Squirrel is a fuzzer for database managment systems (DBMSs).
Squirrel was first built on AFL and then migrated to AFLplusplus to enjoy the improvement of state-of-the-art fuzzing strategies.
cd scripts/docker/xxx/, where xxx is the database name.docker build -t xxx ..docker run -it xxx.For ubuntu 22.04:
sudo apt install libmysqlclient-dev cmake ninja-build clang pkg-config clang-format libpq-dev libyaml-cpp-dev
git submodule update --init.cmake -S . -B build -DCMAKE_BUILD_TYPE=Release -Wno-dev. If you want to compile only the mutator for the specific databases, add -DXXXXX=ON, XXXXX can be SQLITE, MYSQL and POSTGRESQL. Mariadb share the same interface with MySQL.cmake --build build -j, the binaries are in build/.cd AFLplusplus && make -j && cd ...afl-cc and afl-c++ to instrument your database.yaml. Examples can be found in data/*.yml.export SQUIRREL_CONFIG=/path/to/config.yml export AFL_CUSTOM_MUTATOR_ONLY=1 export AFL_CUSTOM_MUTATOR_LIBRARY= REPO_DIR/build/libxxxx_mutator.so export AFL_DISABLE_TRIM=1
Same as AFLplusplus: afl-fuzz -i input -o output -- sqlite_harness.
__afl_map_size and set it to AFL_MAP_SIZE.afl-fuzz -i input -o output -- ./build/db_driver, it will print the share memory id and wait for 30 seconds.export __AFL_SHM_ID=xxxx.More details can be found in our CCS 2020 paper. And the bugs found by Squirrel can be found in here.
SQUIRREL: Testing Database Management Systems with Language Validity and Coverage Feedback
@inproceedings{zhong:squirrel,
title = {{SQUIRREL: Testing Database Management Systems with Language Validity and Coverage Feedback}},
author = {Rui Zhong and Yongheng Chen and Hong Hu and Hangfan Zhang and Wenke Lee and Dinghao Wu},
booktitle = {Proceedings of the 27th ACM Conference on Computer and Communications Security (CCS)},
month = nov,
year = 2020,
address = {Orlando, USA},
}
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4