diff options
Diffstat (limited to 'projects/java-example/ExampleFuzzerNative.cpp')
-rw-r--r-- | projects/java-example/ExampleFuzzerNative.cpp | 38 |
1 files changed, 38 insertions, 0 deletions
diff --git a/projects/java-example/ExampleFuzzerNative.cpp b/projects/java-example/ExampleFuzzerNative.cpp new file mode 100644 index 000000000..7ae0de80d --- /dev/null +++ b/projects/java-example/ExampleFuzzerNative.cpp @@ -0,0 +1,38 @@ +// Copyright 2021 Google LLC +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. +// +//////////////////////////////////////////////////////////////////////////////// + +#include "ExampleFuzzerNative.h" + +#include <string> + +// simple function containing a crash that requires coverage and string compare +// instrumentation for the fuzzer to find +void parseInternal(const std::string &input) { + if (input[0] == 'a' && input[1] == 'b' && input[5] == 'c') { + if (input.find("secret_in_native_library") != std::string::npos) { + // BOOM + *(char *)1 = 2; + } + } +} + +JNIEXPORT jboolean JNICALL Java_ExampleFuzzerNative_parse( + JNIEnv *env, jobject o, jstring bytes) { + const char *input(env->GetStringUTFChars(bytes, nullptr)); + parseInternal(input); + env->ReleaseStringUTFChars(bytes, input); + return false; +} |