastguard Worker
779*08b48e0bSAndroid Build Coastguard Worker __attribute__((constructor)) void __tokencap_init(void) {
780*08b48e0bSAndroid Build Coastguard Worker
781*08b48e0bSAndroid Build Coastguard Worker u8 *fn = getenv("AFL_TOKEN_FILE");
782*08b48e0bSAndroid Build Coastguard Worker if (fn) __tokencap_out_file = open(fn, O_RDWR | O_CREAT | O_APPEND, 0655);
783*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_out_file == -1) __tokencap_out_file = STDERR_FILENO;
784*08b48e0bSAndroid Build Coastguard Worker __tokencap_pid = getpid();
785*08b48e0bSAndroid Build Coastguard Worker
786*08b48e0bSAndroid Build Coastguard Worker #ifdef RTLD_NEXT
787*08b48e0bSAndroid Build Coastguard Worker __libc_strcmp = dlsym(RTLD_NEXT, "strcmp");
788*08b48e0bSAndroid Build Coastguard Worker __libc_strncmp = dlsym(RTLD_NEXT, "strncmp");
789*08b48e0bSAndroid Build Coastguard Worker __libc_strcasecmp = dlsym(RTLD_NEXT, "strcasecmp");
790*08b48e0bSAndroid Build Coastguard Worker __libc_strncasecmp = dlsym(RTLD_NEXT, "strncasecmp");
791*08b48e0bSAndroid Build Coastguard Worker __libc_memcmp = dlsym(RTLD_NEXT, "memcmp");
792*08b48e0bSAndroid Build Coastguard Worker __libc_bcmp = dlsym(RTLD_NEXT, "bcmp");
793*08b48e0bSAndroid Build Coastguard Worker __libc_strstr = dlsym(RTLD_NEXT, "strstr");
794*08b48e0bSAndroid Build Coastguard Worker __libc_strcasestr = dlsym(RTLD_NEXT, "strcasestr");
795*08b48e0bSAndroid Build Coastguard Worker __libc_memmem = dlsym(RTLD_NEXT, "memmem");
796*08b48e0bSAndroid Build Coastguard Worker #endif
797*08b48e0bSAndroid Build Coastguard Worker
798*08b48e0bSAndroid Build Coastguard Worker }
799*08b48e0bSAndroid Build Coastguard Worker
800*08b48e0bSAndroid Build Coastguard Worker /* closing as best as we can the tokens file */
801*08b48e0bSAndroid Build Coastguard Worker __attribute__((destructor)) void __tokencap_shutdown(void) {
802*08b48e0bSAndroid Build Coastguard Worker
803*08b48e0bSAndroid Build Coastguard Worker if (__tokencap_out_file != STDERR_FILENO) close(__tokencap_out_file);
804*08b48e0bSAndroid Build Coastguard Worker
805*08b48e0bSAndroid Build Coastguard Worker }
806*08b48e0bSAndroid Build Coastguard Worker
807