Home Explore Help
Sign In
cpp
/
love2d.megasource
mirror of https://github.com/love2d/megasource
2
0
Fork 0
Files Issues 0 Wiki
Branch: main
Branches Tags
love2d.megasour...
/
libs
/
harfbuzz
/
test
/
fuzzing
/
hb-shape-fuzzer.cc

hb-shape-fuzzer.cc 2.1 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. #include "hb-fuzzer.hh"
    2. 

  2. 

  3. #include <hb-ot.h>
    4. 

  4. #include <string.h>
    5. 

  5. 

  6. #include <stdlib.h>
    7. 

  7. 

  8. #define TEST_OT_FACE_NO_MAIN 1
    9. 

  9. #include "../api/test-ot-face.c"
    10. 

  10. #undef TEST_OT_FACE_NO_MAIN
    11. 

  11. 

  12. extern "C" int LLVMFuzzerTestOneInput (const uint8_t *data, size_t size)
    13. 

  13. {
    14. 

  14.   alloc_state = _fuzzing_alloc_state (data, size);
    15. 

  15. 

  16.   hb_blob_t *blob = hb_blob_create ((const char *)data, size,
    17. 

  17. 				    HB_MEMORY_MODE_READONLY, nullptr, nullptr);
    18. 

  18.   hb_face_t *face = hb_face_create (blob, 0);
    19. 

  19.   hb_font_t *font = hb_font_create (face);
    20. 

  20.   hb_ot_font_set_funcs (font);
    21. 

  21.   hb_font_set_scale (font, 12, 12);
    22. 

  22. 

  23.   unsigned num_coords = 0;
    24. 

  24.   if (size) num_coords = data[size - 1];
    25. 

  25.   num_coords = hb_ot_var_get_axis_count (face) > num_coords ? num_coords : hb_ot_var_get_axis_count (face);
    26. 

  26.   int *coords = (int *) calloc (num_coords, sizeof (int));
    27. 

  27.   if (size > num_coords + 1)
    28. 

  28.     for (unsigned i = 0; i < num_coords; ++i)
    29. 

  29.       coords[i] = ((int) data[size - num_coords + i - 1] - 128) * 10;
    30. 

  30.   hb_font_set_var_coords_normalized (font, coords, num_coords);
    31. 

  31.   free (coords);
    32. 

  32. 

  33.   {
    34. 

  34.     const char text[] = "ABCDEXYZ123@_%&)*$!";
    35. 

  35.     hb_buffer_t *buffer = hb_buffer_create ();
    36. 

  36.     hb_buffer_set_flags (buffer, (hb_buffer_flags_t) (HB_BUFFER_FLAG_VERIFY /* | HB_BUFFER_FLAG_PRODUCE_UNSAFE_TO_CONCAT */));
    37. 

  37.     hb_buffer_add_utf8 (buffer, text, -1, 0, -1);
    38. 

  38.     hb_buffer_guess_segment_properties (buffer);
    39. 

  39.     hb_shape (font, buffer, nullptr, 0);
    40. 

  40.     hb_buffer_destroy (buffer);
    41. 

  41.   }
    42. 

  42. 

  43.   uint32_t text32[16] = {0};
    44. 

  44.   unsigned int len = sizeof (text32);
    45. 

  45.   if (size < len)
    46. 

  46.     len = size;
    47. 

  47.   if (len)
    48. 

  48.     memcpy (text32, data + size - len, len);
    49. 

  49. 

  50.   /* Misc calls on font. */
    51. 

  51.   text32[10] = test_font (font, text32[15]) % 256;
    52. 

  52. 

  53.   hb_buffer_t *buffer = hb_buffer_create ();
    54. 

  54.  // hb_buffer_set_flags (buffer, (hb_buffer_flags_t) (HB_BUFFER_FLAG_VERIFY | HB_BUFFER_FLAG_PRODUCE_UNSAFE_TO_CONCAT));
    55. 

  55.   hb_buffer_add_utf32 (buffer, text32, sizeof (text32) / sizeof (text32[0]), 0, -1);
    56. 

  56.   hb_buffer_guess_segment_properties (buffer);
    57. 

  57.   hb_shape (font, buffer, nullptr, 0);
    58. 

  58.   hb_buffer_destroy (buffer);
    59. 

  59. 

  60.   hb_font_destroy (font);
    61. 

  61.   hb_face_destroy (face);
    62. 

  62.   hb_blob_destroy (blob);
    63. 

  63.   return 0;
    64. 

  64. }
    65.