diff options
| author | DavidKorczynski <david@adalogics.com> | 2021-10-11 11:47:24 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-10-11 11:47:24 +0100 |
| commit | 1d1accd2b0ff256a042625d0cffae74cbf38308c (patch) | |
| tree | 2fb65979d2c66872d44696485f4c34caad4a90f2 | |
| parent | 01f58c4e4fd6d1ea45e913fdbc5e37e4917764e1 (diff) | |
| download | oss-fuzz-1d1accd2b0ff256a042625d0cffae74cbf38308c.tar.gz | |
opensips: add another fuzzer (#6577)
| -rwxr-xr-x | projects/opensips/build.sh | 1 | ||||
| -rw-r--r-- | projects/opensips/fuzz_csv_parser.c | 54 |
2 files changed, 55 insertions, 0 deletions
diff --git a/projects/opensips/build.sh b/projects/opensips/build.sh index 9aeb9cd0f..6dc94ea07 100755 --- a/projects/opensips/build.sh +++ b/projects/opensips/build.sh @@ -25,3 +25,4 @@ ar -r libopensips.a ./objects/*.o $CC $CFLAGS $LIB_FUZZING_ENGINE ./parser/fuzz_msg_parser.o ./libopensips.a -ldl -lresolv -o $OUT/fuzz_msg_parser $CC $CFLAGS $LIB_FUZZING_ENGINE ./parser/fuzz_uri_parser.o ./libopensips.a -ldl -lresolv -o $OUT/fuzz_uri_parser +$CC $CFLAGS $LIB_FUZZING_ENGINE ./parser/fuzz_csv_parser.o ./libopensips.a -ldl -lresolv -o $OUT/fuzz_csv_parser diff --git a/projects/opensips/fuzz_csv_parser.c b/projects/opensips/fuzz_csv_parser.c new file mode 100644 index 000000000..810488193 --- /dev/null +++ b/projects/opensips/fuzz_csv_parser.c @@ -0,0 +1,54 @@ +/* Copyright 2021 Google LLC +Licensed under the Apache License, Version 2.0 (the "License"); +you may not use this file except in compliance with the License. +You may obtain a copy of the License at + http://www.apache.org/licenses/LICENSE-2.0 +Unless required by applicable law or agreed to in writing, software +distributed under the License is distributed on an "AS IS" BASIS, +WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +See the License for the specific language governing permissions and +limitations under the License. +*/ +#include "../cachedb/test/test_cachedb.h" +#include "../lib/test/test_csv.h" +#include "../mem/test/test_malloc.h" +#include "../str.h" +#include "../ut.h" +#include "../lib/csv.h" + +#include "../context.h" +#include "../dprint.h" +#include "../globals.h" +#include "../lib/list.h" +#include "../sr_module.h" +#include "../sr_module_deps.h" + +int LLVMFuzzerTestOneInput(const char *data, size_t size) { + // Ensure we have one byte for the "decider" variable + if (size == 0) { + return 0; + } + char *decider = *data; + data++; + size--; + + ensure_global_context(); + struct sip_uri u; + + char *new_str = (char *)malloc(size + 1); + if (new_str == NULL) { + return 0; + } + memcpy(new_str, data, size); + new_str[size] = '\0'; + + csv_record *ret = NULL; + if (((int)decider % 2) == 0) { + ret = parse_csv_record(_str(new_str)); + } + else { + ret = _parse_csv_record(_str(new_str), CSV_RFC_4180); + } + free_csv_record(ret); + free(new_str); +} |