summaryrefslogtreecommitdiffstats
path: root/llvm/lib/Fuzzer/test/SwitchTest.cpp
diff options
context:
space:
mode:
authorKostya Serebryany <kcc@google.com>2015-07-31 20:58:55 +0000
committerKostya Serebryany <kcc@google.com>2015-07-31 20:58:55 +0000
commitfe7e41e8f5fbde0c287b316a877a64e2ecd136a5 (patch)
tree047ed5ea90fa8467773d2a7e026788135570bb6b /llvm/lib/Fuzzer/test/SwitchTest.cpp
parentad156fb6af9f58c35357405b0ecd83a60185ed84 (diff)
downloadbcm5719-llvm-fe7e41e8f5fbde0c287b316a877a64e2ecd136a5.tar.gz
bcm5719-llvm-fe7e41e8f5fbde0c287b316a877a64e2ecd136a5.zip
[libFuzzer] make sure that 2-byte arguments of switch() are handled properly
llvm-svn: 243781
Diffstat (limited to 'llvm/lib/Fuzzer/test/SwitchTest.cpp')
-rw-r--r--llvm/lib/Fuzzer/test/SwitchTest.cpp23
1 files changed, 21 insertions, 2 deletions
diff --git a/llvm/lib/Fuzzer/test/SwitchTest.cpp b/llvm/lib/Fuzzer/test/SwitchTest.cpp
index 0f2319b2cc9..9f921fb6098 100644
--- a/llvm/lib/Fuzzer/test/SwitchTest.cpp
+++ b/llvm/lib/Fuzzer/test/SwitchTest.cpp
@@ -25,9 +25,28 @@ bool Switch(const uint8_t *Data, size_t Size) {
return false;
}
+bool ShortSwitch(const uint8_t *Data, size_t Size) {
+ short X;
+ if (Size < sizeof(short)) return false;
+ memcpy(&X, Data, sizeof(short));
+ switch(X) {
+ case 42: Sink = __LINE__; break;
+ case 402: Sink = __LINE__; break;
+ case 4002: Sink = __LINE__; break;
+ case 5002: Sink = __LINE__; break;
+ case 7002: Sink = __LINE__; break;
+ case 9002: Sink = __LINE__; break;
+ case 14002: Sink = __LINE__; break;
+ case 21402: return true;
+ }
+ return false;
+}
+
extern "C" void LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size) {
- if (Switch<int>(Data, Size) && Size >= 12 &&
- Switch<uint64_t>(Data + 4, Size - 4)) {
+ if (Size >= 4 && Switch<int>(Data, Size) &&
+ Size >= 12 && Switch<uint64_t>(Data + 4, Size - 4) &&
+ Size >= 14 && ShortSwitch(Data + 12, 2)
+ ) {
fprintf(stderr, "BINGO; Found the target, exiting\n");
exit(1);
}
OpenPOWER on IntegriCloud