2018-10-24 13:43:37 +00:00
|
|
|
/*
|
|
|
|
__ _____ _____ _____
|
|
|
|
__| | __| | | | JSON for Modern C++ (fuzz test support)
|
2018-10-30 20:30:20 +00:00
|
|
|
| | |__ | | | | | | version 3.4.0
|
2018-10-24 13:43:37 +00:00
|
|
|
|_____|_____|_____|_|___| https://github.com/nlohmann/json
|
|
|
|
|
|
|
|
This file implements a parser test suitable for fuzz testing. Given a byte
|
|
|
|
array data, it performs the following steps:
|
|
|
|
|
|
|
|
- j1 = from_bson(data)
|
|
|
|
- vec = to_bson(j1)
|
|
|
|
- j2 = from_bson(vec)
|
|
|
|
- assert(j1 == j2)
|
|
|
|
|
|
|
|
The provided function `LLVMFuzzerTestOneInput` can be used in different fuzzer
|
|
|
|
drivers.
|
|
|
|
|
|
|
|
Licensed under the MIT License <http://opensource.org/licenses/MIT>.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <iostream>
|
|
|
|
#include <sstream>
|
|
|
|
#include <nlohmann/json.hpp>
|
|
|
|
|
|
|
|
using json = nlohmann::json;
|
|
|
|
|
|
|
|
// see http://llvm.org/docs/LibFuzzer.html
|
|
|
|
extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
|
|
|
|
{
|
|
|
|
try
|
|
|
|
{
|
|
|
|
// step 1: parse input
|
|
|
|
std::vector<uint8_t> vec1(data, data + size);
|
|
|
|
json j1 = json::from_bson(vec1);
|
|
|
|
|
2018-10-24 16:55:08 +00:00
|
|
|
if (j1.is_discarded())
|
|
|
|
{
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
2018-10-24 13:43:37 +00:00
|
|
|
try
|
|
|
|
{
|
|
|
|
// step 2: round trip
|
|
|
|
std::vector<uint8_t> vec2 = json::to_bson(j1);
|
|
|
|
|
|
|
|
// parse serialization
|
|
|
|
json j2 = json::from_bson(vec2);
|
|
|
|
|
|
|
|
// serializations must match
|
|
|
|
assert(json::to_bson(j2) == vec2);
|
|
|
|
}
|
|
|
|
catch (const json::parse_error&)
|
|
|
|
{
|
2018-10-25 20:29:27 +00:00
|
|
|
// parsing a BSON serialization must not fail
|
2018-10-24 13:43:37 +00:00
|
|
|
assert(false);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
catch (const json::parse_error&)
|
|
|
|
{
|
|
|
|
// parse errors are ok, because input may be random bytes
|
|
|
|
}
|
|
|
|
catch (const json::type_error&)
|
|
|
|
{
|
|
|
|
// type errors can occur during parsing, too
|
|
|
|
}
|
|
|
|
catch (const json::out_of_range&)
|
|
|
|
{
|
|
|
|
// out of range errors can occur during parsing, too
|
|
|
|
}
|
|
|
|
|
|
|
|
// return 0 - non-zero return values are reserved for future use
|
|
|
|
return 0;
|
|
|
|
}
|