upstream/bind9
1
0
Fork 0
mirror of https://github.com/isc-projects/bind9.git synced 2026-06-13 17:20:01 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge branch '2064-fix-isc_lex_getmastertoken-fuzzing' into 'main'

Browse source 
Really fuzz isc_lex_getmastertoken() in the test

Closes #2064

See merge request isc-projects/bind9!3949
This commit is contained in:
Ondřej Surý 2020-08-12 19:53:49 +00:00
commit c8538c50b4
3 changed files with 16 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
fuzz/isc_lex_getmastertoken.c
View file

@ -15,6 +15,7 @@
#include <isc/buffer.h>
#include <isc/lex.h>
#include <isc/mem.h>
#include <isc/string.h>
#include <isc/util.h>
#include "fuzz.h"
@ -46,6 +47,20 @@ int
LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
isc_buffer_t buf;
isc_result_t result;
isc_tokentype_t expect;
bool eol;
if (size < sizeof(expect) + sizeof(eol)) {
return (0);
}
(void)memmove(&expect, data, sizeof(expect));
data += sizeof(expect);
size -= sizeof(expect);
(void)memmove(&eol, data, sizeof(eol));
data += sizeof(eol);
size -= sizeof(eol);
isc_buffer_constinit(&buf, data, size);
isc_buffer_add(&buf, size);
@ -55,7 +70,7 @@ LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
do {
isc_token_t token;
result = isc_lex_gettoken(lex, 0, &token);
result = isc_lex_getmastertoken(lex, &token, expect, eol);
} while (result == ISC_R_SUCCESS);
return (0);

BIN
fuzz/isc_lex_getmastertoken.in/named.conf
View file

Binary file not shown.

BIN
fuzz/isc_lex_getmastertoken.in/simple
View file

Binary file not shown.