testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc - Issue 2497603002: Limit memory usage for sqlite3 fuzzer + move it to sqlite dir.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc

Issue 2497603002: Limit memory usage for sqlite3 fuzzer + move it to sqlite dir. (Closed)

Patch Set: Fix nits. Created 4 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc

diff --git a/testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc b/testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc

deleted file mode 100644

index 8f7d90a643e56d0b5cc879faef1b39e68361f9b1..0000000000000000000000000000000000000000

--- a/testing/libfuzzer/fuzzers/sqlite3_prepare_v2_fuzzer.cc

+++ /dev/null

@@ -1,81 +0,0 @@

-// Use of this source code is governed by a BSD-style license that can be

-// found in the LICENSE file.

-#include <stddef.h>

-#include <stdint.h>

-#include <algorithm>

-#include <array>

-#include <string>

-#include <vector>

-#include "third_party/sqlite/sqlite3.h"

-static const std::array<uint8_t, 6> kBadKeyword{{'R', 'E', 'G', 'E', 'X', 'P'}};

-bool checkForBadKeyword(const uint8_t* data, size_t size) {

- auto it = std::search(

- data, data + size, kBadKeyword.begin(), kBadKeyword.end(),

- [](char c1, char c2) { return std::toupper(c1) == std::toupper(c2); });

- if (it != data + size)

- return true;

- return false;

-static int Progress(void *not_used_ptr) {

- return 1;

-// Entry point for LibFuzzer.

-extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {

- if (size < 2)

- return 0;

- if (checkForBadKeyword(data, size))

- return 0;

- sqlite3* db;

- int return_code = sqlite3_open_v2(

- "db.db",

- &db,

- SQLITE_OPEN_READWRITE | SQLITE_OPEN_CREATE | SQLITE_OPEN_MEMORY, 0);

- if (SQLITE_OK != return_code)

- return 0;

- // Use first byte as random selector for other parameters.

- int selector = data[0];

- // To cover both cases when progress_handler is used and isn't used.

- if (selector & 1)

- sqlite3_progress_handler(db, 4, &Progress, NULL);

- else

- sqlite3_progress_handler(db, 0, NULL, NULL);

- // Remove least significant bit to make further usage of selector independent.

- selector >>= 1;

- sqlite3_stmt* statement = NULL;

- int result = sqlite3_prepare_v2(db, reinterpret_cast<const char*>(data + 1),

- static_cast<int>(size - 1), &statement, NULL);

- if (result == SQLITE_OK) {

- // Use selector value to randomize number of iterations.

- for (int i = 0; i < selector; i++) {

- if (sqlite3_step(statement) != SQLITE_ROW)

- break;

- }

- sqlite3_finalize(statement);

- }

- sqlite3_close(db);

- return 0;

« no previous file with comments | « testing/libfuzzer/fuzzers/dicts/generated/sqlite3_prepare_v2_fuzzer.dict ('k') | third_party/sqlite/BUILD.gn » ('j') | no next file with comments »