1/*
2 * Copyright (c) 2024 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 *     http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16#include "sendresulttoability_fuzzer.h"
17
18#include <cstddef>
19#include <cstdint>
20
21#include "ability_manager_client.h"
22#include "ability_record.h"
23
24using namespace OHOS::AAFwk;
25using namespace OHOS::AppExecFwk;
26
27namespace OHOS {
28namespace {
29constexpr size_t FOO_MAX_LEN = 1024;
30constexpr size_t U32_AT_SIZE = 4;
31}
32
33uint32_t GetU32Data(const char* ptr)
34{
35    // convert fuzz input data to an integer
36    return (ptr[0] << 24) | (ptr[1] << 16) | (ptr[2] << 8) | ptr[3];
37}
38
39bool DoSomethingInterestingWithMyAPI(const char* data, size_t size)
40{
41    int intParam = static_cast<int>(GetU32Data(data));
42    auto abilitymgr = AbilityManagerClient::GetInstance();
43
44    // fuzz for want
45    Parcel wantParcel;
46    Want* resultWant = nullptr;
47    if (wantParcel.WriteBuffer(data, size)) {
48        resultWant = Want::Unmarshalling(wantParcel);
49        if (!resultWant) {
50            return false;
51        }
52    }
53    abilitymgr->SendResultToAbility(intParam, intParam, *resultWant);
54    if (resultWant) {
55        delete resultWant;
56        resultWant = nullptr;
57    }
58    return true;
59}
60}
61
62/* Fuzzer entry point */
63extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
64{
65    /* Run your code on data */
66    if (data == nullptr) {
67        std::cout << "invalid data" << std::endl;
68        return 0;
69    }
70
71    /* Validate the length of size */
72    if (size > OHOS::FOO_MAX_LEN || size < OHOS::U32_AT_SIZE) {
73        return 0;
74    }
75
76    char* ch = (char*)malloc(size + 1);
77    if (ch == nullptr) {
78        std::cout << "malloc failed." << std::endl;
79        return 0;
80    }
81
82    (void)memset_s(ch, size + 1, 0x00, size + 1);
83    if (memcpy_s(ch, size, data, size) != EOK) {
84        std::cout << "copy failed." << std::endl;
85        free(ch);
86        ch = nullptr;
87        return 0;
88    }
89
90    OHOS::DoSomethingInterestingWithMyAPI(ch, size);
91    free(ch);
92    ch = nullptr;
93    return 0;
94}
95
96