diff --git a/test/fuzzers/BUILD.gn b/test/fuzzers/BUILD.gn index 8bf6f62ac4..290db38e39 100644 --- a/test/fuzzers/BUILD.gn +++ b/test/fuzzers/BUILD.gn @@ -577,3 +577,13 @@ webrtc_fuzzer_test("field_trial_fuzzer") { ] seed_corpus = "corpora/field_trial-corpus" } + +webrtc_fuzzer_test("string_to_number_fuzzer") { + sources = [ + "string_to_number_fuzzer.cc", + ] + deps = [ + "../../rtc_base:rtc_base_approved", + ] + seed_corpus = "corpora/string_to_number-corpus" +} diff --git a/test/fuzzers/corpora/string_to_number-corpus/0 b/test/fuzzers/corpora/string_to_number-corpus/0 new file mode 100644 index 0000000000..fbfcbf9105 --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/0 @@ -0,0 +1 @@ +90742757 diff --git a/test/fuzzers/corpora/string_to_number-corpus/1 b/test/fuzzers/corpora/string_to_number-corpus/1 new file mode 100644 index 0000000000..587611a1d6 --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/1 @@ -0,0 +1 @@ +27.70727677 diff --git a/test/fuzzers/corpora/string_to_number-corpus/2 b/test/fuzzers/corpora/string_to_number-corpus/2 new file mode 100644 index 0000000000..45a4fb75db --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/2 @@ -0,0 +1 @@ +8 diff --git a/test/fuzzers/corpora/string_to_number-corpus/3 b/test/fuzzers/corpora/string_to_number-corpus/3 new file mode 100644 index 0000000000..a0a162047c --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/3 @@ -0,0 +1 @@ +0.0001 diff --git a/test/fuzzers/corpora/string_to_number-corpus/4 b/test/fuzzers/corpora/string_to_number-corpus/4 new file mode 100644 index 0000000000..da24ab1137 --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/4 @@ -0,0 +1 @@ +27277272727272727272 diff --git a/test/fuzzers/corpora/string_to_number-corpus/5 b/test/fuzzers/corpora/string_to_number-corpus/5 new file mode 100644 index 0000000000..575c0a830c --- /dev/null +++ b/test/fuzzers/corpora/string_to_number-corpus/5 @@ -0,0 +1 @@ +999999999999999999999999999999999999999999999999999999999999999999999999999999 diff --git a/test/fuzzers/string_to_number_fuzzer.cc b/test/fuzzers/string_to_number_fuzzer.cc new file mode 100644 index 0000000000..ae4e394a56 --- /dev/null +++ b/test/fuzzers/string_to_number_fuzzer.cc @@ -0,0 +1,34 @@ +/* + * Copyright (c) 2019 The WebRTC project authors. All Rights Reserved. + * + * Use of this source code is governed by a BSD-style license + * that can be found in the LICENSE file in the root of the source + * tree. An additional intellectual property rights grant can be found + * in the file PATENTS. All contributing project authors may + * be found in the AUTHORS file in the root of the source tree. + */ + +#include +#include +#include + +#include "rtc_base/string_to_number.h" + +namespace webrtc { + +void FuzzOneInput(const uint8_t* data, size_t size) { + std::string number_to_parse(reinterpret_cast(data), size); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); + rtc::StringToNumber(number_to_parse); +} + +} // namespace webrtc