buffered__file_8cpp_source.html

// Copyright (c) 2020-2022 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#include <span.h>

#include <streams.h>

#include <test/fuzz/fuzz.h>

#include <test/fuzz/FuzzedDataProvider.h>

#include <test/fuzz/util.h>

#include <util/obfuscation.h>


#include <array>

#include <cstddef>

#include <cstdint>

#include <iostream>

#include <optional>

#include <vector>


FUZZ_TARGET(buffered_file)

{

    FuzzedDataProvider fuzzed_data_provider{buffer.data(), buffer.size()};

    FuzzedFileProvider fuzzed_file_provider{fuzzed_data_provider};

    std::optional<BufferedFile> opt_buffered_file;

    const auto key_bytes{ConsumeFixedLengthByteVector<std::byte>(fuzzed_data_provider, Obfuscation::KEY_SIZE)};

    AutoFile fuzzed_file{

        fuzzed_file_provider.open(),

        Obfuscation{std::span{key_bytes}.first<Obfuscation::KEY_SIZE>()},

    };

    try {

        auto n_buf_size = fuzzed_data_provider.ConsumeIntegralInRange<uint64_t>(0, 4096);

        auto n_rewind_in = fuzzed_data_provider.ConsumeIntegralInRange<uint64_t>(0, 4096);

        opt_buffered_file.emplace(fuzzed_file, n_buf_size, n_rewind_in);

    } catch (const std::ios_base::failure&) {

    }

    if (opt_buffered_file && !fuzzed_file.IsNull()) {

        bool setpos_fail = false;

        LIMITED_WHILE(fuzzed_data_provider.ConsumeBool(), 100)

        {

            CallOneOf(

                fuzzed_data_provider,

                [&] {

                    std::array<std::byte, 4096> arr{};

                    try {

                        opt_buffered_file->read({arr.data(), fuzzed_data_provider.ConsumeIntegralInRange<size_t>(0, 4096)});

                    } catch (const std::ios_base::failure&) {

                    }

                },

                [&] {

                    opt_buffered_file->SetLimit(fuzzed_data_provider.ConsumeIntegralInRange<uint64_t>(0, 4096));

                },

                [&] {

                    if (!opt_buffered_file->SetPos(fuzzed_data_provider.ConsumeIntegralInRange<uint64_t>(0, 4096))) {

                        setpos_fail = true;

                    }

                },

                [&] {

                    if (setpos_fail) {

                        // Calling FindByte(...) after a failed SetPos(...) call may result in an infinite loop.

                        return;

                    }

                    try {

                        opt_buffered_file->FindByte(std::byte(fuzzed_data_provider.ConsumeIntegral<uint8_t>()));

                    } catch (const std::ios_base::failure&) {

                    }

                },

                [&] {

                    ReadFromStream(fuzzed_data_provider, *opt_buffered_file);

                });

        }

        opt_buffered_file->GetPos();

    }

}

FuzzedDataProvider.h

ReadFromStream
void ReadFromStream(AddrMan &addr, DataStream &ssPeers)
Only used by tests.
Definition: addrdb.cpp:191

FUZZ_TARGET
FUZZ_TARGET(buffered_file)
Definition: buffered_file.cpp:19

AutoFile
Non-refcounted RAII wrapper for FILE*.
Definition: streams.h:371

FuzzedDataProvider
Definition: FuzzedDataProvider.h:32

FuzzedFileProvider
Definition: util.h:265

Obfuscation
Definition: obfuscation.h:20

Obfuscation::KEY_SIZE
static constexpr size_t KEY_SIZE
Definition: obfuscation.h:23

fuzz.h

LIMITED_WHILE
#define LIMITED_WHILE(condition, limit)
Can be used to limit a theoretically unbounded loop.
Definition: fuzz.h:22

obfuscation.h

span.h

streams.h

util.h

CallOneOf
size_t CallOneOf(FuzzedDataProvider &fuzzed_data_provider, Callables... callables)
Definition: util.h:35