diff options
Diffstat (limited to 'sanitizers/src/test/java/com/example/SsrfHttpClient.java')
-rw-r--r-- | sanitizers/src/test/java/com/example/SsrfHttpClient.java | 39 |
1 files changed, 39 insertions, 0 deletions
diff --git a/sanitizers/src/test/java/com/example/SsrfHttpClient.java b/sanitizers/src/test/java/com/example/SsrfHttpClient.java new file mode 100644 index 00000000..6da561a9 --- /dev/null +++ b/sanitizers/src/test/java/com/example/SsrfHttpClient.java @@ -0,0 +1,39 @@ +// Copyright 2023 Code Intelligence GmbH +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. + +package com.example; + +import com.code_intelligence.jazzer.api.FuzzedDataProvider; +import java.io.IOException; +import java.net.*; +import java.net.http.HttpClient; +import java.net.http.HttpRequest; +import java.net.http.HttpResponse; + +public class SsrfHttpClient { + private static final HttpClient CLIENT = + HttpClient.newBuilder().version(HttpClient.Version.HTTP_1_1).build(); + + public static void fuzzerTestOneInput(FuzzedDataProvider data) + throws IOException, InterruptedException { + String hostname = data.consumeString(15); + URI uri; + try { + uri = URI.create("https://" + hostname); + HttpRequest request = HttpRequest.newBuilder().uri(uri).GET().build(); + CLIENT.send(request, HttpResponse.BodyHandlers.ofString()); + } catch (IllegalArgumentException ignored) { + } + } +} |