Rooba
/
oss-fuzz
mirror of https://github.com/google/oss-fuzz.git
1
1
Fork 0
Code Issues Packages Projects Releases Wiki Activity

[expat] Fix fuzz target crashing with MSan on random bytes generation. 

This is a fix for https://github.com/google/oss-fuzz/issues/816
and for https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2603
This commit is contained in:
Max Moroz 2017-09-07 14:26:15 -07:00
parent 718db9173d
commit 162064e8ff
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
projects/expat/parse_fuzzer.cc
View File

@ -7,6 +7,9 @@
#include "expat.h"
#include <functional>
#include <string>
const char* kEncoding =
#if defined(ENCODING_UTF_16)
"UTF-16"
@ -27,11 +30,17 @@ const char* kEncoding =
// Entry point for LibFuzzer.
extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
std::string input(reinterpret_cast<const char*>(data), size);
auto hash_salt = std::hash<std::string>()(input);
for (int use_ns = 0; use_ns <= 1; ++use_ns) {
XML_Parser parser =
use_ns ? XML_ParserCreateNS(kEncoding, '\n') :
XML_ParserCreate(kEncoding);
XML_Parse(parser, reinterpret_cast<const char*>(data), size, true);
// Set a hash salt to prevent MSan from crashing on random bytes generation.
XML_SetHashSalt(parser, hash_salt);
XML_Parse(parser, input.c_str(), input.size(), true);
XML_ParserFree(parser);
}
return 0;