This is an archive of the discontinued LLVM Phabricator instance.

Differential D28133

add cxa_demangle_fuzzer
ClosedPublic

Authored by kcc on Dec 27 2016, 5:53 PM.

Details

Reviewers
mclow.lists
compnerd
mehdi_amini
Commits
rG4eb60cb9c9f4: add cxa_demangle_fuzzer
rCXXA290650: add cxa_demangle_fuzzer
rL290650: add cxa_demangle_fuzzer
Summary

All easy-to-find bugs in cxa_demangle where fixed now
(https://bugs.chromium.org/p/chromium/issues/detail?id=606626)
except for one (https://llvm.org/bugs/show_bug.cgi?id=31031).
Now I'd like to properly integrate this fuzzer with the source tree
and then run the fuzzer continuously on https://github.com/google/oss-fuzz

Diff Detail

Event Timeline

kcc updated this revision to Diff 82570.Dec 27 2016, 5:53 PM
kcc retitled this revision from to add cxa_demangle_fuzzer.
kcc updated this object.
kcc added reviewers: compnerd, mehdi_amini, mclow.lists.
kcc added a subscriber: cfe-commits.
Herald added a subscriber: mgorny. · View Herald TranscriptDec 27 2016, 5:53 PM
mehdi_amini added inline comments.Dec 27 2016, 6:32 PM
fuzz/CMakeLists.txt
4

This is a dependency on libLLVMSupport right? Why is this needed?

kcc updated this revision to Diff 82571.Dec 27 2016, 6:57 PM

remove unneeded set(LLVM_LINK_COMPONENTS support)

kcc marked an inline comment as done.Dec 27 2016, 6:58 PM

yes, removed.

mehdi_amini accepted this revision.Dec 27 2016, 7:37 PM
mehdi_amini edited edge metadata.

LGTM.

(I can't test because LLVM_USE_SANITIZE_COVERAGE seems broken on Darwin)

This revision is now accepted and ready to land.Dec 27 2016, 7:37 PM
kcc closed this revision.Dec 27 2016, 7:39 PM

Revision Contents

Diff 82571

CMakeLists.txt

Show First 20 LinesShow All 426 Lines▼ Show 20 Linesif (LIBCXXABI_STANDALONE_BUILD AND NOT LIBCXXABI_ENABLE_SHARED)
message(WARNING "The libc++abi tests aren't valid when libc++abi is built " message(WARNING "The libc++abi tests aren't valid when libc++abi is built "
"standalone (i.e. outside of llvm/projects/libcxxabi ) and " "standalone (i.e. outside of llvm/projects/libcxxabi ) and "
"is built without a shared library. Either build a shared " "is built without a shared library. Either build a shared "
"library, build libc++abi at the same time as you build " "library, build libc++abi at the same time as you build "
"libc++, or do without testing. No check target will be " "libc++, or do without testing. No check target will be "
"available!") "available!")
else() else()
add_subdirectory(test) add_subdirectory(test)
add_subdirectory(fuzz)
endif() endif()

fuzz/

  • This directory was added.

fuzz/CMakeLists.txt

  • This file was added.
# See http://llvm.org/docs/LibFuzzer.html
if( LLVM_USE_SANITIZE_COVERAGE )
add_executable(cxa_demangle_fuzzer
cxa_demangle_fuzzer.cpp
mehdi_aminiUnsubmitted
Done
ReplyInline Actions

This is a dependency on libLLVMSupport right? Why is this needed?

mehdi_amini: This is a dependency on libLLVMSupport right? Why is this needed?
../src/cxa_demangle.cpp
)
target_link_libraries(cxa_demangle_fuzzer
LLVMFuzzer
)
endif()

fuzz/cxa_demangle_fuzzer.cpp

  • This file was added.
#include <stdint.h>
#include <stddef.h>
#include <string.h>
#include <stdlib.h>
extern "C" char *
__cxa_demangle(const char *mangled_name, char *buf, size_t *n, int *status);
extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
char *str = new char[size+1];
memcpy(str, data, size);
str[size] = 0;
free(__cxa_demangle(str, 0, 0, 0));
delete [] str;
return 0;
}