Utilities: Provide fuzzers as a utility in serenity

Userland/Utilities/CMakeLists.txt

@@ -42,6 +42,7 @@ target_link_libraries(su LibCrypt)
 target_link_libraries(tar LibTar LibCompress)
 target_link_libraries(test-crypto LibCrypto LibTLS LibLine)
 target_link_libraries(test-compress LibCompress)
+target_link_libraries(test-fuzz LibCore LibGemini LibGfx LibHTTP LibIPC LibJS LibMarkdown LibShell)
 target_link_libraries(test-js LibJS LibLine LibCore)
 target_link_libraries(test-pthread LibThread)
 target_link_libraries(test-web LibWeb)

Userland/Utilities/test-fuzz.cpp

@@ -0,0 +1,173 @@
+/*
+ * Copyright (c) 2021, Ben Wiederhake <BenWiederhake.GitHub@gmx.de>
+ * All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright notice, this
+ *    list of conditions and the following disclaimer.
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright notice,
+ *    this list of conditions and the following disclaimer in the documentation
+ *    and/or other materials provided with the distribution.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
+ * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+ * DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE
+ * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
+ * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+ * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
+ * CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+ * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+ * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include <AK/String.h>
+#include <LibCore/ArgsParser.h>
+#include <LibCore/File.h>
+#include <stdio.h>
+#include <unistd.h>
+
+#define ENUMERATE_TARGETS(T) \
+    T(BMPLoader)             \
+    T(ELF)                   \
+    T(Gemini)                \
+    T(GIFLoader)             \
+    T(HttpRequest)           \
+    T(ICOLoader)             \
+    T(JPGLoader)             \
+    T(Js)                    \
+    T(Markdown)              \
+    T(PBMLoader)             \
+    T(PGMLoader)             \
+    T(PNGLoader)             \
+    T(PPMLoader)             \
+    T(RegexECMA262)          \
+    T(RegexPosixExtended)    \
+    T(Shell)                 \
+    T(TTF)                   \
+    T(URL)
+
+#undef __ENUMERATE_TARGET
+#define __ENUMERATE_TARGET(x) extern "C" int Test##x(const uint8_t*, size_t);
+ENUMERATE_TARGETS(__ENUMERATE_TARGET)
+#undef __ENUMERATE_TARGET
+
+#define LLVMFuzzerTestOneInput TestBMPLoader
+#include <Meta/Lagom/Fuzzers/FuzzBMPLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestELF
+#include <Meta/Lagom/Fuzzers/FuzzELF.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestGemini
+#include <Meta/Lagom/Fuzzers/FuzzGemini.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestGIFLoader
+#include <Meta/Lagom/Fuzzers/FuzzGIFLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestHttpRequest
+#include <Meta/Lagom/Fuzzers/FuzzHttpRequest.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestICOLoader
+#include <Meta/Lagom/Fuzzers/FuzzICOLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestJPGLoader
+#include <Meta/Lagom/Fuzzers/FuzzJPGLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestJs
+#include <Meta/Lagom/Fuzzers/FuzzJs.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestMarkdown
+#include <Meta/Lagom/Fuzzers/FuzzMarkdown.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestPBMLoader
+#include <Meta/Lagom/Fuzzers/FuzzPBMLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestPGMLoader
+#include <Meta/Lagom/Fuzzers/FuzzPGMLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestPNGLoader
+#include <Meta/Lagom/Fuzzers/FuzzPNGLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestPPMLoader
+#include <Meta/Lagom/Fuzzers/FuzzPPMLoader.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestRegexECMA262
+#include <Meta/Lagom/Fuzzers/FuzzRegexECMA262.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestRegexPosixExtended
+#include <Meta/Lagom/Fuzzers/FuzzRegexPosixExtended.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestShell
+#include <Meta/Lagom/Fuzzers/FuzzShell.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestTTF
+#include <Meta/Lagom/Fuzzers/FuzzTTF.cpp>
+#undef LLVMFuzzerTestOneInput
+
+#define LLVMFuzzerTestOneInput TestURL
+#include <Meta/Lagom/Fuzzers/FuzzURL.cpp>
+#undef LLVMFuzzerTestOneInput
+
+static auto parse_target_name(const String& name)
+{
+    if (name == "list") {
+        outln("The following targets are included:");
+#undef __ENUMERATE_TARGET
+#define __ENUMERATE_TARGET(x) outln(#x);
+        ENUMERATE_TARGETS(__ENUMERATE_TARGET)
+#undef __ENUMERATE_TARGET
+        exit(0);
+    }
+
+#undef __ENUMERATE_TARGET
+#define __ENUMERATE_TARGET(x) \
+    if (name == #x)           \
+        return Test##x;
+    ENUMERATE_TARGETS(__ENUMERATE_TARGET)
+#undef __ENUMERATE_TARGET
+
+    warnln("Unknown fuzzing target \"{}\". Try \"list\" to get a full list.", name);
+    exit(1);
+}
+
+int main(int argc, char** argv)
+{
+    const char* type;
+    const char* filename;
+
+    Core::ArgsParser args_parser;
+    args_parser.add_positional_argument(type, "Type of fuzzing target to run (use \"list\" to list all existing)", "target-kind");
+    args_parser.add_positional_argument(filename, "Input file", "filename");
+    args_parser.parse(argc, argv);
+
+    auto fn = parse_target_name(type);
+
+    auto file = Core::File::open(filename, Core::IODevice::OpenMode::ReadOnly);
+    if (file.is_error()) {
+        warnln("Cannot read from file: {}", file.error());
+        exit(1);
+    }
+
+    auto input = file.value()->read_all();
+
+    return fn(input.data(), input.size());
+}