1*6777b538SAndroid Build Coastguard Worker // Copyright 2015 The Chromium Authors
2*6777b538SAndroid Build Coastguard Worker // Use of this source code is governed by a BSD-style license that can be
3*6777b538SAndroid Build Coastguard Worker // found in the LICENSE file.
4*6777b538SAndroid Build Coastguard Worker
5*6777b538SAndroid Build Coastguard Worker #include <stddef.h>
6*6777b538SAndroid Build Coastguard Worker #include <stdint.h>
7*6777b538SAndroid Build Coastguard Worker
8*6777b538SAndroid Build Coastguard Worker #include <string>
9*6777b538SAndroid Build Coastguard Worker #include <tuple>
10*6777b538SAndroid Build Coastguard Worker
11*6777b538SAndroid Build Coastguard Worker #include "base/strings/string_tokenizer.h"
12*6777b538SAndroid Build Coastguard Worker
GetAllTokens(base::StringTokenizer & t)13*6777b538SAndroid Build Coastguard Worker void GetAllTokens(base::StringTokenizer& t) {
14*6777b538SAndroid Build Coastguard Worker while (t.GetNext()) {
15*6777b538SAndroid Build Coastguard Worker std::ignore = t.token();
16*6777b538SAndroid Build Coastguard Worker }
17*6777b538SAndroid Build Coastguard Worker }
18*6777b538SAndroid Build Coastguard Worker
19*6777b538SAndroid Build Coastguard Worker // Entry point for LibFuzzer.
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)20*6777b538SAndroid Build Coastguard Worker extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
21*6777b538SAndroid Build Coastguard Worker uint8_t size_t_bytes = sizeof(size_t);
22*6777b538SAndroid Build Coastguard Worker if (size < size_t_bytes + 1) {
23*6777b538SAndroid Build Coastguard Worker return 0;
24*6777b538SAndroid Build Coastguard Worker }
25*6777b538SAndroid Build Coastguard Worker
26*6777b538SAndroid Build Coastguard Worker // Calculate pattern size based on remaining bytes, otherwise fuzzing is
27*6777b538SAndroid Build Coastguard Worker // inefficient with bailouts in most cases.
28*6777b538SAndroid Build Coastguard Worker size_t pattern_size =
29*6777b538SAndroid Build Coastguard Worker *reinterpret_cast<const size_t*>(data) % (size - size_t_bytes);
30*6777b538SAndroid Build Coastguard Worker
31*6777b538SAndroid Build Coastguard Worker std::string pattern(reinterpret_cast<const char*>(data + size_t_bytes),
32*6777b538SAndroid Build Coastguard Worker pattern_size);
33*6777b538SAndroid Build Coastguard Worker std::string input(
34*6777b538SAndroid Build Coastguard Worker reinterpret_cast<const char*>(data + size_t_bytes + pattern_size),
35*6777b538SAndroid Build Coastguard Worker size - pattern_size - size_t_bytes);
36*6777b538SAndroid Build Coastguard Worker
37*6777b538SAndroid Build Coastguard Worker // Allow quote_chars and options to be set. Otherwise full coverage
38*6777b538SAndroid Build Coastguard Worker // won't be possible since IsQuote, FullGetNext and other functions
39*6777b538SAndroid Build Coastguard Worker // won't be called.
40*6777b538SAndroid Build Coastguard Worker for (bool return_delims : {false, true}) {
41*6777b538SAndroid Build Coastguard Worker for (bool return_empty_strings : {false, true}) {
42*6777b538SAndroid Build Coastguard Worker int options = 0;
43*6777b538SAndroid Build Coastguard Worker if (return_delims)
44*6777b538SAndroid Build Coastguard Worker options |= base::StringTokenizer::RETURN_DELIMS;
45*6777b538SAndroid Build Coastguard Worker if (return_empty_strings)
46*6777b538SAndroid Build Coastguard Worker options |= base::StringTokenizer::RETURN_EMPTY_TOKENS;
47*6777b538SAndroid Build Coastguard Worker
48*6777b538SAndroid Build Coastguard Worker base::StringTokenizer t(input, pattern);
49*6777b538SAndroid Build Coastguard Worker t.set_options(options);
50*6777b538SAndroid Build Coastguard Worker GetAllTokens(t);
51*6777b538SAndroid Build Coastguard Worker
52*6777b538SAndroid Build Coastguard Worker base::StringTokenizer t_quote(input, pattern);
53*6777b538SAndroid Build Coastguard Worker t_quote.set_quote_chars("\"");
54*6777b538SAndroid Build Coastguard Worker t_quote.set_options(options);
55*6777b538SAndroid Build Coastguard Worker GetAllTokens(t_quote);
56*6777b538SAndroid Build Coastguard Worker }
57*6777b538SAndroid Build Coastguard Worker }
58*6777b538SAndroid Build Coastguard Worker
59*6777b538SAndroid Build Coastguard Worker return 0;
60*6777b538SAndroid Build Coastguard Worker }
61