1*3117ece4Schristos /* 2*3117ece4Schristos * Copyright (c) Meta Platforms, Inc. and affiliates. 3*3117ece4Schristos * All rights reserved. 4*3117ece4Schristos * 5*3117ece4Schristos * This source code is licensed under both the BSD-style license (found in the 6*3117ece4Schristos * LICENSE file in the root directory of this source tree) and the GPLv2 (found 7*3117ece4Schristos * in the COPYING file in the root directory of this source tree). 8*3117ece4Schristos * You may select, at your option, one of the above-listed licenses. 9*3117ece4Schristos */ 10*3117ece4Schristos 11*3117ece4Schristos #define ZSTD_STATIC_LINKING_ONLY 12*3117ece4Schristos 13*3117ece4Schristos #include <stddef.h> 14*3117ece4Schristos #include <stdint.h> 15*3117ece4Schristos #include <string.h> 16*3117ece4Schristos #include <stdlib.h> 17*3117ece4Schristos 18*3117ece4Schristos #include "fuzz_data_producer.h" 19*3117ece4Schristos #include "fuzz_helpers.h" 20*3117ece4Schristos #include "zstd_helpers.h" 21*3117ece4Schristos 22*3117ece4Schristos /** 23*3117ece4Schristos * This fuzz target ensures that ZSTD_generateSequences() does not crash and 24*3117ece4Schristos * if it succeeds that ZSTD_compressSequences() round trips. 25*3117ece4Schristos */ 26*3117ece4Schristos 27*3117ece4Schristos static void testRoundTrip(ZSTD_CCtx* cctx, ZSTD_Sequence const* seqs, size_t nbSeqs, const void* src, size_t srcSize) { 28*3117ece4Schristos /* Compress the sequences with block delimiters */ 29*3117ece4Schristos const size_t compressBound = ZSTD_compressBound(srcSize); 30*3117ece4Schristos void* dst = FUZZ_malloc(compressBound); 31*3117ece4Schristos FUZZ_ASSERT(dst); 32*3117ece4Schristos 33*3117ece4Schristos size_t compressedSize = ZSTD_compressSequences(cctx, dst, compressBound, seqs, nbSeqs, src, srcSize); 34*3117ece4Schristos FUZZ_ZASSERT(compressedSize); 35*3117ece4Schristos 36*3117ece4Schristos void* decompressed = FUZZ_malloc(srcSize); 37*3117ece4Schristos FUZZ_ASSERT(srcSize == 0 || decompressed); 38*3117ece4Schristos size_t decompressedSize = ZSTD_decompress(decompressed, srcSize, dst, compressedSize); 39*3117ece4Schristos FUZZ_ZASSERT(decompressedSize); 40*3117ece4Schristos FUZZ_ASSERT(decompressedSize == srcSize); 41*3117ece4Schristos if (srcSize != 0) { 42*3117ece4Schristos FUZZ_ASSERT(!memcmp(src, decompressed, srcSize)); 43*3117ece4Schristos } 44*3117ece4Schristos 45*3117ece4Schristos free(decompressed); 46*3117ece4Schristos free(dst); 47*3117ece4Schristos } 48*3117ece4Schristos 49*3117ece4Schristos int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) { 50*3117ece4Schristos 51*3117ece4Schristos FUZZ_dataProducer_t *producer = FUZZ_dataProducer_create(data, size); 52*3117ece4Schristos size = FUZZ_dataProducer_reserveDataPrefix(producer); 53*3117ece4Schristos 54*3117ece4Schristos ZSTD_CCtx* cctx = ZSTD_createCCtx(); 55*3117ece4Schristos FUZZ_ASSERT(cctx); 56*3117ece4Schristos 57*3117ece4Schristos const size_t seqsCapacity = FUZZ_dataProducer_uint32Range(producer, 0, 2 * ZSTD_sequenceBound(size)); 58*3117ece4Schristos ZSTD_Sequence* seqs = (ZSTD_Sequence*)FUZZ_malloc(sizeof(ZSTD_Sequence) * seqsCapacity); 59*3117ece4Schristos FUZZ_ASSERT(seqsCapacity == 0 || seqs); 60*3117ece4Schristos 61*3117ece4Schristos FUZZ_setRandomParameters(cctx, size, producer); 62*3117ece4Schristos FUZZ_ZASSERT(ZSTD_CCtx_setParameter(cctx, ZSTD_c_targetCBlockSize, 0)); 63*3117ece4Schristos FUZZ_ZASSERT(ZSTD_CCtx_setParameter(cctx, ZSTD_c_nbWorkers, 0)); 64*3117ece4Schristos 65*3117ece4Schristos const size_t nbSeqs = ZSTD_generateSequences(cctx, seqs, seqsCapacity, data, size); 66*3117ece4Schristos if (ZSTD_isError(nbSeqs)) { 67*3117ece4Schristos /* Allowed to error if the destination is too small */ 68*3117ece4Schristos if (ZSTD_getErrorCode(nbSeqs) == ZSTD_error_dstSize_tooSmall) { 69*3117ece4Schristos FUZZ_ASSERT(seqsCapacity < ZSTD_sequenceBound(size)); 70*3117ece4Schristos } 71*3117ece4Schristos } else { 72*3117ece4Schristos /* Ensure we round trip with and without block delimiters*/ 73*3117ece4Schristos 74*3117ece4Schristos FUZZ_ZASSERT(ZSTD_CCtx_setParameter(cctx, ZSTD_c_blockDelimiters, ZSTD_sf_explicitBlockDelimiters)); 75*3117ece4Schristos testRoundTrip(cctx, seqs, nbSeqs, data, size); 76*3117ece4Schristos 77*3117ece4Schristos const size_t nbMergedSeqs = ZSTD_mergeBlockDelimiters(seqs, nbSeqs); 78*3117ece4Schristos FUZZ_ASSERT(nbMergedSeqs <= nbSeqs); 79*3117ece4Schristos FUZZ_ZASSERT(ZSTD_CCtx_reset(cctx, ZSTD_reset_session_only)); 80*3117ece4Schristos FUZZ_ZASSERT(ZSTD_CCtx_setParameter(cctx, ZSTD_c_blockDelimiters, ZSTD_sf_noBlockDelimiters)); 81*3117ece4Schristos testRoundTrip(cctx, seqs, nbMergedSeqs, data, size); 82*3117ece4Schristos } 83*3117ece4Schristos 84*3117ece4Schristos free(seqs); 85*3117ece4Schristos ZSTD_freeCCtx(cctx); 86*3117ece4Schristos FUZZ_dataProducer_free(producer); 87*3117ece4Schristos return 0; 88*3117ece4Schristos } 89