diff options
-rw-r--r-- | Repository.mk | 1 | ||||
-rw-r--r-- | vcl/Executable_svgfuzzer.mk | 45 | ||||
-rw-r--r-- | vcl/Module_vcl.mk | 1 | ||||
-rw-r--r-- | vcl/workben/svgfuzzer.cxx | 48 | ||||
-rw-r--r-- | vcl/workben/svgfuzzer.options | 3 |
5 files changed, 98 insertions, 0 deletions
diff --git a/Repository.mk b/Repository.mk index 1f8bb339c31f..1b2664c76e5d 100644 --- a/Repository.mk +++ b/Repository.mk @@ -160,6 +160,7 @@ $(eval $(call gb_Helper_register_executables_for_install,OOO,brand, \ $(call gb_Helper_optional,FUZZERS,dbffuzzer) \ $(call gb_Helper_optional,FUZZERS,webpfuzzer) \ $(call gb_Helper_optional,FUZZERS,zipfuzzer) \ + $(call gb_Helper_optional,FUZZERS,svgfuzzer) \ soffice_bin \ $(call gb_CondExeUnopkg, \ unopkg_bin \ diff --git a/vcl/Executable_svgfuzzer.mk b/vcl/Executable_svgfuzzer.mk new file mode 100644 index 000000000000..584a0f82652c --- /dev/null +++ b/vcl/Executable_svgfuzzer.mk @@ -0,0 +1,45 @@ +# -*- Mode: makefile-gmake; tab-width: 4; indent-tabs-mode: t -*- +# +# +# This file is part of the LibreOffice project. +# +# This Source Code Form is subject to the terms of the Mozilla Public +# License, v. 2.0. If a copy of the MPL was not distributed with this +# file, You can obtain one at http://mozilla.org/MPL/2.0/. +# + +include $(SRCDIR)/vcl/commonfuzzer.mk + +$(eval $(call gb_Executable_Executable,svgfuzzer)) + +$(eval $(call gb_Executable_use_api,svgfuzzer,\ + offapi \ + udkapi \ +)) + +$(eval $(call gb_Executable_use_externals,svgfuzzer,\ + $(fuzzer_externals) \ +)) + +$(eval $(call gb_Executable_set_include,svgfuzzer,\ + $$(INCLUDE) \ + -I$(SRCDIR)/vcl/inc \ +)) + +$(eval $(call gb_Executable_use_libraries,svgfuzzer,\ + $(fuzzer_core_libraries) \ +)) + +$(eval $(call gb_Executable_use_static_libraries,svgfuzzer,\ + $(fuzzer_statics) \ +)) + +$(eval $(call gb_Executable_add_exception_objects,svgfuzzer,\ + vcl/workben/svgfuzzer \ +)) + +$(eval $(call gb_Executable_add_libs,svgfuzzer,\ + $(LIB_FUZZING_ENGINE) \ +)) + +# vim: set noet sw=4 ts=4: diff --git a/vcl/Module_vcl.mk b/vcl/Module_vcl.mk index a98872853e41..b8728a8529e4 100644 --- a/vcl/Module_vcl.mk +++ b/vcl/Module_vcl.mk @@ -193,6 +193,7 @@ $(eval $(call gb_Module_add_targets,vcl,\ Executable_dbffuzzer \ Executable_webpfuzzer \ Executable_zipfuzzer \ + Executable_svgfuzzer \ )) endif diff --git a/vcl/workben/svgfuzzer.cxx b/vcl/workben/svgfuzzer.cxx new file mode 100644 index 000000000000..593afc21b9d5 --- /dev/null +++ b/vcl/workben/svgfuzzer.cxx @@ -0,0 +1,48 @@ +/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ +/* + * This file is part of the LibreOffice project. + * + * This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. + */ + +#include <tools/stream.hxx> +#include "commonfuzzer.hxx" + +#include <config_features.h> +#include <com/sun/star/io/WrongFormatException.hpp> +#include <osl/detail/component-mapping.h> + +extern "C" bool TestImportSVG(SvStream& rStream); + +const lib_to_factory_mapping* lo_get_factory_map(void) +{ + static lib_to_factory_mapping map[] = { { 0, 0 } }; + + return map; +} + +const lib_to_constructor_mapping* lo_get_constructor_map(void) +{ + static lib_to_constructor_mapping map[] = { { 0, 0 } }; + + return map; +} + +extern "C" void* lo_get_custom_widget_func(const char*) { return nullptr; } + +extern "C" int LLVMFuzzerInitialize(int* argc, char*** argv) +{ + TypicalFuzzerInitialize(argc, argv); + return 0; +} + +extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) +{ + SvMemoryStream aStream(const_cast<uint8_t*>(data), size, StreamMode::READ); + (void)TestImportSVG(aStream); + return 0; +} + +/* vim:set shiftwidth=4 softtabstop=4 expandtab: */ diff --git a/vcl/workben/svgfuzzer.options b/vcl/workben/svgfuzzer.options new file mode 100644 index 000000000000..df4f854f37aa --- /dev/null +++ b/vcl/workben/svgfuzzer.options @@ -0,0 +1,3 @@ +[libfuzzer] +max_len = 32000 +dict = xml.dict |