imageloader/helper_process_receiver_fuzzer.cc - mirrors/cros/chromiumos/platform2 - Git at Google

 // Copyright 2018 The Chromium OS Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "imageloader/helper_process_receiver.h"

 #include <sys/socket.h>
 #include <sys/types.h>

 #include <base/logging.h>
 #include <base/posix/unix_domain_socket_linux.h>

 namespace imageloader {

 void helper_process_receiver_fuzzer_run(const uint8_t* data, size_t size) {
   int socket_pair[2];
   socketpair(AF_UNIX, SOCK_SEQPACKET | SOCK_CLOEXEC, 0, socket_pair);
   base::ScopedFD reader_fd(socket_pair[0]);
   base::ScopedFD writer_fd(socket_pair[1]);

   imageloader::HelperProcessReceiver helper_process_receiver(
       std::move(reader_fd));

   if (size == 0) {
     // Per recvmsg(2), the return value will be 0 when the peer has performed an
     // orderly shutdown.
     // This causes current fuzzer process to exit permanently.
     return;
   }
   base::UnixDomainSocket::SendMsg(writer_fd.get(), data, size,
                                   std::vector<int>());
   helper_process_receiver.OnFileCanReadWithoutBlocking(socket_pair[0]);
 }

 }  // namespace imageloader

 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
   imageloader::helper_process_receiver_fuzzer_run(data, size);
   return 0;
 }
	// Copyright 2018 The Chromium OS Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "imageloader/helper_process_receiver.h"

	#include <sys/socket.h>
	#include <sys/types.h>

	#include <base/logging.h>
	#include <base/posix/unix_domain_socket_linux.h>

	namespace imageloader {

	void helper_process_receiver_fuzzer_run(const uint8_t* data, size_t size) {
	int socket_pair[2];
	socketpair(AF_UNIX, SOCK_SEQPACKET \| SOCK_CLOEXEC, 0, socket_pair);
	base::ScopedFD reader_fd(socket_pair[0]);
	base::ScopedFD writer_fd(socket_pair[1]);

	imageloader::HelperProcessReceiver helper_process_receiver(
	std::move(reader_fd));

	if (size == 0) {
	// Per recvmsg(2), the return value will be 0 when the peer has performed an
	// orderly shutdown.
	// This causes current fuzzer process to exit permanently.
	return;
	}
	base::UnixDomainSocket::SendMsg(writer_fd.get(), data, size,
	std::vector<int>());
	helper_process_receiver.OnFileCanReadWithoutBlocking(socket_pair[0]);
	}

	} // namespace imageloader

	extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
	imageloader::helper_process_receiver_fuzzer_run(data, size);
	return 0;
	}