fionera
/
transfer.sh
forked from kiska/transfer.sh
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
381 Commits
9 Branches
34 MiB
 
 
 
Tree: 6b148d3574
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6b148d3574'
${ noResults }
transfer.sh/server/server_fuzz.go

129 lines
2.3 KiB
Raw Blame History 

  1. // +build gofuzz

  2. 

  3. package server

  4. 

  5. import (

  6. 	"crypto/tls"

  7. 	"io/ioutil"

  8. 	"net"

  9. 	"strings"

  10. )

  11. 

  12. // FuzzProfile tests the profile server.

  13. func FuzzProfile(fuzz []byte) int {

  14. 	if len(fuzz) == 0 {

  15. 		return -1

  16. 	}

  17. 	server, err := New(EnableProfiler())

  18. 	if err != nil {

  19. 		panic(err.Error())

  20. 	}

  21. 	server.Run()

  22. 	defer server.profileListener.Close()

  23. 	defer server.httpListener.Close()

  24. 	address := server.profileListener.Addr

  25. 	connection, err := net.Dial("tcp", address)

  26. 	if err != nil {

  27. 		panic(err.Error())

  28. 	}

  29. 	_, err = connection.Write(fuzz)

  30. 	if err != nil {

  31. 		return 0

  32. 	}

  33. 	response, err := ioutil.ReadAll(connection)

  34. 	if err != nil {

  35. 		return 0

  36. 	}

  37. 	err = connection.Close()

  38. 	if err != nil {

  39. 		return 0

  40. 	}

  41. 	fields := strings.Fields(string(response))

  42. 	if len(fields) < 2 {

  43. 		panic("invalid HTTP response")

  44. 	}

  45. 	code := fields[1]

  46. 	if code == "500" {

  47. 		panic("server panicked")

  48. 	}

  49. 	return 1

  50. }

  51. 

  52. // FuzzHTTP tests the HTTP server.

  53. func FuzzHTTP(fuzz []byte) int {

  54. 	if len(fuzz) == 0 {

  55. 		return -1

  56. 	}

  57. 	server, err := New(Listener("localhost"))

  58. 	if err != nil {

  59. 		panic(err.Error())

  60. 	}

  61. 	server.Run()

  62. 	defer server.httpListener.Close()

  63. 	address := server.httpListener.Addr

  64. 	connection, err := net.Dial("tcp", address)

  65. 	if err != nil {

  66. 		panic(err.Error())

  67. 	}

  68. 	_, err = connection.Write(fuzz)

  69. 	if err != nil {

  70. 		return 0

  71. 	}

  72. 	response, err := ioutil.ReadAll(connection)

  73. 	if err != nil {

  74. 		return 0

  75. 	}

  76. 	err = connection.Close()

  77. 	if err != nil {

  78. 		return 0

  79. 	}

  80. 	fields := strings.Fields(string(response))

  81. 	if len(fields) < 2 {

  82. 		panic("invalid HTTP response")

  83. 	}

  84. 	code := fields[1]

  85. 	if code == "500" {

  86. 		panic("server panicked")

  87. 	}

  88. 	return 1

  89. }

  90. 

  91. // FuzzHTTPS tests the HTTPS server.

  92. func FuzzHTTPS(fuzz []byte) int {

  93. 	if len(fuzz) == 0 {

  94. 		return -1

  95. 	}

  96. 	server, err := New(TLSListener("localhost", true))

  97. 	if err != nil {

  98. 		panic(err.Error())

  99. 	}

  100. 	server.Run()

  101. 	defer server.httpsListener.Close()

  102. 	address := server.httpsListener.Addr

  103. 	connection, err := tls.Dial("tcp", address, nil)

  104. 	if err != nil {

  105. 		panic(err.Error())

  106. 	}

  107. 	_, err = connection.Write(fuzz)

  108. 	if err != nil {

  109. 		return 0

  110. 	}

  111. 	response, err := ioutil.ReadAll(connection)

  112. 	if err != nil {

  113. 		return 0

  114. 	}

  115. 	err = connection.Close()

  116. 	if err != nil {

  117. 		return 0

  118. 	}

  119. 	fields := strings.Fields(string(response))

  120. 	if len(fields) < 2 {

  121. 		panic("invalid HTTP response")

  122. 	}

  123. 	code := fields[1]

  124. 	if code == "500" {

  125. 		panic("server panicked")

  126. 	}

  127. 	return 1

  128. }