6502/llvm-6502
1
0
Fork 0
mirror of https://github.com/c64scene-ar/llvm-6502.git synced 2025-10-04 04:19:25 +00:00
Code Issues Projects Releases Wiki Activity

[libFuzzer] allow users to supply their own implementation of rand

Browse Source 
git-svn-id: https://llvm.org/svn/llvm-project/llvm/trunk@243078 91177308-0d34-0410-b5e6-96231b3b80d8
This commit is contained in:
Kostya Serebryany
2015-07-24 01:06:40 +00:00
parent a8f6ce415b
commit 33a9a09cd7
10 changed files with 85 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
lib/Fuzzer/FuzzerInterface.h
View File

@@ -42,6 +42,26 @@ int main(int argc, char **argv) {
*/
int FuzzerDriver(int argc, char **argv, UserCallback Callback);
class FuzzerRandomBase {
public:
FuzzerRandomBase(){}
virtual ~FuzzerRandomBase(){};
virtual void ResetSeed(int seed) = 0;
// Return a random number.
virtual size_t Rand() = 0;
// Return a random number in range [0,n).
size_t operator()(size_t n) { return Rand() % n; }
bool RandBool() { return Rand() % 2; }
};
class FuzzerRandomLibc : public FuzzerRandomBase {
public:
FuzzerRandomLibc(int seed) { ResetSeed(seed); }
void ResetSeed(int seed) override;
~FuzzerRandomLibc() override {}
size_t Rand() override;
};
/** An abstract class that allows to use user-supplied mutators with libFuzzer.
Usage:
@@ -50,6 +70,7 @@ Usage:
#include "FuzzerInterface.h"
class MyFuzzer : public fuzzer::UserSuppliedFuzzer {
public:
MyFuzzer(fuzzer::FuzzerRandomBase *Rand);
// Must define the target function.
void TargetFunction(...) { ... }
// Optionally define the mutator.
@@ -66,6 +87,8 @@ int main(int argc, char **argv) {
*/
class UserSuppliedFuzzer {
public:
UserSuppliedFuzzer(); // Deprecated, don't use.
UserSuppliedFuzzer(FuzzerRandomBase *Rand);
/// Executes the target function on 'Size' bytes of 'Data'.
virtual void TargetFunction(const uint8_t *Data, size_t Size) = 0;
/// Mutates 'Size' bytes of data in 'Data' inplace into up to 'MaxSize' bytes,
@@ -80,7 +103,9 @@ class UserSuppliedFuzzer {
uint8_t *Out, size_t MaxOutSize) {
return BasicCrossOver(Data1, Size1, Data2, Size2, Out, MaxOutSize);
}
virtual ~UserSuppliedFuzzer() {}
virtual ~UserSuppliedFuzzer();
FuzzerRandomBase &GetRand() { return *Rand; }
protected:
/// These can be called internally by Mutate and CrossOver.
@@ -88,6 +113,9 @@ class UserSuppliedFuzzer {
size_t BasicCrossOver(const uint8_t *Data1, size_t Size1,
const uint8_t *Data2, size_t Size2,
uint8_t *Out, size_t MaxOutSize);
private:
bool OwnRand = false;
FuzzerRandomBase *Rand;
};
/// Runs the fuzzing with the UserSuppliedFuzzer.