qbdi_mode/demo-so.c - platform/external/AFLplusplus - Git at Google

 #include <stdio.h>

 // gcc -shared -o libdemo.so demo-so.c -w
 int target_func(char *buf, int size) {

   printf("buffer:%p, size:%p\n", buf, size);
   switch (buf[0]) {

     case 1:
       puts("222");
       if (buf[1] == '\x44') {

         puts("null ptr deference");
         *(char *)(0) = 1;

       }

       break;
     case 0xff:
       if (buf[2] == '\xff') {

         if (buf[1] == '\x44') {

           puts("crash....");
           *(char *)(0xdeadbeef) = 1;

         }

       }

       break;
     default:
       puts("default action");
       break;

   }

   return 1;

 }
	#include <stdio.h>

	// gcc -shared -o libdemo.so demo-so.c -w
	int target_func(char *buf, int size) {

	printf("buffer:%p, size:%p\n", buf, size);
	switch (buf[0]) {

	case 1:
	puts("222");
	if (buf[1] == '\x44') {

	puts("null ptr deference");
	(char )(0) = 1;

	}

	break;
	case 0xff:
	if (buf[2] == '\xff') {

	if (buf[1] == '\x44') {

	puts("crash....");
	(char )(0xdeadbeef) = 1;

	}

	}

	break;
	default:
	puts("default action");
	break;

	}

	return 1;

	}