[test suite] start on AFL fuzzing for conf files in addition to SPA pkts

test/afl/afl-run.sh

@@ -1,16 +0,0 @@
-#!/bin/sh -x
-
-OLD_DIR=afl-out-archive
-OUT_DIR=afl-fuzzing.out
-
-[ ! -d $OLD_DIR ] && mkdir $OLD_DIR
-TS=`date +"%m%d%y%H%M%S"`
-[ -d $OUT_DIR ] && mv $OUT_DIR "$OLD_DIR/$OUT_DIR-$TS"
-mkdir $OUT_DIR
-
-### make sure that a basic SPA packet to stdin in fwknopd -A mode works
-./fwknopd-stdin-test.sh || exit
-
-LD_LIBRARY_PATH=../../lib/.libs afl-fuzz -i afl-fuzzing.in -o $OUT_DIR ../../server/.libs/fwknopd -c ../conf/default_fwknopd.conf -a ../conf/default_access.conf -A -f -t
-
-exit

test/afl/fuzzing-wrappers/fwknopd-parse-access.sh

@@ -0,0 +1,3 @@
+#!/bin/sh -x
+
+LD_LIBRARY_PATH=../../lib/.libs ../../server/.libs/fwknopd -c ../conf/default_fwknopd.conf -a ../conf/default_access.conf -A -f -t --exit-parse-config -D

test/afl/fuzzing-wrappers/server-access.sh

@@ -0,0 +1,22 @@
+#!/bin/sh -x
+
+TOP_DIR="fuzzing-output"
+FDIR="server-access.out"
+ARCHIVE_DIR="$TOP_DIR/archive"
+OUT_DIR="$TOP_DIR/$FDIR"
+IN_DIR="test-cases/server-access"
+
+SERVER="../../server/.libs/fwknopd"
+LIB_DIR="../../lib/.libs"
+
+[ ! -d $ARCHIVE_DIR ] && echo "[*] $ARCHIVE_DIR does not exist" && exit
+TS=`date +"%m%d%y%H%M%S"`
+[ -d $OUT_DIR ] && mv $OUT_DIR "$ARCHIVE_DIR/$FDIR-$TS"
+mkdir $OUT_DIR
+
+### make sure that parsing the access.conf file works
+./fuzzing-wrappers/fwknopd-parse-access.sh || exit
+
+LD_LIBRARY_PATH=$LIB_DIR afl-fuzz -i $IN_DIR -o $OUT_DIR -f $OUT_DIR/afl_access.conf $SERVER -c ../conf/default_fwknopd.conf -a $OUT_DIR/afl_access.conf -A -f -t --exit-parse-config -D
+
+exit

test/afl/fuzzing-wrappers/spa-pkts.sh

@@ -0,0 +1,22 @@
+#!/bin/sh -x
+
+TOP_DIR="fuzzing-output"
+FDIR="spa-pkts.out"
+ARCHIVE_DIR="$TOP_DIR/archive"
+OUT_DIR="$TOP_DIR/$FDIR"
+IN_DIR="test-cases/spa-pkts"
+
+SERVER="../../server/.libs/fwknopd"
+LIB_DIR="../../lib/.libs"
+
+[ ! -d $ARCHIVE_DIR ] && echo "[*] $ARCHIVE_DIR does not exist" && exit
+TS=`date +"%m%d%y%H%M%S"`
+[ -d $OUT_DIR ] && mv $OUT_DIR "$ARCHIVE_DIR/$FDIR-$TS"
+mkdir $OUT_DIR
+
+### make sure that a basic SPA packet to stdin in fwknopd -A mode works
+./fuzzing-wrappers/fwknopd-stdin-test.sh || exit
+
+LD_LIBRARY_PATH=$LIB_DIR afl-fuzz -i $IN_DIR -o $OUT_DIR $SERVER -c ../conf/default_fwknopd.conf -a ../conf/default_access.conf -A -f -t
+
+exit

test/afl/test-cases/server-access/access.conf

@@ -0,0 +1,45 @@
+### test comment
+SOURCE                      4.3.2.0/24, 127.0.0.0/24, 23.43.0.0/16, 10.10.10.10
+KEY                         test1
+HMAC_KEY                    test2
+DIGEST_TYPE                 sha512
+HMAC_DIGEST_TYPE            sha256
+OPEN_PORTS                  udp/6001, tcp/22, tcp/80
+FW_ACCESS_TIMEOUT           2
+
+SOURCE                      ANY
+KEY                         test3
+ACCESS_EXPIRE               3-10-01;  ### comment
+OPEN_PORTS                  tcp/80
+FW_ACCESS_TIMEOUT           3
+ENCRYPTION_MODE             legacy
+
+SOURCE                      ANY
+REQUIRE_SOURCE_ADDRESS      Y
+REQUIRE_USERNAME            nouser
+KEY                         test4
+OPEN_PORTS                  tcp/80
+FORCE_NAT                   192.168.1.123 22
+
+SOURCE                      ANY
+KEY                         test5
+HMAC_KEY                    test6
+OPEN_PORTS                  tcp/80
+RESTRICT_PORTS              tcp/34
+FW_ACCESS_TIMEOUT           3
+ENABLE_CMD_EXEC             Y
+
+SOURCE                  ANY
+KEY                     fwknoptest
+FW_ACCESS_TIMEOUT       3
+GPG_HOME_DIR            conf/server-gpg
+GPG_DECRYPT_ID          361BBAD4
+GPG_DECRYPT_PW          fwknoptest
+GPG_REMOTE_ID           6A3FAD56
+
+SOURCE                      ANY
+FW_ACCESS_TIMEOUT           3
+GPG_HOME_DIR                conf/server-gpg-no-pw
+GPG_DECRYPT_ID              361BBAD4
+GPG_ALLOW_NO_PW             Y
+GPG_FINGERPRINT_ID          00CC95F05BC146B6AC4038C9E36F443C6A3FAD56