Home Verkennen Help
Inloggen
bblanchon
/
ArduinoJson
spiegel van https://github-proxy.rt-thread.io/bblanchon/ArduinoJson.git
2
0
Vork 0
Bestanden Issues 0 Wiki
Bladeren bron

Add a fuzzer for `parseNumber()`

See #2220
Benoit Blanchon 22 uur geleden
bovenliggende
34888e54b0
commit
a9bb1a1df5
28 gewijzigde bestanden met toevoegingen van 42 en 2 verwijderingen
Zij-aan-zij weergave Toon Diff Stats
  1. 1 0
      extras/fuzzing/CMakeLists.txt
  2. 5 2
      extras/fuzzing/Makefile
  3. 2 0
      extras/fuzzing/number_corpus/.gitignore
  4. 10 0
      extras/fuzzing/number_fuzzer.cpp
  5. 1 0
      extras/fuzzing/number_seed_corpus/decimal_half
  6. 1 0
      extras/fuzzing/number_seed_corpus/decimal_one_and_half
  7. 1 0
      extras/fuzzing/number_seed_corpus/infinity
  8. 1 0
      extras/fuzzing/number_seed_corpus/issue2220-1
  9. 1 0
      extras/fuzzing/number_seed_corpus/issue2220-2
  10. 1 0
      extras/fuzzing/number_seed_corpus/large_decimal
  11. 1 0
      extras/fuzzing/number_seed_corpus/large_integer
  12. 1 0
      extras/fuzzing/number_seed_corpus/leading_zeros
  13. 1 0
      extras/fuzzing/number_seed_corpus/nan
  14. 1 0
      extras/fuzzing/number_seed_corpus/negative_decimal
  15. 1 0
      extras/fuzzing/number_seed_corpus/negative_one
  16. 1 0
      extras/fuzzing/number_seed_corpus/negative_scientific
  17. 1 0
      extras/fuzzing/number_seed_corpus/negative_scientific_large_exp
  18. 1 0
      extras/fuzzing/number_seed_corpus/negative_zero
  19. 1 0
      extras/fuzzing/number_seed_corpus/one
  20. 1 0
      extras/fuzzing/number_seed_corpus/pi_approximation
  21. 1 0
      extras/fuzzing/number_seed_corpus/scientific_e10
  22. 1 0
      extras/fuzzing/number_seed_corpus/scientific_e_minus
  23. 1 0
      extras/fuzzing/number_seed_corpus/scientific_e_plus
  24. 1 0
      extras/fuzzing/number_seed_corpus/small_decimal
  25. 1 0
      extras/fuzzing/number_seed_corpus/small_integer
  26. 1 0
      extras/fuzzing/number_seed_corpus/trailing_zeros
  27. 1 0
      extras/fuzzing/number_seed_corpus/very_small_positive
  28. 1 0
      extras/fuzzing/number_seed_corpus/zero

+ 1 - 0
extras/fuzzing/CMakeLists.txt
Bestand weergeven 

@@ -64,4 +64,5 @@ if(CMAKE_CXX_COMPILER_ID STREQUAL "Clang" AND CMAKE_CXX_COMPILER_VERSION VERSION
 
 
 	add_fuzzer(json)
 
 	add_fuzzer(msgpack)
 
+	add_fuzzer(number)
 
 endif()

+ 5 - 2
extras/fuzzing/Makefile
Bestand weergeven 

@@ -8,7 +8,10 @@ all: \
 
 	$(OUT)/json_fuzzer.options \
 
 	$(OUT)/msgpack_fuzzer \
 
 	$(OUT)/msgpack_fuzzer_seed_corpus.zip \
 
-	$(OUT)/msgpack_fuzzer.options
 
+	$(OUT)/msgpack_fuzzer.options \
 
+	$(OUT)/number_fuzzer \
 
+	$(OUT)/number_fuzzer_seed_corpus.zip \
 
+	$(OUT)/number_fuzzer.options
 
 
 $(OUT)/%_fuzzer: %_fuzzer.cpp $(shell find ../../src -type f)
 
 	$(CXX) $(CXXFLAGS) $< -o$@ $(LIB_FUZZING_ENGINE)
 
@@ -18,5 +21,5 @@ $(OUT)/%_fuzzer_seed_corpus.zip: %_seed_corpus/*
 
 
 $(OUT)/%_fuzzer.options:
 
 	@echo "[libfuzzer]" > $@
 
-	@echo "max_len = 256" >> $@
 
+	@echo "max_len = 4096" >> $@
 
 	@echo "timeout = 10" >> $@

+ 2 - 0
extras/fuzzing/number_corpus/.gitignore
Bestand weergeven 

@@ -0,0 +1,2 @@
 
+*
 
+!.gitignore

+ 10 - 0
extras/fuzzing/number_fuzzer.cpp
Bestand weergeven 

@@ -0,0 +1,10 @@
 
+#include <ArduinoJson.h>
 
+
 
+extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
 
+  // Make a copy to ensure the input is null-terminated
 
+  std::string str(reinterpret_cast<const char*>(data), size);
 
+
 
+  ArduinoJson::detail::parseNumber(str.c_str());
 
+
 
+  return 0;
 
+}

+ 1 - 0
extras/fuzzing/number_seed_corpus/decimal_half
Bestand weergeven 

@@ -0,0 +1 @@
 
+0.5

+ 1 - 0
extras/fuzzing/number_seed_corpus/decimal_one_and_half
Bestand weergeven 

@@ -0,0 +1 @@
 
+1.5

+ 1 - 0
extras/fuzzing/number_seed_corpus/infinity
Bestand weergeven 

@@ -0,0 +1 @@
 
+infinity

+ 1 - 0
extras/fuzzing/number_seed_corpus/issue2220-1
Bestand weergeven 

@@ -0,0 +1 @@
 
+1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000

+ 1 - 0
extras/fuzzing/number_seed_corpus/issue2220-2
Bestand weergeven 

@@ -0,0 +1 @@
 
+0.00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001

+ 1 - 0
extras/fuzzing/number_seed_corpus/large_decimal
Bestand weergeven 

@@ -0,0 +1 @@
 
+999999.999999

+ 1 - 0
extras/fuzzing/number_seed_corpus/large_integer
Bestand weergeven 

@@ -0,0 +1 @@
 
+9876543210

+ 1 - 0
extras/fuzzing/number_seed_corpus/leading_zeros
Bestand weergeven 

@@ -0,0 +1 @@
 
+0.00001

+ 1 - 0
extras/fuzzing/number_seed_corpus/nan
Bestand weergeven 

@@ -0,0 +1 @@
 
+nan

+ 1 - 0
extras/fuzzing/number_seed_corpus/negative_decimal
Bestand weergeven 

@@ -0,0 +1 @@
 
+-123.456

+ 1 - 0
extras/fuzzing/number_seed_corpus/negative_one
Bestand weergeven 

@@ -0,0 +1 @@
 
+-1

+ 1 - 0
extras/fuzzing/number_seed_corpus/negative_scientific
Bestand weergeven 

@@ -0,0 +1 @@
 
+-2.5e-3

+ 1 - 0
extras/fuzzing/number_seed_corpus/negative_scientific_large_exp
Bestand weergeven 

@@ -0,0 +1 @@
 
+-1.23456e+20

+ 1 - 0
extras/fuzzing/number_seed_corpus/negative_zero
Bestand weergeven 

@@ -0,0 +1 @@
 
+-0

+ 1 - 0
extras/fuzzing/number_seed_corpus/one
Bestand weergeven 

@@ -0,0 +1 @@
 
+1

+ 1 - 0
extras/fuzzing/number_seed_corpus/pi_approximation
Bestand weergeven 

@@ -0,0 +1 @@
 
+3.14159265359

+ 1 - 0
extras/fuzzing/number_seed_corpus/scientific_e10
Bestand weergeven 

@@ -0,0 +1 @@
 
+1e10

+ 1 - 0
extras/fuzzing/number_seed_corpus/scientific_e_minus
Bestand weergeven 

@@ -0,0 +1 @@
 
+1.5e-10

+ 1 - 0
extras/fuzzing/number_seed_corpus/scientific_e_plus
Bestand weergeven 

@@ -0,0 +1 @@
 
+1.23e+5

+ 1 - 0
extras/fuzzing/number_seed_corpus/small_decimal
Bestand weergeven 

@@ -0,0 +1 @@
 
+0.001

+ 1 - 0
extras/fuzzing/number_seed_corpus/small_integer
Bestand weergeven 

@@ -0,0 +1 @@
 
+42

+ 1 - 0
extras/fuzzing/number_seed_corpus/trailing_zeros
Bestand weergeven 

@@ -0,0 +1 @@
 
+1000000

+ 1 - 0
extras/fuzzing/number_seed_corpus/very_small_positive
Bestand weergeven 

@@ -0,0 +1 @@
 
+0.0000001

+ 1 - 0
extras/fuzzing/number_seed_corpus/zero
Bestand weergeven 

@@ -0,0 +1 @@
 
+0