packages/bun-uws/fuzzing/helpers.h


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

#ifndef HELPERS_H
#define HELPERS_H

/* Common helpers for fuzzing */

#include <functional>
#include <string_view>
#include <cstring>

/* We use this to pad the fuzz */
static inline const uint8_t *makePadded(const uint8_t *data, size_t size) {
    static int paddedLength = 512 * 1024;
    static char *padded = new char[128 + paddedLength + 128];

    /* Increase landing area if required */
    if (paddedLength < size) {
        delete [] padded;
        paddedLength = size;
        padded = new char [128 + paddedLength + 128];
    }

    memcpy(padded + 128, data, size);

    return (uint8_t *) padded + 128;
}

/* Splits the fuzz data in one or many chunks */
static inline void makeChunked(const uint8_t *data, size_t size, std::function<void(const uint8_t *data, size_t size)> cb) {
    /* First byte determines chunk size; 0 is all that remains, 1-255 is small chunk */
    for (int i = 0; i < size; ) {
        unsigned int chunkSize = data[i++];
        if (!chunkSize) {
            chunkSize = size - i;
        } else {
            chunkSize = std::min<int>(chunkSize, size - i);
        }

        cb(data + i, chunkSize);
        i += chunkSize;
    }
}

/* Reads all bytes to trigger invalid reads */
static inline void readBytes(std::string_view s) {
    volatile int sum = 0;
    for (int i = 0; i < s.size(); i++) {
        sum += s[i];
    }
}

#endif