upstream/mercurial-mirror Files · contrib/fuzz/standalone_fuzz_target_runner.cc

tests: finally fix up test-fuzz-targets.t...

tests: finally fix up test-fuzz-targets.t It's been failing on my workstation for a while, since I have a new enough LLVM that I had the fuzzer goo, but not so new that I actually had FuzzedDataProvider. This is a better solution all around in my opinion. I _believe_ this should let us run these tests on most systems, even those using GCC instead of clang. That said, my one attempt to test this on my macOS laptop failed miserably, and I don't feel like doing more work on this right now. Differential Revision: https://phab.mercurial-scm.org/D7566

Augie Fackler - - Load All Authors

File last commit:

r44253:01ec70a8 default


                r44267:19da643d

default

Download file

             standalone_fuzz_target_runner.cc
        
                    45 lines
            
             | 1.5 KiB
            
                | text/x-c
            
             |
                CppLexer
            
             / contrib / fuzz / standalone_fuzz_target_runner.cc
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Augie Fackler
    
fuzz: use a more standard approach to allow local builds of fuzzers...

              r44265
            
      // Copyright 2017 Google Inc. All Rights Reserved.

      // Licensed under the Apache License, Version 2.0 (the "License");

      // Example of a standalone runner for "fuzz targets".

      // It reads all files passed as parameters and feeds their contents

      // one by one into the fuzz target (LLVMFuzzerTestOneInput).

      // This runner does not do any fuzzing, but allows us to run the fuzz target

      // on the test corpus (e.g. "do_stuff_test_data") or on a single file,

      // e.g. the one that comes from a bug report.

      #include <cassert>

      #include <fstream>

      #include <iostream>

      #include <vector>

      // Forward declare the "fuzz target" interface.

      // We deliberately keep this inteface simple and header-free.

      extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size);

        Augie Fackler
    
fuzz: make standalone_fuzz_target_runner call LLVMFuzzerInitialize...

              r44266
            
      extern "C" int LLVMFuzzerInitialize(int *argc, char ***argv);

        Augie Fackler
    
fuzz: use a more standard approach to allow local builds of fuzzers...

              r44265
            
      int main(int argc, char **argv)

      {

        Augie Fackler
    
fuzz: make standalone_fuzz_target_runner call LLVMFuzzerInitialize...

              r44266
            
      	LLVMFuzzerInitialize(&argc, &argv);

        Augie Fackler
    
fuzz: use a more standard approach to allow local builds of fuzzers...

              r44265
            
      	for (int i = 1; i < argc; i++) {

      		std::ifstream in(argv[i]);

      		in.seekg(0, in.end);

      		size_t length = in.tellg();

      		in.seekg(0, in.beg);

      		std::cout << "Reading " << length << " bytes from " << argv[i]

      		          << std::endl;

      		// Allocate exactly length bytes so that we reliably catch

      		// buffer overflows.

      		std::vector<char> bytes(length);

      		in.read(bytes.data(), bytes.size());

      		assert(in);

      		LLVMFuzzerTestOneInput(

      		    reinterpret_cast<const uint8_t *>(bytes.data()),

      		    bytes.size());

      		std::cout << "Execution successful" << std::endl;

      	}

      	return 0;

      }

      // no-check-code since this is from a third party

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Augie Fackler fuzz: use a more standard approach to allow local builds of fuzzers...	r44265	// Copyright 2017 Google Inc. All Rights Reserved.
		// Licensed under the Apache License, Version 2.0 (the "License");

		// Example of a standalone runner for "fuzz targets".
		// It reads all files passed as parameters and feeds their contents
		// one by one into the fuzz target (LLVMFuzzerTestOneInput).
		// This runner does not do any fuzzing, but allows us to run the fuzz target
		// on the test corpus (e.g. "do_stuff_test_data") or on a single file,
		// e.g. the one that comes from a bug report.

		#include <cassert>
		#include <fstream>
		#include <iostream>
		#include <vector>

		// Forward declare the "fuzz target" interface.
		// We deliberately keep this inteface simple and header-free.
		extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size);

Augie Fackler fuzz: make standalone_fuzz_target_runner call LLVMFuzzerInitialize...	r44266	extern "C" int LLVMFuzzerInitialize(int argc, char **argv);

Augie Fackler fuzz: use a more standard approach to allow local builds of fuzzers...	r44265	int main(int argc, char **argv)
		{
Augie Fackler fuzz: make standalone_fuzz_target_runner call LLVMFuzzerInitialize...	r44266	LLVMFuzzerInitialize(&argc, &argv);

Augie Fackler fuzz: use a more standard approach to allow local builds of fuzzers...	r44265	for (int i = 1; i < argc; i++) {
		std::ifstream in(argv[i]);
		in.seekg(0, in.end);
		size_t length = in.tellg();
		in.seekg(0, in.beg);
		std::cout << "Reading " << length << " bytes from " << argv[i]
		<< std::endl;
		// Allocate exactly length bytes so that we reliably catch
		// buffer overflows.
		std::vector<char> bytes(length);
		in.read(bytes.data(), bytes.size());
		assert(in);
		LLVMFuzzerTestOneInput(
		reinterpret_cast<const uint8_t *>(bytes.data()),
		bytes.size());
		std::cout << "Execution successful" << std::endl;
		}
		return 0;
		}
		// no-check-code since this is from a third party