2017-02-17 17:48:50 +03:00
|
|
|
/*
|
|
|
|
Copyright (c) 2009-2017 Dave Gamble and cJSON contributors
|
|
|
|
|
|
|
|
Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
|
|
of this software and associated documentation files (the "Software"), to deal
|
|
|
|
in the Software without restriction, including without limitation the rights
|
|
|
|
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
|
|
copies of the Software, and to permit persons to whom the Software is
|
|
|
|
furnished to do so, subject to the following conditions:
|
|
|
|
|
|
|
|
The above copyright notice and this permission notice shall be included in
|
|
|
|
all copies or substantial portions of the Software.
|
|
|
|
|
|
|
|
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
|
|
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
|
|
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
|
|
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
|
|
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
|
|
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
|
|
|
|
THE SOFTWARE.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <stdlib.h>
|
2017-02-18 04:07:12 +03:00
|
|
|
#include <string.h>
|
2017-02-17 17:48:50 +03:00
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
#include "fuzz-target.h"
|
2017-02-17 17:48:50 +03:00
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
static char *read_file(const char *filename, size_t *size)
|
2017-02-17 17:48:50 +03:00
|
|
|
{
|
|
|
|
FILE *file = NULL;
|
|
|
|
long length = 0;
|
|
|
|
char *content = NULL;
|
|
|
|
size_t read_chars = 0;
|
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
if (size == NULL)
|
|
|
|
{
|
|
|
|
goto fail;
|
|
|
|
}
|
|
|
|
|
2017-02-17 17:48:50 +03:00
|
|
|
/* open in read binary mode */
|
|
|
|
file = fopen(filename, "rb");
|
|
|
|
if (file == NULL)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/* get the length */
|
|
|
|
if (fseek(file, 0, SEEK_END) != 0)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
length = ftell(file);
|
|
|
|
if (length < 0)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
if (fseek(file, 0, SEEK_SET) != 0)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/* allocate content buffer */
|
2017-03-06 12:40:01 +03:00
|
|
|
content = (char*)malloc((size_t)length + sizeof(""));
|
2017-02-17 17:48:50 +03:00
|
|
|
if (content == NULL)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
/* read the file into memory */
|
|
|
|
read_chars = fread(content, sizeof(char), (size_t)length, file);
|
|
|
|
if ((long)read_chars != length)
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
goto fail;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
content[read_chars] = '\0';
|
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
*size = read_chars + sizeof("");
|
|
|
|
|
|
|
|
goto cleanup;
|
|
|
|
|
|
|
|
fail:
|
|
|
|
if (size != NULL)
|
|
|
|
{
|
|
|
|
*size = 0;
|
|
|
|
}
|
|
|
|
if (content != NULL)
|
|
|
|
{
|
|
|
|
free(content);
|
|
|
|
content = NULL;
|
|
|
|
}
|
2017-02-17 17:48:50 +03:00
|
|
|
|
|
|
|
cleanup:
|
|
|
|
if (file != NULL)
|
|
|
|
{
|
|
|
|
fclose(file);
|
|
|
|
}
|
|
|
|
|
|
|
|
return content;
|
|
|
|
}
|
|
|
|
|
|
|
|
int main(int argc, char** argv)
|
|
|
|
{
|
|
|
|
const char *filename = NULL;
|
|
|
|
char *json = NULL;
|
2017-03-03 01:48:57 +03:00
|
|
|
int status = EXIT_FAILURE;
|
2017-02-18 04:07:12 +03:00
|
|
|
char *printed_json = NULL;
|
2017-02-17 17:48:50 +03:00
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
if (argc != 2)
|
2017-02-17 17:48:50 +03:00
|
|
|
{
|
|
|
|
printf("Usage:\n");
|
2017-05-10 01:51:19 +03:00
|
|
|
printf("%s input_file\n", argv[0]);
|
2017-02-18 04:07:12 +03:00
|
|
|
printf("\t input_file: file containing the test data\n");
|
2017-03-03 01:48:57 +03:00
|
|
|
goto cleanup;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
filename = argv[1];
|
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
#if defined(__AFL_HAVE_MANUAL_CONTROL) && __AFL_HAVE_MANUAL_CONTROL
|
2017-02-18 04:52:38 +03:00
|
|
|
while (__AFL_LOOP(1000))
|
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
#else
|
2017-02-18 04:07:12 +03:00
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
#endif
|
|
|
|
size_t size = 0;
|
|
|
|
status = EXIT_SUCCESS;
|
2017-02-17 17:48:50 +03:00
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
json = read_file(filename, &size);
|
|
|
|
if ((json == NULL) || (json[0] == '\0') || (json[1] == '\0'))
|
2017-02-18 04:31:42 +03:00
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
status = EXIT_FAILURE;
|
|
|
|
goto cleanup;
|
2017-02-18 04:31:42 +03:00
|
|
|
}
|
|
|
|
|
2017-05-10 01:51:19 +03:00
|
|
|
LLVMFuzzerTestOneInput(json, size);
|
|
|
|
|
|
|
|
cleanup:
|
|
|
|
if (json != NULL)
|
2017-02-18 04:31:42 +03:00
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
free(json);
|
|
|
|
json = NULL;
|
2017-02-18 04:31:42 +03:00
|
|
|
}
|
2017-05-10 01:51:19 +03:00
|
|
|
if (printed_json != NULL)
|
2017-02-18 04:07:12 +03:00
|
|
|
{
|
2017-05-10 01:51:19 +03:00
|
|
|
free(printed_json);
|
|
|
|
printed_json = NULL;
|
2017-02-18 04:07:12 +03:00
|
|
|
}
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|
|
|
|
|
2017-02-18 04:07:12 +03:00
|
|
|
return status;
|
2017-02-17 17:48:50 +03:00
|
|
|
}
|