[PATCH] D54780: [llvm-demangle-fuzzer] Also fuzz microsoftDemangle().
Matt Morehouse via Phabricator via llvm-commits
llvm-commits at lists.llvm.org
Tue Nov 20 18:54:38 PST 2018
morehouse created this revision.
morehouse added a reviewer: kcc.
Herald added a subscriber: erik.pilkington.
Use first byte of input to determine whether to call itaniumDemangle()
or microsoftDemangle().
Addresses https://bugs.llvm.org/show_bug.cgi?id=39582.
https://reviews.llvm.org/D54780
Files:
llvm/tools/llvm-demangle-fuzzer/llvm-demangle-fuzzer.cpp
Index: llvm/tools/llvm-demangle-fuzzer/llvm-demangle-fuzzer.cpp
===================================================================
--- llvm/tools/llvm-demangle-fuzzer/llvm-demangle-fuzzer.cpp
+++ llvm/tools/llvm-demangle-fuzzer/llvm-demangle-fuzzer.cpp
@@ -14,11 +14,19 @@
#include <string>
extern "C" int LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size) {
- std::string NullTerminatedString((const char *)Data, Size);
+ if (Size == 0)
+ return 0;
+
+ std::string NullTerminatedString((const char *)&Data[1], Size - 1);
int status = 0;
- if (char *demangle = llvm::itaniumDemangle(NullTerminatedString.c_str(), nullptr,
- nullptr, &status))
- free(demangle);
+ char *Demangle = nullptr;
+ if (Data[0] < 128)
+ Demangle = llvm::itaniumDemangle(NullTerminatedString.c_str(), nullptr,
+ nullptr, &status);
+ else
+ Demangle = llvm::microsoftDemangle(NullTerminatedString.c_str(), nullptr,
+ nullptr, &status);
+ free(Demangle);
return 0;
}
-------------- next part --------------
A non-text attachment was scrubbed...
Name: D54780.174862.patch
Type: text/x-patch
Size: 1093 bytes
Desc: not available
URL: <http://lists.llvm.org/pipermail/llvm-commits/attachments/20181121/cb94e497/attachment.bin>
More information about the llvm-commits
mailing list