Home Explore Help
Sign In
cpp
/
cpp-httplib
mirror of https://github.com/tazdij/cpp-httplib.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 27d128bbb4
Branches Tags
cpp-httplib
/
test
/
fuzzing
/
server_fuzzer.cc

server_fuzzer.cc 2.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. #include <httplib.h>
    2. 

  2. #include <memory>
    3. 

  3. 

  4. class FuzzedStream : public httplib::Stream {
    5. 

  5. public:
    6. 

  6.   FuzzedStream(const uint8_t *data, size_t size)
    7. 

  7.       : data_(data), size_(size), read_pos_(0) {}
    8. 

  8. 

  9.   ssize_t read(char *ptr, size_t size) override {
    10. 

  10.     if (size + read_pos_ > size_) { size = size_ - read_pos_; }
    11. 

  11.     memcpy(ptr, data_ + read_pos_, size);
    12. 

  12.     read_pos_ += size;
    13. 

  13.     return static_cast<ssize_t>(size);
    14. 

  14.   }
    15. 

  15. 

  16.   ssize_t write(const char *ptr, size_t size) override {
    17. 

  17.     response_.append(ptr, size);
    18. 

  18.     return static_cast<int>(size);
    19. 

  19.   }
    20. 

  20. 

  21.   ssize_t write(const char *ptr) { return write(ptr, strlen(ptr)); }
    22. 

  22. 

  23.   ssize_t write(const std::string &s) { return write(s.data(), s.size()); }
    24. 

  24. 

  25.   std::string get_remote_addr() const { return ""; }
    26. 

  26. 

  27.   bool is_readable() const override { return true; }
    28. 

  28. 

  29.   bool is_writable() const override { return true; }
    30. 

  30. 

  31.   void get_remote_ip_and_port(std::string &ip, int &port) const override {
    32. 

  32.     ip = "127.0.0.1";
    33. 

  33.     port = 8080;
    34. 

  34.   }
    35. 

  35. 

  36.   socket_t socket() const override { return 0; }
    37. 

  37. 

  38. private:
    39. 

  39.   const uint8_t *data_;
    40. 

  40.   size_t size_;
    41. 

  41.   size_t read_pos_;
    42. 

  42.   std::string response_;
    43. 

  43. };
    44. 

  44. 

  45. class FuzzableServer : public httplib::Server {
    46. 

  46. public:
    47. 

  47.   void ProcessFuzzedRequest(FuzzedStream &stream) {
    48. 

  48.     bool connection_close = false;
    49. 

  49.     process_request(stream, /*last_connection=*/false, connection_close,
    50. 

  50.                     nullptr);
    51. 

  51.   }
    52. 

  52. };
    53. 

  53. 

  54. static FuzzableServer g_server;
    55. 

  55. 

  56. extern "C" int LLVMFuzzerInitialize(int * /*argc*/, char *** /*argv*/) {
    57. 

  57.   g_server.Get(R"(.*)",
    58. 

  58.                [&](const httplib::Request & /*req*/, httplib::Response &res) {
    59. 

  59.                  res.set_content("response content", "text/plain");
    60. 

  60.                });
    61. 

  61.   g_server.Post(R"(.*)",
    62. 

  62.                 [&](const httplib::Request & /*req*/, httplib::Response &res) {
    63. 

  63.                   res.set_content("response content", "text/plain");
    64. 

  64.                 });
    65. 

  65.   g_server.Put(R"(.*)",
    66. 

  66.                [&](const httplib::Request & /*req*/, httplib::Response &res) {
    67. 

  67.                  res.set_content("response content", "text/plain");
    68. 

  68.                });
    69. 

  69.   g_server.Patch(R"(.*)",
    70. 

  70.                  [&](const httplib::Request & /*req*/, httplib::Response &res) {
    71. 

  71.                    res.set_content("response content", "text/plain");
    72. 

  72.                  });
    73. 

  73.   g_server.Delete(
    74. 

  74.       R"(.*)", [&](const httplib::Request & /*req*/, httplib::Response &res) {
    75. 

  75.         res.set_content("response content", "text/plain");
    76. 

  76.       });
    77. 

  77.   g_server.Options(
    78. 

  78.       R"(.*)", [&](const httplib::Request & /*req*/, httplib::Response &res) {
    79. 

  79.         res.set_content("response content", "text/plain");
    80. 

  80.       });
    81. 

  81.   return 0;
    82. 

  82. }
    83. 

  83. 

  84. extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
    85. 

  85.   FuzzedStream stream{data, size};
    86. 

  86.   g_server.ProcessFuzzedRequest(stream);
    87. 

  87.   return 0;
    88. 

  88. }
    89.