From 74d3bf3170be9820e04043c159b380eed4183429 Mon Sep 17 00:00:00 2001
From: Arjun <167687092+pkillarjun@users.noreply.github.com>
Date: Wed, 15 May 2024 05:10:20 +0530
Subject: [PATCH] [inih] remove fuzz blocker (#11949)

I learned a very important lesson after hours of debugging; that return
value does not influence the random data generator. Instead, it
influences the fuzzer core to accept the malformed data as corpus or
not.

Documentation
https://llvm.org/docs/LibFuzzer.html#rejecting-unwanted-inputs

Signed-off-by: Arjun <pkillarjun@protonmail.com>
---
 projects/inih/inihfuzz.c | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/projects/inih/inihfuzz.c b/projects/inih/inihfuzz.c
index c08d106a1..25cf37ad5 100644
--- a/projects/inih/inihfuzz.c
+++ b/projects/inih/inihfuzz.c
@@ -36,24 +36,26 @@ int dumper(void* user, const char* section, const char* name,
     return 1;
 }
 
-extern int LLVMFuzzerTestOneInput(const char *data, size_t size) {
+extern int
+LLVMFuzzerTestOneInput(const char *data, size_t size)
+{
+    char *data_in;
+    static int u = 100;
+
     if (size < kMinInputLength || size > kMaxInputLength) {
         return 0;
     }
 
-    int e;
-    static int u = 100;
     Prev_section[0] = '\0';
 
-    char *data_in = malloc(size + 1);
-    if (!data_in) return 0; // Just in case malloc fails
+    data_in = calloc((size + 1), sizeof(char));
+    if (!data_in) return 0;
 
     memcpy(data_in, data, size);
-    data_in[size] = '\0';
 
-    e = ini_parse_string(data_in, dumper, &u);
+    ini_parse_string(data_in, dumper, &u);
 
     free(data_in);
 
-    return e;
+    return 0;
 }