~mmach/netext73/lz4

« back to all changes in this revision

Viewing changes to ossfuzz/round_trip_frame_uncompressed_fuzzer.c

Committer: mmach
Date: 2022-11-09 18:52:10 UTC
Revision ID: netbit73@gmail.com-20221109185210-w358idlhh0phq688

1.9.4

files added:
.pc

.pc/.quilt_patches

.pc/.quilt_series

.pc/.version

.pc/0001-Fix-static-link.patch

.pc/0001-Fix-static-link.patch/programs

.pc/0001-Fix-static-link.patch/programs/Makefile

.pc/0001-Fix-static-link.patch/tests

.pc/0001-Fix-static-link.patch/tests/Makefile

.pc/0002-Change-optimize-to-O2.patch

.pc/0002-Change-optimize-to-O2.patch/Makefile

.pc/0002-Change-optimize-to-O2.patch/contrib

.pc/0002-Change-optimize-to-O2.patch/contrib/djgpp

.pc/0002-Change-optimize-to-O2.patch/contrib/djgpp/Makefile

.pc/0002-Change-optimize-to-O2.patch/examples

.pc/0002-Change-optimize-to-O2.patch/examples/Makefile

.pc/0002-Change-optimize-to-O2.patch/lib

.pc/0002-Change-optimize-to-O2.patch/lib/Makefile

.pc/0002-Change-optimize-to-O2.patch/lib/dll

.pc/0002-Change-optimize-to-O2.patch/lib/dll/example

.pc/0002-Change-optimize-to-O2.patch/lib/dll/example/Makefile

.pc/0002-Change-optimize-to-O2.patch/programs

.pc/0002-Change-optimize-to-O2.patch/programs/Makefile

.pc/0002-Change-optimize-to-O2.patch/tests

.pc/0002-Change-optimize-to-O2.patch/tests/Makefile

.pc/applied-patches

build/VS2022

build/VS2022/datagen

build/VS2022/datagen/datagen.vcxproj

build/VS2022/frametest

build/VS2022/frametest/frametest.vcxproj

build/VS2022/fullbench

build/VS2022/fullbench-dll

build/VS2022/fullbench-dll/fullbench-dll.vcxproj

build/VS2022/fullbench/fullbench.vcxproj

build/VS2022/fuzzer

build/VS2022/fuzzer/fuzzer.vcxproj

build/VS2022/liblz4

build/VS2022/liblz4-dll

build/VS2022/liblz4-dll/liblz4-dll.rc

build/VS2022/liblz4-dll/liblz4-dll.vcxproj

build/VS2022/liblz4/liblz4.vcxproj

build/VS2022/lz4.sln

build/cmake/lz4Config.cmake.in

debian/patches/0001-Fix-static-link.patch

debian/patches/0002-Change-optimize-to-O2.patch

debian/upstream

debian/upstream/metadata

examples/fileCompress.c

lib/lz4file.c

lib/lz4file.h

ossfuzz/.gitignore

ossfuzz/round_trip_frame_uncompressed_fuzzer.c

tests/abiTest.c

tests/check_liblz4_version.sh

tests/decompress-partial-usingDict.c

tests/freestanding.c

tests/goldenSamples

tests/goldenSamples/skip.bin

tests/test-lz4-abi.py

tests/unicode_lint.sh

files removed:
contrib/meson/meson/InstallSymlink.py

debian/compat

debian/patches/0001-Show-build-info.patch

debian/patches/0002-Fix-static-link.patch

debian/patches/change-optimize.patch

tmpsparse

files modified:
LICENSE

Makefile

Makefile.inc

NEWS

README.md

build/VS2010/liblz4-dll/liblz4-dll.rc

build/VS2010/lz4/lz4.rc

build/VS2017/liblz4-dll/liblz4-dll.rc

build/VS2017/lz4/lz4.rc

build/VS2017/lz4/lz4.vcxproj

build/cmake/.gitignore

build/cmake/CMakeLists.txt

contrib/djgpp/Makefile

contrib/gen_manual/Makefile

contrib/meson/README.md

contrib/meson/meson.build

contrib/meson/meson/contrib/gen_manual/meson.build

contrib/meson/meson/contrib/meson.build

contrib/meson/meson/examples/meson.build

contrib/meson/meson/lib/meson.build

contrib/meson/meson/meson.build

contrib/meson/meson/programs/meson.build

contrib/meson/meson/tests/meson.build

contrib/meson/meson_options.txt

contrib/snap/README.md

contrib/snap/snapcraft.yaml

debian/changelog

debian/control

debian/copyright

debian/liblz4-1.symbols

debian/patches/series

debian/watch

doc/lz4_Block_format.md

doc/lz4_Frame_format.md

doc/lz4_manual.html

doc/lz4frame_manual.html

examples/.gitignore

examples/Makefile

examples/blockStreaming_lineByLine.c

examples/blockStreaming_lineByLine.md

examples/compress_functions.c

examples/dictionaryRandomAccess.c

examples/dictionaryRandomAccess.md

examples/frameCompress.c

examples/simple_buffer.c

examples/streaming_api_basics.md

lib/LICENSE

lib/Makefile

lib/README.md

lib/dll/example/Makefile

lib/dll/example/README.md

lib/liblz4-dll.rc.in

lib/liblz4.pc.in

lib/lz4.c

lib/lz4.h

lib/lz4frame.c

lib/lz4frame.h

lib/lz4frame_static.h

lib/lz4hc.c

lib/lz4hc.h

ossfuzz/Makefile

ossfuzz/decompress_fuzzer.c

ossfuzz/fuzz_helpers.h

ossfuzz/round_trip_fuzzer.c

programs/Makefile

programs/bench.c

programs/bench.h

programs/datagen.c

programs/datagen.h

programs/lz4-exe.rc.in

programs/lz4.1

programs/lz4.1.md

programs/lz4cli.c

programs/lz4io.c

programs/lz4io.h

programs/platform.h

programs/util.h

tests/.gitignore

tests/Makefile

tests/README.md

tests/checkFrame.c

tests/checkTag.c

tests/datagencli.c

tests/frametest.c

tests/fullbench.c

tests/fuzzer.c

tests/roundTripTest.c

tests/test-lz4-list.py

tests/test-lz4-speed.py

tests/test_custom_block_sizes.sh

tests/test_install.sh

Show diffs side-by-side

added added

removed removed

ossfuzz/round_trip_frame_uncompressed_fuzzer.c

/**

* This fuzz target performs a lz4 round-trip test (compress & decompress),

* compares the result with the original, and calls abort() on corruption.

#include <stddef.h>

#include <stdint.h>

#include <stdlib.h>

#include <string.h>

#include "fuzz_data_producer.h"

#include "fuzz_helpers.h"

#include "lz4.h"

#include "lz4_helpers.h"

#include "lz4frame.h"

#include "lz4frame_static.h"

static void decompress(LZ4F_dctx *dctx, void *src, void *dst,

size_t dstCapacity, size_t readSize) {

size_t ret = 1;

const void *srcPtr = (const char *) src;

void *dstPtr = (char *) dst;

const void *const srcEnd = (const char *) srcPtr + readSize;

while (ret != 0) {

while (srcPtr < srcEnd && ret != 0) {

/* Any data within dst has been flushed at this stage */

size_t dstSize = dstCapacity;

size_t srcSize = (const char *) srcEnd - (const char *) srcPtr;

ret = LZ4F_decompress(dctx, dstPtr, &dstSize, srcPtr, &srcSize,

/* LZ4F_decompressOptions_t */ NULL);

FUZZ_ASSERT(!LZ4F_isError(ret));

/* Update input */

srcPtr = (const char *) srcPtr + srcSize;

dstPtr = (char *) dstPtr + dstSize;

}

FUZZ_ASSERT(srcPtr <= srcEnd);

}

static void compress_round_trip(const uint8_t *data, size_t size,

FUZZ_dataProducer_t *producer, LZ4F_preferences_t const prefs) {

// Choose random uncompressed offset start and end by producing seeds from random data, calculate the remaining

// data size that will be used for compression later and use the seeds to actually calculate the offsets

size_t const uncompressedOffsetSeed = FUZZ_dataProducer_retrieve32(producer);

size_t const uncompressedEndOffsetSeed = FUZZ_dataProducer_retrieve32(producer);

size = FUZZ_dataProducer_remainingBytes(producer);

size_t const uncompressedOffset = FUZZ_getRange_from_uint32(uncompressedOffsetSeed, 0, size);

size_t const uncompressedEndOffset = FUZZ_getRange_from_uint32(uncompressedEndOffsetSeed, uncompressedOffset, size);

size_t const uncompressedSize = uncompressedEndOffset - uncompressedOffset;

FUZZ_ASSERT(uncompressedOffset <= uncompressedEndOffset);

FUZZ_ASSERT(uncompressedEndOffset <= size);

const uint8_t *const uncompressedData = data + uncompressedOffset;

size_t const dstCapacity =

LZ4F_compressFrameBound(LZ4_compressBound(size), &prefs) +

uncompressedSize;

char *const dst = (char *) malloc(dstCapacity);

size_t rtCapacity = dstCapacity;

char *const rt = (char *) malloc(rtCapacity);

FUZZ_ASSERT(dst);

FUZZ_ASSERT(rt);

/* Compression must succeed and round trip correctly. */

LZ4F_compressionContext_t ctx;

size_t const ctxCreation = LZ4F_createCompressionContext(&ctx, LZ4F_VERSION);

FUZZ_ASSERT(!LZ4F_isError(ctxCreation));

size_t const headerSize = LZ4F_compressBegin(ctx, dst, dstCapacity, &prefs);

FUZZ_ASSERT(!LZ4F_isError(headerSize));

size_t compressedSize = headerSize;

/* Compress data before uncompressed offset */

size_t lz4Return = LZ4F_compressUpdate(ctx, dst + compressedSize, dstCapacity,

data, uncompressedOffset, NULL);

FUZZ_ASSERT(!LZ4F_isError(lz4Return));

compressedSize += lz4Return;

/* Add uncompressed data */

lz4Return = LZ4F_uncompressedUpdate(ctx, dst + compressedSize, dstCapacity,

uncompressedData, uncompressedSize, NULL);

FUZZ_ASSERT(!LZ4F_isError(lz4Return));

compressedSize += lz4Return;

/* Compress data after uncompressed offset */

lz4Return = LZ4F_compressUpdate(ctx, dst + compressedSize, dstCapacity,

data + uncompressedEndOffset,

size - uncompressedEndOffset, NULL);

FUZZ_ASSERT(!LZ4F_isError(lz4Return));

compressedSize += lz4Return;

/* Finish compression */

lz4Return = LZ4F_compressEnd(ctx, dst + compressedSize, dstCapacity, NULL);

100

FUZZ_ASSERT(!LZ4F_isError(lz4Return));

101

compressedSize += lz4Return;

102

103

LZ4F_decompressOptions_t opts;

104

memset(&opts, 0, sizeof(opts));

105

opts.stableDst = 1;

106

LZ4F_dctx *dctx;

107

LZ4F_createDecompressionContext(&dctx, LZ4F_VERSION);

108

FUZZ_ASSERT(dctx);

109

110

decompress(dctx, dst, rt, rtCapacity, compressedSize);

111

112

LZ4F_freeDecompressionContext(dctx);

113

114

FUZZ_ASSERT_MSG(!memcmp(data, rt, size), "Corruption!");

115

116

free(dst);

117

free(rt);

118

119

FUZZ_dataProducer_free(producer);

120

LZ4F_freeCompressionContext(ctx);

121

}

122

123

static void compress_independent_block_mode(const uint8_t *data, size_t size) {

124

FUZZ_dataProducer_t *producer = FUZZ_dataProducer_create(data, size);

125

LZ4F_preferences_t prefs = FUZZ_dataProducer_preferences(producer);

126

prefs.frameInfo.blockMode = LZ4F_blockIndependent;

127

compress_round_trip(data, size, producer, prefs);

128

}

129

130

131

int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {

132

compress_independent_block_mode(data, size);

133

return 0;

134

}

Older »