1e5d0e473Sopenharmony_ci/* 2e5d0e473Sopenharmony_ci * Copyright (c) 2022 Huawei Device Co., Ltd. 3e5d0e473Sopenharmony_ci * Licensed under the Apache License, Version 2.0 (the "License"); 4e5d0e473Sopenharmony_ci * you may not use this file except in compliance with the License. 5e5d0e473Sopenharmony_ci * You may obtain a copy of the License at 6e5d0e473Sopenharmony_ci * 7e5d0e473Sopenharmony_ci * http://www.apache.org/licenses/LICENSE-2.0 8e5d0e473Sopenharmony_ci * 9e5d0e473Sopenharmony_ci * Unless required by applicable law or agreed to in writing, software 10e5d0e473Sopenharmony_ci * distributed under the License is distributed on an "AS IS" BASIS, 11e5d0e473Sopenharmony_ci * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12e5d0e473Sopenharmony_ci * See the License for the specific language governing permissions and 13e5d0e473Sopenharmony_ci * limitations under the License. 14e5d0e473Sopenharmony_ci */ 15e5d0e473Sopenharmony_ci 16e5d0e473Sopenharmony_ci#include "sendmessagedata_fuzzer.h" 17e5d0e473Sopenharmony_ci 18e5d0e473Sopenharmony_ci#define private public 19e5d0e473Sopenharmony_ci#include "addsmstoken_fuzzer.h" 20e5d0e473Sopenharmony_ci#include "core_manager_inner.h" 21e5d0e473Sopenharmony_ci#include "delivery_short_message_callback_stub.h" 22e5d0e473Sopenharmony_ci#include "send_short_message_callback_stub.h" 23e5d0e473Sopenharmony_ci#include "sms_service.h" 24e5d0e473Sopenharmony_ci 25e5d0e473Sopenharmony_ciusing namespace OHOS::Telephony; 26e5d0e473Sopenharmony_cinamespace OHOS { 27e5d0e473Sopenharmony_cistatic bool g_isInited = false; 28e5d0e473Sopenharmony_ciconstexpr int32_t SLOT_NUM = 2; 29e5d0e473Sopenharmony_cistatic int32_t MAX_PORT = 65535; 30e5d0e473Sopenharmony_ciconstexpr int32_t SLEEP_TIME_SECONDS = 2; 31e5d0e473Sopenharmony_ci 32e5d0e473Sopenharmony_cibool IsServiceInited() 33e5d0e473Sopenharmony_ci{ 34e5d0e473Sopenharmony_ci if (!g_isInited) { 35e5d0e473Sopenharmony_ci CoreManagerInner::GetInstance().isInitAllObj_ = true; 36e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::GetInstance()->registerToService_ = true; 37e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::GetInstance()->WaitCoreServiceToInit(); 38e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::GetInstance()->OnStart(); 39e5d0e473Sopenharmony_ci if (DelayedSingleton<SmsService>::GetInstance()->GetServiceRunningState() == 40e5d0e473Sopenharmony_ci static_cast<int32_t>(Telephony::ServiceRunningState::STATE_RUNNING)) { 41e5d0e473Sopenharmony_ci g_isInited = true; 42e5d0e473Sopenharmony_ci } 43e5d0e473Sopenharmony_ci } 44e5d0e473Sopenharmony_ci return g_isInited; 45e5d0e473Sopenharmony_ci} 46e5d0e473Sopenharmony_ci 47e5d0e473Sopenharmony_civoid SendSmsDataRequest(const uint8_t *data, size_t size) 48e5d0e473Sopenharmony_ci{ 49e5d0e473Sopenharmony_ci if (!IsServiceInited()) { 50e5d0e473Sopenharmony_ci return; 51e5d0e473Sopenharmony_ci } 52e5d0e473Sopenharmony_ci 53e5d0e473Sopenharmony_ci MessageParcel dataParcel; 54e5d0e473Sopenharmony_ci MessageParcel replyParcel; 55e5d0e473Sopenharmony_ci MessageOption option(MessageOption::TF_SYNC); 56e5d0e473Sopenharmony_ci 57e5d0e473Sopenharmony_ci int32_t slotId = static_cast<int32_t>(size % SLOT_NUM); 58e5d0e473Sopenharmony_ci auto desAddrU16 = Str8ToStr16("123456"); 59e5d0e473Sopenharmony_ci auto scAddrU16 = Str8ToStr16("123456"); 60e5d0e473Sopenharmony_ci uint16_t port = static_cast<uint16_t>(size % MAX_PORT); 61e5d0e473Sopenharmony_ci 62e5d0e473Sopenharmony_ci std::unique_ptr<SendShortMessageCallbackStub> sendCallback = std::make_unique<SendShortMessageCallbackStub>(); 63e5d0e473Sopenharmony_ci std::unique_ptr<DeliveryShortMessageCallbackStub> deliveryCallback = 64e5d0e473Sopenharmony_ci std::make_unique<DeliveryShortMessageCallbackStub>(); 65e5d0e473Sopenharmony_ci 66e5d0e473Sopenharmony_ci dataParcel.WriteInt32(slotId); 67e5d0e473Sopenharmony_ci dataParcel.WriteString16(desAddrU16); 68e5d0e473Sopenharmony_ci dataParcel.WriteString16(scAddrU16); 69e5d0e473Sopenharmony_ci dataParcel.WriteInt16(port); 70e5d0e473Sopenharmony_ci if (sendCallback != nullptr) { 71e5d0e473Sopenharmony_ci dataParcel.WriteRemoteObject(sendCallback.release()->AsObject().GetRefPtr()); 72e5d0e473Sopenharmony_ci } 73e5d0e473Sopenharmony_ci if (deliveryCallback != nullptr) { 74e5d0e473Sopenharmony_ci dataParcel.WriteRemoteObject(deliveryCallback.release()->AsObject().GetRefPtr()); 75e5d0e473Sopenharmony_ci } 76e5d0e473Sopenharmony_ci dataParcel.WriteInt16(size); 77e5d0e473Sopenharmony_ci dataParcel.WriteRawData(data, size); 78e5d0e473Sopenharmony_ci dataParcel.RewindRead(0); 79e5d0e473Sopenharmony_ci 80e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::GetInstance()->OnSendSmsDataRequest(dataParcel, replyParcel, option); 81e5d0e473Sopenharmony_ci} 82e5d0e473Sopenharmony_ci 83e5d0e473Sopenharmony_civoid GetAllSimMessages(const uint8_t *data, size_t size) 84e5d0e473Sopenharmony_ci{ 85e5d0e473Sopenharmony_ci if (!IsServiceInited()) { 86e5d0e473Sopenharmony_ci return; 87e5d0e473Sopenharmony_ci } 88e5d0e473Sopenharmony_ci 89e5d0e473Sopenharmony_ci MessageParcel dataParcel; 90e5d0e473Sopenharmony_ci MessageParcel replyParcel; 91e5d0e473Sopenharmony_ci MessageOption option(MessageOption::TF_SYNC); 92e5d0e473Sopenharmony_ci 93e5d0e473Sopenharmony_ci dataParcel.WriteBuffer(data, size); 94e5d0e473Sopenharmony_ci dataParcel.RewindRead(0); 95e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::GetInstance()->OnGetAllSimMessages(dataParcel, replyParcel, option); 96e5d0e473Sopenharmony_ci return; 97e5d0e473Sopenharmony_ci} 98e5d0e473Sopenharmony_ci 99e5d0e473Sopenharmony_civoid DoSomethingInterestingWithMyAPI(const uint8_t *data, size_t size) 100e5d0e473Sopenharmony_ci{ 101e5d0e473Sopenharmony_ci if (data == nullptr || size == 0) { 102e5d0e473Sopenharmony_ci return; 103e5d0e473Sopenharmony_ci } 104e5d0e473Sopenharmony_ci 105e5d0e473Sopenharmony_ci SendSmsDataRequest(data, size); 106e5d0e473Sopenharmony_ci GetAllSimMessages(data, size); 107e5d0e473Sopenharmony_ci DelayedSingleton<ImsSmsClient>::GetInstance()->UnInit(); 108e5d0e473Sopenharmony_ci DelayedSingleton<ImsSmsClient>::DestroyInstance(); 109e5d0e473Sopenharmony_ci sleep(SLEEP_TIME_SECONDS); 110e5d0e473Sopenharmony_ci DelayedSingleton<SmsService>::DestroyInstance(); 111e5d0e473Sopenharmony_ci} 112e5d0e473Sopenharmony_ci} // namespace OHOS 113e5d0e473Sopenharmony_ci 114e5d0e473Sopenharmony_ci/* Fuzzer entry point */ 115e5d0e473Sopenharmony_ciextern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) 116e5d0e473Sopenharmony_ci{ 117e5d0e473Sopenharmony_ci /* Run your code on data */ 118e5d0e473Sopenharmony_ci OHOS::AddSmsTokenFuzzer token; 119e5d0e473Sopenharmony_ci OHOS::DoSomethingInterestingWithMyAPI(data, size); 120e5d0e473Sopenharmony_ci return 0; 121e5d0e473Sopenharmony_ci} 122