Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
SoftwareDesign
/
csu3_am335x
8
0
Салаа 0
Файлууд Асуудлууд 0 Хуулах хүсэлтүүд 0 Мэдлэгийн сан
Салаа: master
Салаанууд Тагууд
csu3_am335x
/
EVSE
/
GPL
/
php-8.1.12
/
sapi
/
fuzzer
/
fuzzer-mbstring.c

fuzzer-mbstring.c 2.2 KB
Байнгын холболт Түүх Анхны өгөгдөл

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778 
  1. /*
    2. 

  2.    +----------------------------------------------------------------------+
    3. 

  3.    | Copyright (c) The PHP Group                                          |
    4. 

  4.    +----------------------------------------------------------------------+
    5. 

  5.    | This source file is subject to version 3.01 of the PHP license,      |
    6. 

  6.    | that is bundled with this package in the file LICENSE, and is        |
    7. 

  7.    | available through the world-wide-web at the following url:           |
    8. 

  8.    | https://www.php.net/license/3_01.txt                                 |
    9. 

  9.    | If you did not receive a copy of the PHP license and are unable to   |
    10. 

  10.    | obtain it through the world-wide-web, please send a note to          |
    11. 

  11.    | license@php.net so we can mail you a copy immediately.               |
    12. 

  12.    +----------------------------------------------------------------------+
    13. 

  13.    | Authors: Stanislav Malyshev <stas@php.net>                           |
    14. 

  14.    +----------------------------------------------------------------------+
    15. 

  15.  */
    16. 

  16. 

  17. 

  18. #include "fuzzer.h"
    19. 

  19. 

  20. #include "Zend/zend.h"
    21. 

  21. #include "main/php_config.h"
    22. 

  22. #include "main/php_main.h"
    23. 

  23. #include "oniguruma.h"
    24. 

  24. 

  25. #include <stdio.h>
    26. 

  26. #include <stdint.h>
    27. 

  27. #include <stdlib.h>
    28. 

  28. 

  29. #include "fuzzer-sapi.h"
    30. 

  30. 

  31. int LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size) {
    32. 

  32. #ifdef HAVE_MBREGEX
    33. 

  33. 	char *args[2];
    34. 

  34. 	char *data = malloc(Size+1);
    35. 

  35. 	memcpy(data, Data, Size);
    36. 

  36. 	data[Size] = '\0';
    37. 

  37. 

  38. 	if (fuzzer_request_startup() == FAILURE) {
    39. 

  39. 		return 0;
    40. 

  40. 	}
    41. 

  41. 

  42. 	fuzzer_setup_dummy_frame();
    43. 

  43. 

  44. 	args[0] = data;
    45. 

  45. 	args[1] = "test123";
    46. 

  46. 	fuzzer_call_php_func("mb_ereg", 2, args);
    47. 

  47. 

  48. 	args[0] = data;
    49. 

  49. 	args[1] = "test123";
    50. 

  50. 	fuzzer_call_php_func("mb_eregi", 2, args);
    51. 

  51. 

  52. 	args[0] = data;
    53. 

  53. 	args[1] = data;
    54. 

  54. 	fuzzer_call_php_func("mb_ereg", 2, args);
    55. 

  55. 

  56. 	args[0] = data;
    57. 

  57. 	args[1] = data;
    58. 

  58. 	fuzzer_call_php_func("mb_eregi", 2, args);
    59. 

  59. 

  60. 	fuzzer_request_shutdown();
    61. 

  61. 

  62. 	free(data);
    63. 

  63. #else
    64. 

  64. 	fprintf(stderr, "\n\nERROR:\nPHP built without mbstring, recompile with --enable-mbstring to use this fuzzer\n");
    65. 

  65. 	exit(1);
    66. 

  66. #endif
    67. 

  67. 	return 0;
    68. 

  68. }
    69. 

  69. 

  70. int LLVMFuzzerInitialize(int *argc, char ***argv) {
    71. 

  71. 	fuzzer_init_php();
    72. 

  72. 

  73. 	/* The default parse depth limit allows stack overflows under asan. */
    74. 

  74. 	onig_set_parse_depth_limit(512);
    75. 

  75. 

  76. 	/* fuzzer_shutdown_php(); */
    77. 

  77. 	return 0;
    78. 

  78. }
    79.