aboutsummaryrefslogtreecommitdiffstats
path: root/contrib/oss-fuzz/libarchive_fuzzer.cc
diff options
context:
space:
mode:
Diffstat (limited to 'contrib/oss-fuzz/libarchive_fuzzer.cc')
-rw-r--r--contrib/oss-fuzz/libarchive_fuzzer.cc49
1 files changed, 49 insertions, 0 deletions
diff --git a/contrib/oss-fuzz/libarchive_fuzzer.cc b/contrib/oss-fuzz/libarchive_fuzzer.cc
new file mode 100644
index 000000000000..bc7f865b69c5
--- /dev/null
+++ b/contrib/oss-fuzz/libarchive_fuzzer.cc
@@ -0,0 +1,49 @@
+#include <stddef.h>
+#include <stdint.h>
+#include <vector>
+
+#include "archive.h"
+
+struct Buffer {
+ const uint8_t *buf;
+ size_t len;
+};
+
+ssize_t reader_callback(struct archive *a, void *client_data,
+ const void **block) {
+ Buffer *buffer = reinterpret_cast<Buffer *>(client_data);
+ *block = buffer->buf;
+ ssize_t len = buffer->len;
+ buffer->len = 0;
+ return len;
+}
+
+extern "C" int LLVMFuzzerTestOneInput(const uint8_t *buf, size_t len) {
+ int ret;
+ ssize_t r;
+ struct archive *a = archive_read_new();
+
+ archive_read_support_filter_all(a);
+ archive_read_support_format_all(a);
+
+ Buffer buffer = {buf, len};
+ archive_read_open(a, &buffer, NULL, reader_callback, NULL);
+
+ std::vector<uint8_t> data_buffer(getpagesize(), 0);
+ struct archive_entry *entry;
+ while(1) {
+ ret = archive_read_next_header(a, &entry);
+ if (ret == ARCHIVE_EOF || ret == ARCHIVE_FATAL)
+ break;
+ if (ret == ARCHIVE_RETRY)
+ continue;
+ while ((r = archive_read_data(a, data_buffer.data(),
+ data_buffer.size())) > 0)
+ ;
+ if (r == ARCHIVE_FATAL)
+ break;
+ }
+
+ archive_read_free(a);
+ return 0;
+}
generated by cgit v1.2.3 (git 2.25.1) at 2022-05-26 21:56:56 +0000