1 // Copyright 2024 The Chromium Authors
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "testing/libfuzzer/renderer_fuzzing/renderer_fuzzing.h"
6
7 #include <map>
8
9 #include "base/memory/singleton.h"
10
Run(const blink::BrowserInterfaceBrokerProxy * context_interface_broker_proxy,blink::ThreadSafeBrowserInterfaceBrokerProxy * process_interface_broker_proxy,const std::string & fuzzer_id,std::vector<uint8_t> && input,base::OnceClosure done_closure)11 void RendererFuzzing::Run(
12 const blink::BrowserInterfaceBrokerProxy* context_interface_broker_proxy,
13 blink::ThreadSafeBrowserInterfaceBrokerProxy*
14 process_interface_broker_proxy,
15 const std::string& fuzzer_id,
16 std::vector<uint8_t>&& input,
17 base::OnceClosure done_closure) {
18 auto it = RendererFuzzing::GetInstance()->fuzzers_.find(fuzzer_id);
19 CHECK(it != std::end(RendererFuzzing::GetInstance()->fuzzers_));
20 it->second->Run(context_interface_broker_proxy,
21 process_interface_broker_proxy, std::move(input),
22 std::move(done_closure));
23 }
24
GetInstance()25 RendererFuzzing* RendererFuzzing::GetInstance() {
26 // We must use a leaky singleton here because at this point of initialization,
27 // we might not have an AtExit manager set up yet.
28 return base::Singleton<RendererFuzzing,
29 base::LeakySingletonTraits<RendererFuzzing>>::get();
30 }
31