Home Explore Help
Sign In
cpp
/
cpp-httplib
mirror of https://github.com/tazdij/cpp-httplib.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 22d90c29b4
Branches Tags
cpp-httplib
/
test
/
fuzzing
/
server_fuzzer.cc

server_fuzzer.cc 3.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100 
  1. #include <cstdint>
    2. 

  2. 

  3. #include <httplib.h>
    4. 

  4. 

  5. class FuzzedStream : public httplib::Stream {
    6. 

  6. public:
    7. 

  7.   FuzzedStream(const uint8_t *data, size_t size)
    8. 

  8.       : data_(data), size_(size), read_pos_(0) {}
    9. 

  9. 

  10.   ssize_t read(char *ptr, size_t size) override {
    11. 

  11.     if (size + read_pos_ > size_) { size = size_ - read_pos_; }
    12. 

  12.     memcpy(ptr, data_ + read_pos_, size);
    13. 

  13.     read_pos_ += size;
    14. 

  14.     return static_cast<ssize_t>(size);
    15. 

  15.   }
    16. 

  16. 

  17.   ssize_t write(const char *ptr, size_t size) override {
    18. 

  18.     response_.append(ptr, size);
    19. 

  19.     return static_cast<int>(size);
    20. 

  20.   }
    21. 

  21. 

  22.   ssize_t write(const char *ptr) { return write(ptr, strlen(ptr)); }
    23. 

  23. 

  24.   ssize_t write(const std::string &s) { return write(s.data(), s.size()); }
    25. 

  25. 

  26.   bool is_readable() const override { return true; }
    27. 

  27. 

  28.   bool wait_readable() const override { return true; }
    29. 

  29. 

  30.   bool wait_writable() const override { return true; }
    31. 

  31. 

  32.   void get_remote_ip_and_port(std::string &ip, int &port) const override {
    33. 

  33.     ip = "127.0.0.1";
    34. 

  34.     port = 8080;
    35. 

  35.   }
    36. 

  36. 

  37.   void get_local_ip_and_port(std::string &ip, int &port) const override {
    38. 

  38.     ip = "127.0.0.1";
    39. 

  39.     port = 8080;
    40. 

  40.   }
    41. 

  41. 

  42.   socket_t socket() const override { return 0; }
    43. 

  43. 

  44.   time_t duration() const override { return 0; };
    45. 

  45. 

  46. private:
    47. 

  47.   const uint8_t *data_;
    48. 

  48.   size_t size_;
    49. 

  49.   size_t read_pos_;
    50. 

  50.   std::string response_;
    51. 

  51. };
    52. 

  52. 

  53. class FuzzableServer : public httplib::Server {
    54. 

  54. public:
    55. 

  55.   void ProcessFuzzedRequest(FuzzedStream &stream) {
    56. 

  56.     bool connection_close = false;
    57. 

  57.     process_request(stream,
    58. 

  58.                     /*remote_addr=*/"",
    59. 

  59.                     /*remote_port =*/0,
    60. 

  60.                     /*local_addr=*/"",
    61. 

  61.                     /*local_port =*/0,
    62. 

  62.                     /*last_connection=*/false, connection_close, nullptr);
    63. 

  63.   }
    64. 

  64. };
    65. 

  65. 

  66. static FuzzableServer g_server;
    67. 

  67. 

  68. extern "C" int LLVMFuzzerInitialize(int * /*argc*/, char *** /*argv*/) {
    69. 

  69.   g_server.Get(R"(.*)",
    70. 

  70.                [&](const httplib::Request & /*req*/, httplib::Response &res) {
    71. 

  71.                  res.set_content("response content", "text/plain");
    72. 

  72.                });
    73. 

  73.   g_server.Post(R"(.*)",
    74. 

  74.                 [&](const httplib::Request & /*req*/, httplib::Response &res) {
    75. 

  75.                   res.set_content("response content", "text/plain");
    76. 

  76.                 });
    77. 

  77.   g_server.Put(R"(.*)",
    78. 

  78.                [&](const httplib::Request & /*req*/, httplib::Response &res) {
    79. 

  79.                  res.set_content("response content", "text/plain");
    80. 

  80.                });
    81. 

  81.   g_server.Patch(R"(.*)",
    82. 

  82.                  [&](const httplib::Request & /*req*/, httplib::Response &res) {
    83. 

  83.                    res.set_content("response content", "text/plain");
    84. 

  84.                  });
    85. 

  85.   g_server.Delete(
    86. 

  86.       R"(.*)", [&](const httplib::Request & /*req*/, httplib::Response &res) {
    87. 

  87.         res.set_content("response content", "text/plain");
    88. 

  88.       });
    89. 

  89.   g_server.Options(
    90. 

  90.       R"(.*)", [&](const httplib::Request & /*req*/, httplib::Response &res) {
    91. 

  91.         res.set_content("response content", "text/plain");
    92. 

  92.       });
    93. 

  93.   return 0;
    94. 

  94. }
    95. 

  95. 

  96. extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
    97. 

  97.   FuzzedStream stream{data, size};
    98. 

  98.   g_server.ProcessFuzzedRequest(stream);
    99. 

  99.   return 0;
    100. 

  100. }
    101.