From e6806d0f7321f4fc18a13f474976d2e68f9ca4de Mon Sep 17 00:00:00 2001 From: Denis Efremov Date: Thu, 7 Jun 2018 10:59:06 +0300 Subject: sys/linux: floppy interface description For floppy fuzzing you need to enable: 1) CONFIG_BLK_DEV_FD in your kernel configuration 2) "cmdline": " -fda FLOPPY.img " in syzkaller configuration Signed-off-by: Denis Efremov Signed-off-by: Alexander Popov --- executor/defs.h | 10 +++---- executor/syscalls.h | 80 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 85 insertions(+), 5 deletions(-) (limited to 'executor') diff --git a/executor/defs.h b/executor/defs.h index 2a83d0141..c7f5eeee6 100644 --- a/executor/defs.h +++ b/executor/defs.h @@ -60,7 +60,7 @@ #if GOARCH_386 #define GOARCH "386" -#define SYZ_REVISION "7d1cc6599aafad3c0b0ee7e24d0ea18a1310f4f6" +#define SYZ_REVISION "19d08eea29fb1a170319a86df783d31aa4d29b93" #define SYZ_EXECUTOR_USES_FORK_SERVER 1 #define SYZ_EXECUTOR_USES_SHMEM 1 #define SYZ_PAGE_SIZE 4096 @@ -70,7 +70,7 @@ #if GOARCH_amd64 #define GOARCH "amd64" -#define SYZ_REVISION "ef47a3e33a5764e82cb1ccb694fd34a5311053b4" +#define SYZ_REVISION "c65d8903b787f6f35b4f1794adc1558f95956a2f" #define SYZ_EXECUTOR_USES_FORK_SERVER 1 #define SYZ_EXECUTOR_USES_SHMEM 1 #define SYZ_PAGE_SIZE 4096 @@ -80,7 +80,7 @@ #if GOARCH_arm #define GOARCH "arm" -#define SYZ_REVISION "15223c241125b3b97cca255736128daf2364eb5f" +#define SYZ_REVISION "159cd727c1551ba9f1ddb35408ab61c3866826a3" #define SYZ_EXECUTOR_USES_FORK_SERVER 1 #define SYZ_EXECUTOR_USES_SHMEM 1 #define SYZ_PAGE_SIZE 4096 @@ -90,7 +90,7 @@ #if GOARCH_arm64 #define GOARCH "arm64" -#define SYZ_REVISION "788811e4e0b7f2906517c1b548e5d719bb4eb681" +#define SYZ_REVISION "ce615e0bea35e137e9751e3fb6e89bdcddf375c5" #define SYZ_EXECUTOR_USES_FORK_SERVER 1 #define SYZ_EXECUTOR_USES_SHMEM 1 #define SYZ_PAGE_SIZE 4096 @@ -100,7 +100,7 @@ #if GOARCH_ppc64le #define GOARCH "ppc64le" -#define SYZ_REVISION "3fa983482ac8a3d065ca2cd99d5fd18b973d0b9f" +#define SYZ_REVISION "faade1eb57ce44523c093c0a30cd5067758c1953" #define SYZ_EXECUTOR_USES_FORK_SERVER 1 #define SYZ_EXECUTOR_USES_SHMEM 1 #define SYZ_PAGE_SIZE 4096 diff --git a/executor/syscalls.h b/executor/syscalls.h index a949540bc..be077dec8 100644 --- a/executor/syscalls.h +++ b/executor/syscalls.h @@ -3323,6 +3323,7 @@ const call_t syscalls[] = { {"syz_mount_image$vfat", 0, (syscall_t)syz_mount_image}, {"syz_mount_image$xfs", 0, (syscall_t)syz_mount_image}, {"syz_open_dev$CDROM_DEV_LINK", 0, (syscall_t)syz_open_dev}, + {"syz_open_dev$FLOPPY", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$I2C", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$admmidi", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$adsp", 0, (syscall_t)syz_open_dev}, @@ -4127,6 +4128,31 @@ const call_t syscalls[] = { {"ioctl$FIGETBSZ", 16}, {"ioctl$FIONREAD", 16}, {"ioctl$FITRIM", 16}, + {"ioctl$FLOPPY_FDCLRPRM", 16}, + {"ioctl$FLOPPY_FDDEFPRM", 16}, + {"ioctl$FLOPPY_FDEJECT", 16}, + {"ioctl$FLOPPY_FDFLUSH", 16}, + {"ioctl$FLOPPY_FDFMTBEG", 16}, + {"ioctl$FLOPPY_FDFMTEND", 16}, + {"ioctl$FLOPPY_FDFMTTRK", 16}, + {"ioctl$FLOPPY_FDGETDRVPRM", 16}, + {"ioctl$FLOPPY_FDGETDRVSTAT", 16}, + {"ioctl$FLOPPY_FDGETDRVTYP", 16}, + {"ioctl$FLOPPY_FDGETFDCSTAT", 16}, + {"ioctl$FLOPPY_FDGETMAXERRS", 16}, + {"ioctl$FLOPPY_FDGETPRM", 16}, + {"ioctl$FLOPPY_FDMSGOFF", 16}, + {"ioctl$FLOPPY_FDMSGON", 16}, + {"ioctl$FLOPPY_FDPOLLDRVSTAT", 16}, + {"ioctl$FLOPPY_FDRAWCMD", 16}, + {"ioctl$FLOPPY_FDRESET", 16}, + {"ioctl$FLOPPY_FDSETDRVPRM", 16}, + {"ioctl$FLOPPY_FDSETEMSGTRESH", 16}, + {"ioctl$FLOPPY_FDSETMAXERRS", 16}, + {"ioctl$FLOPPY_FDSETPRM", 16}, + {"ioctl$FLOPPY_FDTWADDLE", 16}, + {"ioctl$FLOPPY_FDWERRORCLR", 16}, + {"ioctl$FLOPPY_FDWERRORGET", 16}, {"ioctl$FS_IOC_FIEMAP", 16}, {"ioctl$FS_IOC_FSGETXATTR", 16}, {"ioctl$FS_IOC_FSSETXATTR", 16}, @@ -5595,6 +5621,7 @@ const call_t syscalls[] = { {"syz_mount_image$vfat", 0, (syscall_t)syz_mount_image}, {"syz_mount_image$xfs", 0, (syscall_t)syz_mount_image}, {"syz_open_dev$CDROM_DEV_LINK", 0, (syscall_t)syz_open_dev}, + {"syz_open_dev$FLOPPY", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$I2C", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$admmidi", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$adsp", 0, (syscall_t)syz_open_dev}, @@ -7826,6 +7853,7 @@ const call_t syscalls[] = { {"syz_mount_image$vfat", 0, (syscall_t)syz_mount_image}, {"syz_mount_image$xfs", 0, (syscall_t)syz_mount_image}, {"syz_open_dev$CDROM_DEV_LINK", 0, (syscall_t)syz_open_dev}, + {"syz_open_dev$FLOPPY", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$I2C", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$admmidi", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$adsp", 0, (syscall_t)syz_open_dev}, @@ -8614,6 +8642,31 @@ const call_t syscalls[] = { {"ioctl$FIGETBSZ", 29}, {"ioctl$FIONREAD", 29}, {"ioctl$FITRIM", 29}, + {"ioctl$FLOPPY_FDCLRPRM", 29}, + {"ioctl$FLOPPY_FDDEFPRM", 29}, + {"ioctl$FLOPPY_FDEJECT", 29}, + {"ioctl$FLOPPY_FDFLUSH", 29}, + {"ioctl$FLOPPY_FDFMTBEG", 29}, + {"ioctl$FLOPPY_FDFMTEND", 29}, + {"ioctl$FLOPPY_FDFMTTRK", 29}, + {"ioctl$FLOPPY_FDGETDRVPRM", 29}, + {"ioctl$FLOPPY_FDGETDRVSTAT", 29}, + {"ioctl$FLOPPY_FDGETDRVTYP", 29}, + {"ioctl$FLOPPY_FDGETFDCSTAT", 29}, + {"ioctl$FLOPPY_FDGETMAXERRS", 29}, + {"ioctl$FLOPPY_FDGETPRM", 29}, + {"ioctl$FLOPPY_FDMSGOFF", 29}, + {"ioctl$FLOPPY_FDMSGON", 29}, + {"ioctl$FLOPPY_FDPOLLDRVSTAT", 29}, + {"ioctl$FLOPPY_FDRAWCMD", 29}, + {"ioctl$FLOPPY_FDRESET", 29}, + {"ioctl$FLOPPY_FDSETDRVPRM", 29}, + {"ioctl$FLOPPY_FDSETEMSGTRESH", 29}, + {"ioctl$FLOPPY_FDSETMAXERRS", 29}, + {"ioctl$FLOPPY_FDSETPRM", 29}, + {"ioctl$FLOPPY_FDTWADDLE", 29}, + {"ioctl$FLOPPY_FDWERRORCLR", 29}, + {"ioctl$FLOPPY_FDWERRORGET", 29}, {"ioctl$FS_IOC_FIEMAP", 29}, {"ioctl$FS_IOC_FSGETXATTR", 29}, {"ioctl$FS_IOC_FSSETXATTR", 29}, @@ -10031,6 +10084,7 @@ const call_t syscalls[] = { {"syz_mount_image$vfat", 0, (syscall_t)syz_mount_image}, {"syz_mount_image$xfs", 0, (syscall_t)syz_mount_image}, {"syz_open_dev$CDROM_DEV_LINK", 0, (syscall_t)syz_open_dev}, + {"syz_open_dev$FLOPPY", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$I2C", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$admmidi", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$adsp", 0, (syscall_t)syz_open_dev}, @@ -10827,6 +10881,31 @@ const call_t syscalls[] = { {"ioctl$FIGETBSZ", 54}, {"ioctl$FIONREAD", 54}, {"ioctl$FITRIM", 54}, + {"ioctl$FLOPPY_FDCLRPRM", 54}, + {"ioctl$FLOPPY_FDDEFPRM", 54}, + {"ioctl$FLOPPY_FDEJECT", 54}, + {"ioctl$FLOPPY_FDFLUSH", 54}, + {"ioctl$FLOPPY_FDFMTBEG", 54}, + {"ioctl$FLOPPY_FDFMTEND", 54}, + {"ioctl$FLOPPY_FDFMTTRK", 54}, + {"ioctl$FLOPPY_FDGETDRVPRM", 54}, + {"ioctl$FLOPPY_FDGETDRVSTAT", 54}, + {"ioctl$FLOPPY_FDGETDRVTYP", 54}, + {"ioctl$FLOPPY_FDGETFDCSTAT", 54}, + {"ioctl$FLOPPY_FDGETMAXERRS", 54}, + {"ioctl$FLOPPY_FDGETPRM", 54}, + {"ioctl$FLOPPY_FDMSGOFF", 54}, + {"ioctl$FLOPPY_FDMSGON", 54}, + {"ioctl$FLOPPY_FDPOLLDRVSTAT", 54}, + {"ioctl$FLOPPY_FDRAWCMD", 54}, + {"ioctl$FLOPPY_FDRESET", 54}, + {"ioctl$FLOPPY_FDSETDRVPRM", 54}, + {"ioctl$FLOPPY_FDSETEMSGTRESH", 54}, + {"ioctl$FLOPPY_FDSETMAXERRS", 54}, + {"ioctl$FLOPPY_FDSETPRM", 54}, + {"ioctl$FLOPPY_FDTWADDLE", 54}, + {"ioctl$FLOPPY_FDWERRORCLR", 54}, + {"ioctl$FLOPPY_FDWERRORGET", 54}, {"ioctl$FS_IOC_FIEMAP", 54}, {"ioctl$FS_IOC_FSGETXATTR", 54}, {"ioctl$FS_IOC_FSSETXATTR", 54}, @@ -12113,6 +12192,7 @@ const call_t syscalls[] = { {"syz_mount_image$vfat", 0, (syscall_t)syz_mount_image}, {"syz_mount_image$xfs", 0, (syscall_t)syz_mount_image}, {"syz_open_dev$CDROM_DEV_LINK", 0, (syscall_t)syz_open_dev}, + {"syz_open_dev$FLOPPY", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$I2C", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$admmidi", 0, (syscall_t)syz_open_dev}, {"syz_open_dev$adsp", 0, (syscall_t)syz_open_dev}, -- cgit mrf-deployment