/src/wget/fuzz/wget_cookie_fuzzer.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | * Copyright (c) 2017-2024 Free Software Foundation, Inc. |
3 | | * |
4 | | * This file is part of GNU Wget. |
5 | | * |
6 | | * GNU Wget is free software; you can redistribute it and/or modify |
7 | | * it under the terms of the GNU General Public License as published by |
8 | | * the Free Software Foundation; either version 3 of the License, or |
9 | | * (at your option) any later version. |
10 | | * |
11 | | * GNU Wget is distributed in the hope that it will be useful, |
12 | | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
13 | | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the |
14 | | * GNU General Public License for more details. |
15 | | * |
16 | | * You should have received a copy of the GNU General Public License |
17 | | * along with Wget. If not, see <https://www.gnu.org/licenses/>. |
18 | | */ |
19 | | |
20 | | #include <config.h> |
21 | | |
22 | | #include <sys/types.h> |
23 | | #include <dirent.h> // opendir, readdir |
24 | | #include <stdint.h> // uint8_t |
25 | | #include <stdio.h> // fmemopen |
26 | | #include <string.h> // strncmp |
27 | | #include <stdlib.h> // free |
28 | | #include <fcntl.h> // open flags |
29 | | #include <unistd.h> // close |
30 | | |
31 | | #include "wget.h" |
32 | | #undef fopen_wgetrc |
33 | | |
34 | | #ifdef __cplusplus |
35 | | extern "C" { |
36 | | #endif |
37 | | #include "cookies.h" |
38 | | |
39 | | // declarations for wget internal functions |
40 | | int main_wget(int argc, const char **argv); |
41 | | void cleanup(void); |
42 | | FILE *fopen_wget(const char *pathname, const char *mode); |
43 | | FILE *fopen_wgetrc(const char *pathname, const char *mode); |
44 | | void exit_wget(int status); |
45 | | #ifdef __cplusplus |
46 | | } |
47 | | #endif |
48 | | |
49 | | #include "fuzzer.h" |
50 | | |
51 | | FILE *fopen_wget(const char *pathname, const char *mode) |
52 | 0 | { |
53 | 0 | return fopen("/dev/null", mode); |
54 | 0 | } |
55 | | |
56 | | FILE *fopen_wgetrc(const char *pathname, const char *mode) |
57 | 0 | { |
58 | 0 | return NULL; |
59 | 0 | } |
60 | | |
61 | | #ifdef FUZZING |
62 | | void exit_wget(int status) |
63 | 0 | { |
64 | 0 | } |
65 | | #endif |
66 | | |
67 | | int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) |
68 | 11.7k | { |
69 | 11.7k | struct cookie_jar *cookie_jar; |
70 | 11.7k | char *set_cookie; |
71 | | |
72 | 11.7k | if (size > 1024) // same as max_len = ... in .options file |
73 | 32 | return 0; |
74 | | |
75 | 11.7k | set_cookie = (char *) malloc(size + 1); |
76 | 11.7k | memcpy(set_cookie, data, size); |
77 | 11.7k | set_cookie[size] = 0; |
78 | | |
79 | 11.7k | CLOSE_STDERR |
80 | | |
81 | 11.7k | cookie_jar = cookie_jar_new(); |
82 | 11.7k | cookie_handle_set_cookie(cookie_jar, "x", 81, "p", set_cookie); |
83 | 11.7k | cookie_handle_set_cookie(cookie_jar, "x", 81, "p", set_cookie); |
84 | 11.7k | cookie_handle_set_cookie(cookie_jar, "x", 80, "p/d/", set_cookie); |
85 | 11.7k | cookie_jar_delete(cookie_jar); |
86 | | |
87 | 11.7k | RESTORE_STDERR |
88 | | |
89 | 11.7k | free(set_cookie); |
90 | | |
91 | 11.7k | return 0; |
92 | 11.7k | } |