From: Jouni Malinen <jouni@codeaurora.org>
Date: Wed, 29 May 2019 10:49:21 +0000 (+0300)
Subject: tests: Fix ap-mgmt-fuzzer build configuration to match libap.a
X-Git-Tag: hostap_2_9~211
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=bc4d7dfc5a8992d83dcf074b25eccd7ec2ace89f;p=thirdparty%2Fhostap.git

tests: Fix ap-mgmt-fuzzer build configuration to match libap.a

Missing CONFIG_AIRTIME_POLICY=y made the offset of struct
hostapd_iface::prev_wmm different between libap.a and ap-mgmt-fuzzer.o
which resulted in odd fuzzing failures due to a memcpy to
ctx.iface->prev_wmm ending up writing on top of the ctx.hapd and in
particular, on top of ctx.hapd.iface pointer.

Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15013
Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15014
Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15015
Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15017
Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15019
Credit to OSS-Fuzz: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15020
Signed-off-by: Jouni Malinen <jouni@codeaurora.org>
---

diff --git a/tests/ap-mgmt-fuzzer/Makefile b/tests/ap-mgmt-fuzzer/Makefile
index 141a6f621..1e06767c4 100644
--- a/tests/ap-mgmt-fuzzer/Makefile
+++ b/tests/ap-mgmt-fuzzer/Makefile
@@ -22,6 +22,7 @@ CFLAGS += -DCONFIG_GAS
 CFLAGS += -DCONFIG_HS20
 CFLAGS += -DIEEE8021X_EAPOL
 CFLAGS += -DNEED_AP_MLME
+CFLAGS += -DCONFIG_AIRTIME_POLICY
 
 $(SRC)/utils/libutils.a:
 	$(MAKE) -C $(SRC)/utils