Home Explore Help
Register Sign In
IHOLL
/
squeezelite-esp32
mirror of https://github.com/sle118/squeezelite-esp32
2
0
Fork 0
Files Issues 0 Wiki
Tree: 302865b167
Branches Tags
squeezelite-esp...
/
components
/
spotify
/
cspot
/
bell
/
external
/
fmt
/
test
/
fuzzing
/
fuzzer-common.h

fuzzer-common.h 2.4 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. // Copyright (c) 2019, Paul Dreik
    2. 

  2. // For the license information refer to format.h.
    3. 

  3. 

  4. #ifndef FUZZER_COMMON_H
    5. 

  5. #define FUZZER_COMMON_H
    6. 

  6. 

  7. #include <fmt/core.h>
    8. 

  8. 

  9. #include <cstdint>  // std::uint8_t
    10. 

  10. #include <cstring>  // memcpy
    11. 

  11. #include <vector>
    12. 

  12. 

  13. // One can format to either a string, or a buffer. The latter is faster, but
    14. 

  14. // one may be interested in formatting to a string instead to verify it works
    15. 

  15. // as intended. To avoid a combinatoric explosion, select this at compile time
    16. 

  16. // instead of dynamically from the fuzz data.
    17. 

  17. #define FMT_FUZZ_FORMAT_TO_STRING 0
    18. 

  18. 

  19. // If {fmt} is given a buffer that is separately allocated, chances that address
    20. 

  20. // sanitizer detects out of bound reads is much higher. However, it slows down
    21. 

  21. // the fuzzing.
    22. 

  22. #define FMT_FUZZ_SEPARATE_ALLOCATION 1
    23. 

  23. 

  24. // The size of the largest possible type in use.
    25. 

  25. // To let the the fuzzer mutation be efficient at cross pollinating between
    26. 

  26. // different types, use a fixed size format. The same bit pattern, interpreted
    27. 

  27. // as another type, is likely interesting.
    28. 

  28. constexpr auto fixed_size = 16;
    29. 

  29. 

  30. // Casts data to a char pointer.
    31. 

  31. template <typename T> inline const char* as_chars(const T* data) {
    32. 

  32.   return reinterpret_cast<const char*>(data);
    33. 

  33. }
    34. 

  34. 

  35. // Casts data to a byte pointer.
    36. 

  36. template <typename T> inline const std::uint8_t* as_bytes(const T* data) {
    37. 

  37.   return reinterpret_cast<const std::uint8_t*>(data);
    38. 

  38. }
    39. 

  39. 

  40. // Blits bytes from data to form an (assumed trivially constructible) object
    41. 

  41. // of type Item.
    42. 

  42. template <class Item> inline Item assign_from_buf(const std::uint8_t* data) {
    43. 

  43.   auto item = Item();
    44. 

  44.   std::memcpy(&item, data, sizeof(Item));
    45. 

  45.   return item;
    46. 

  46. }
    47. 

  47. 

  48. // Reads a boolean value by looking at the first byte from data.
    49. 

  49. template <> inline bool assign_from_buf<bool>(const std::uint8_t* data) {
    50. 

  50.   return *data != 0;
    51. 

  51. }
    52. 

  52. 

  53. struct data_to_string {
    54. 

  54. #if FMT_FUZZ_SEPARATE_ALLOCATION
    55. 

  55.   std::vector<char> buffer;
    56. 

  56. 

  57.   data_to_string(const uint8_t* data, size_t size, bool add_terminator = false)
    58. 

  58.       : buffer(size + (add_terminator ? 1 : 0)) {
    59. 

  59.     if (size) {
    60. 

  60.       std::memcpy(buffer.data(), data, size);
    61. 

  61.     }
    62. 

  62.   }
    63. 

  63. 

  64.   fmt::string_view get() const { return {buffer.data(), buffer.size()}; }
    65. 

  65. #else
    66. 

  66.   fmt::string_view sv;
    67. 

  67. 

  68.   data_to_string(const uint8_t* data, size_t size, bool = false)
    69. 

  69.       : str(as_chars(data), size) {}
    70. 

  70. 

  71.   fmt::string_view get() const { return sv; }
    72. 

  72. #endif
    73. 

  73. 

  74.   const char* data() const { return get().data(); }
    75. 

  75. };
    76. 

  76. 

  77. #endif  // FUZZER_COMMON_H
    78.