tests/fuzzer/flatbuffers_parser_fuzzer.cc

*890232f2SAndroid Build Coastguard Worker// Copyright 2015 The Chromium Authors. All rights reserved.
*890232f2SAndroid Build Coastguard Worker// Use of this source code is governed by a BSD-style license that can be
*890232f2SAndroid Build Coastguard Worker// found in the LICENSE file.
*890232f2SAndroid Build Coastguard Worker#include <stddef.h>
*890232f2SAndroid Build Coastguard Worker#include <stdint.h>
*890232f2SAndroid Build Coastguard Worker#include <clocale>
*890232f2SAndroid Build Coastguard Worker#include <string>
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker#include "flatbuffers/idl.h"
*890232f2SAndroid Build Coastguard Worker#include "test_init.h"
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Workerstatic constexpr size_t kMinInputLength = 1;
*890232f2SAndroid Build Coastguard Workerstatic constexpr size_t kMaxInputLength = 16384;
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Workerstatic constexpr uint8_t flags_strict_json = 0x80;
*890232f2SAndroid Build Coastguard Workerstatic constexpr uint8_t flags_skip_unexpected_fields_in_json = 0x40;
*890232f2SAndroid Build Coastguard Workerstatic constexpr uint8_t flags_allow_non_utf8 = 0x20;
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker// Utility for test run.
*890232f2SAndroid Build Coastguard WorkerOneTimeTestInit OneTimeTestInit::one_time_init_;
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Workerextern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
*890232f2SAndroid Build Coastguard Worker  // Reserve one byte for Parser flags and one byte for repetition counter.
*890232f2SAndroid Build Coastguard Worker  if (size < 3) return 0;
*890232f2SAndroid Build Coastguard Worker  const uint8_t flags = data[0];
*890232f2SAndroid Build Coastguard Worker  (void)data[1];  //  reserved
*890232f2SAndroid Build Coastguard Worker  data += 2;
*890232f2SAndroid Build Coastguard Worker  size -= 2;  // bypass
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker  const std::string original(reinterpret_cast<const char *>(data), size);
*890232f2SAndroid Build Coastguard Worker  auto input = std::string(original.c_str());  // until '\0'
*890232f2SAndroid Build Coastguard Worker  if (input.size() < kMinInputLength || input.size() > kMaxInputLength)
*890232f2SAndroid Build Coastguard Worker    return 0;
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker  flatbuffers::IDLOptions opts;
*890232f2SAndroid Build Coastguard Worker  opts.strict_json = (flags & flags_strict_json);
*890232f2SAndroid Build Coastguard Worker  opts.skip_unexpected_fields_in_json =
*890232f2SAndroid Build Coastguard Worker      (flags & flags_skip_unexpected_fields_in_json);
*890232f2SAndroid Build Coastguard Worker  opts.allow_non_utf8 = (flags & flags_allow_non_utf8);
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker  flatbuffers::Parser parser(opts);
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker  // Guarantee 0-termination in the input.
*890232f2SAndroid Build Coastguard Worker  auto parse_input = input.c_str();
*890232f2SAndroid Build Coastguard Worker
*890232f2SAndroid Build Coastguard Worker  // Check Parser.
*890232f2SAndroid Build Coastguard Worker  parser.Parse(parse_input);
*890232f2SAndroid Build Coastguard Worker  // TODO:
*890232f2SAndroid Build Coastguard Worker  // Need to add additional checks for inputs passed Parse(parse_input) successfully:
*890232f2SAndroid Build Coastguard Worker  // 1. Serialization to bfbs.
*890232f2SAndroid Build Coastguard Worker  // 2. Generation of a default object.
*890232f2SAndroid Build Coastguard Worker  // 3. Verification of the object using reflection.
*890232f2SAndroid Build Coastguard Worker  // 3. Printing to json.
*890232f2SAndroid Build Coastguard Worker  return 0;
*890232f2SAndroid Build Coastguard Worker}