diff options
Diffstat (limited to 'testing/libfuzzer/pdf_css_fuzzer.cc')
| -rw-r--r-- | testing/libfuzzer/pdf_css_fuzzer.cc | 31 |
1 files changed, 31 insertions, 0 deletions
diff --git a/testing/libfuzzer/pdf_css_fuzzer.cc b/testing/libfuzzer/pdf_css_fuzzer.cc new file mode 100644 index 0000000000..da8b1f53f6 --- /dev/null +++ b/testing/libfuzzer/pdf_css_fuzzer.cc @@ -0,0 +1,31 @@ +// Copyright 2016 The PDFium Authors. All rights reserved. +// Use of this source code is governed by a BSD-style license that can be +// found in the LICENSE file. + +#include <memory> + +#include "core/fxcrt/include/fx_string.h" +#include "xfa/fde/css/fde_css.h" +#include "xfa/fde/css/fde_csssyntax.h" +#include "xfa/fgas/crt/fgas_stream.h" +#include "xfa/fxfa/parser/xfa_utils.h" + +extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) { + CFDE_CSSSyntaxParser parser; + + CFX_WideString input = CFX_WideString::FromUTF8( + CFX_ByteStringC(data, static_cast<FX_STRSIZE>(size))); + std::unique_ptr<IFX_Stream, ReleaseDeleter<IFX_Stream>> stream( + XFA_CreateWideTextRead(input)); + if (!stream) + return 0; + + parser.Init(stream.get(), 1024); + + FDE_CSSSYNTAXSTATUS status = parser.DoSyntaxParse(); + while (status != FDE_CSSSYNTAXSTATUS_Error && + status != FDE_CSSSYNTAXSTATUS_EOS) + status = parser.DoSyntaxParse(); + + return 0; +} |