/src/libdwarf/fuzz/fuzz_aranges.c

Source
/* Copyright 2021 Google LLC
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
      http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
#include <fcntl.h> /* open() O_RDONLY O_BINARY */
#include <stdint.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/types.h>
#include <unistd.h>

#ifndef O_BINARY
#define O_BINARY 0 /* So it does nothing in Linux/Unix */
#endif

/*
 * Libdwarf library callers can only use these headers.
 */
#include "dwarf.h"
#include "libdwarf.h"

/*
 * Helper function definitions.
 */
static void cleanup_bad_arange(Dwarf_Debug dbg, Dwarf_Arange *arange,
                               Dwarf_Signed i, Dwarf_Signed count);
int arange_processing_example(Dwarf_Debug dbg, Dwarf_Error *error);

/*
 * Fuzzer function
 */
int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
  char filename[256];
#ifdef DWREGRESSIONTEMP
  /* Under msys2, the /tmp/ results in an open fail */
  sprintf(filename, "junklibfuzzer.%d", getpid());
#else
  sprintf(filename, "/tmp/libfuzzer.%d", getpid());
#endif

  FILE *fp = fopen(filename, "wb");
  if (!fp) {
    printf("FAIL libfuzzer cannot open temp as writeable %s\n",
        filename);
    return 0;
  }
  fwrite(data, size, 1, fp);
  fclose(fp);

  Dwarf_Debug dbg = 0;
  int res = DW_DLV_ERROR;
  Dwarf_Error error = 0;
  Dwarf_Handler errhand = 0;
  Dwarf_Ptr errarg = 0;

  int fd = open(filename, O_RDONLY | O_BINARY);
  if (fd < 0) {
    exit(EXIT_FAILURE);
  }

  res = dwarf_init_b(fd, DW_GROUPNUMBER_ANY, errhand, errarg, &dbg, &error);

  if (res != DW_DLV_OK) {
    dwarf_dealloc_error(dbg, error);
  } else {
    /*  Adding newline avoids a warning from diff
        in regressiontesting */
    printf("Processing\n");
    arange_processing_example(dbg, &error);
  }

  dwarf_finish(dbg);
  close(fd);
  unlink(filename);
  return 0;
}

static void cleanup_bad_arange(Dwarf_Debug dbg, Dwarf_Arange *arange,
                               Dwarf_Signed i, Dwarf_Signed count) {
  Dwarf_Signed k = i;
  for (; k < count; ++k) {
    dwarf_dealloc(dbg, arange[k], DW_DLA_ARANGE);
    arange[k] = 0;
  }
}

// Source:
// https://www.prevanders.net/libdwarfdoc/group__aranges.html#ga9b628e21a71f4280f93788815796ef92
int arange_processing_example(Dwarf_Debug dbg, Dwarf_Error *error) {
  Dwarf_Signed count = 0;
  Dwarf_Arange *arange = 0;
  int res = 0;

  res = dwarf_get_aranges(dbg, &arange, &count, error);
  if (res == DW_DLV_OK) {
    Dwarf_Signed i = 0;

    for (i = 0; i < count; ++i) {
      Dwarf_Arange ara = arange[i];
      Dwarf_Unsigned segment = 0;
      Dwarf_Unsigned segment_entry_size = 0;
      Dwarf_Addr start = 0;
      Dwarf_Unsigned length = 0;
      Dwarf_Off cu_die_offset = 0;

      res = dwarf_get_arange_info_b(ara, &segment, &segment_entry_size, &start,
                                    &length, &cu_die_offset, error);
      if (res != DW_DLV_OK) {
        cleanup_bad_arange(dbg, arange, i, count);
        dwarf_dealloc(dbg, arange, DW_DLA_LIST);
        return res;
      }
      dwarf_dealloc(dbg, ara, DW_DLA_ARANGE);
      arange[i] = 0;
    }
    dwarf_dealloc(dbg, arange, DW_DLA_LIST);
  }
  return res;
}

Line	Count	Source
1		/* Copyright 2021 Google LLC
2		Licensed under the Apache License, Version 2.0 (the "License");
3		you may not use this file except in compliance with the License.
4		You may obtain a copy of the License at
5		http://www.apache.org/licenses/LICENSE-2.0
6		Unless required by applicable law or agreed to in writing, software
7		distributed under the License is distributed on an "AS IS" BASIS,
8		WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
9		See the License for the specific language governing permissions and
10		limitations under the License.
11		*/
12		#include <fcntl.h> /* open() O_RDONLY O_BINARY */
13		#include <stdint.h>
14		#include <stdio.h>
15		#include <stdlib.h>
16		#include <string.h>
17		#include <sys/types.h>
18		#include <unistd.h>
19
20		#ifndef O_BINARY
21	30.0k	#define O_BINARY 0 /* So it does nothing in Linux/Unix */
22		#endif
23
24		/*
25		* Libdwarf library callers can only use these headers.
26		*/
27		#include "dwarf.h"
28		#include "libdwarf.h"
29
30		/*
31		* Helper function definitions.
32		*/
33		static void cleanup_bad_arange(Dwarf_Debug dbg, Dwarf_Arange *arange,
34		Dwarf_Signed i, Dwarf_Signed count);
35		int arange_processing_example(Dwarf_Debug dbg, Dwarf_Error *error);
36
37		/*
38		* Fuzzer function
39		*/
40	30.0k	int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
41	30.0k	char filename[256];
42		#ifdef DWREGRESSIONTEMP
43		/* Under msys2, the /tmp/ results in an open fail */
44		sprintf(filename, "junklibfuzzer.%d", getpid());
45		#else
46	30.0k	sprintf(filename, "/tmp/libfuzzer.%d", getpid());
47	30.0k	#endif
48
49	30.0k	FILE *fp = fopen(filename, "wb");
50	30.0k	if (!fp) {
51	0	printf("FAIL libfuzzer cannot open temp as writeable %s\n",
52	0	filename);
53	0	return 0;
54	0	}
55	30.0k	fwrite(data, size, 1, fp);
56	30.0k	fclose(fp);
57
58	30.0k	Dwarf_Debug dbg = 0;
59	30.0k	int res = DW_DLV_ERROR;
60	30.0k	Dwarf_Error error = 0;
61	30.0k	Dwarf_Handler errhand = 0;
62	30.0k	Dwarf_Ptr errarg = 0;
63
64	30.0k	int fd = open(filename, O_RDONLY \| O_BINARY);
65	30.0k	if (fd < 0) {
66	0	exit(EXIT_FAILURE);
67	0	}
68
69	30.0k	res = dwarf_init_b(fd, DW_GROUPNUMBER_ANY, errhand, errarg, &dbg, &error);
70
71	30.0k	if (res != DW_DLV_OK) {
72	22.9k	dwarf_dealloc_error(dbg, error);
73	22.9k	} else {
74		/* Adding newline avoids a warning from diff
75		in regressiontesting */
76	7.07k	printf("Processing\n");
77	7.07k	arange_processing_example(dbg, &error);
78	7.07k	}
79
80	30.0k	dwarf_finish(dbg);
81	30.0k	close(fd);
82	30.0k	unlink(filename);
83	30.0k	return 0;
84	30.0k	}
85
86		static void cleanup_bad_arange(Dwarf_Debug dbg, Dwarf_Arange *arange,
87	189	Dwarf_Signed i, Dwarf_Signed count) {
88	189	Dwarf_Signed k = i;
89	183k	for (; k < count; ++k) {
90	183k	dwarf_dealloc(dbg, arange[k], DW_DLA_ARANGE);
91	183k	arange[k] = 0;
92	183k	}
93	189	}
94
95		// Source:
96		// https://www.prevanders.net/libdwarfdoc/group__aranges.html#ga9b628e21a71f4280f93788815796ef92
97	1.94k	int arange_processing_example(Dwarf_Debug dbg, Dwarf_Error *error) {
98	1.94k	Dwarf_Signed count = 0;
99	1.94k	Dwarf_Arange *arange = 0;
100	1.94k	int res = 0;
101
102	1.94k	res = dwarf_get_aranges(dbg, &arange, &count, error);
103	1.94k	if (res == DW_DLV_OK) {
104	303	Dwarf_Signed i = 0;
105
106	158k	for (i = 0; i < count; ++i) {
107	158k	Dwarf_Arange ara = arange[i];
108	158k	Dwarf_Unsigned segment = 0;
109	158k	Dwarf_Unsigned segment_entry_size = 0;
110	158k	Dwarf_Addr start = 0;
111	158k	Dwarf_Unsigned length = 0;
112	158k	Dwarf_Off cu_die_offset = 0;
113
114	158k	res = dwarf_get_arange_info_b(ara, &segment, &segment_entry_size, &start,
115	158k	&length, &cu_die_offset, error);
116	158k	if (res != DW_DLV_OK) {
117	189	cleanup_bad_arange(dbg, arange, i, count);
118	189	dwarf_dealloc(dbg, arange, DW_DLA_LIST);
119	189	return res;
120	189	}
121	158k	dwarf_dealloc(dbg, ara, DW_DLA_ARANGE);
122	158k	arange[i] = 0;
123	158k	}
124	114	dwarf_dealloc(dbg, arange, DW_DLA_LIST);
125	114	}
126	1.76k	return res;
127	1.94k	}

Coverage Report

Created: 2026-06-10 06:19