1c29fa5a6Sopenharmony_ci/* 2c29fa5a6Sopenharmony_ci * Copyright (c) 2022 Huawei Device Co., Ltd. 3c29fa5a6Sopenharmony_ci * Licensed under the Apache License, Version 2.0 (the "License"); 4c29fa5a6Sopenharmony_ci * you may not use this file except in compliance with the License. 5c29fa5a6Sopenharmony_ci * You may obtain a copy of the License at 6c29fa5a6Sopenharmony_ci * 7c29fa5a6Sopenharmony_ci * http://www.apache.org/licenses/LICENSE-2.0 8c29fa5a6Sopenharmony_ci * 9c29fa5a6Sopenharmony_ci * Unless required by applicable law or agreed to in writing, software 10c29fa5a6Sopenharmony_ci * distributed under the License is distributed on an "AS IS" BASIS, 11c29fa5a6Sopenharmony_ci * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12c29fa5a6Sopenharmony_ci * See the License for the specific language governing permissions and 13c29fa5a6Sopenharmony_ci * limitations under the License. 14c29fa5a6Sopenharmony_ci */ 15c29fa5a6Sopenharmony_ci 16c29fa5a6Sopenharmony_ci#include "pointerstyle_fuzzer.h" 17c29fa5a6Sopenharmony_ci 18c29fa5a6Sopenharmony_ci#include "ipc_skeleton.h" 19c29fa5a6Sopenharmony_ci#include "securec.h" 20c29fa5a6Sopenharmony_ci 21c29fa5a6Sopenharmony_ci#include "input_manager.h" 22c29fa5a6Sopenharmony_ci 23c29fa5a6Sopenharmony_cinamespace OHOS { 24c29fa5a6Sopenharmony_cinamespace MMI { 25c29fa5a6Sopenharmony_citemplate <class T> size_t GetObject(const uint8_t *data, size_t size, T &object) 26c29fa5a6Sopenharmony_ci{ 27c29fa5a6Sopenharmony_ci size_t objectSize = sizeof(object); 28c29fa5a6Sopenharmony_ci if (objectSize > size) { 29c29fa5a6Sopenharmony_ci return 0; 30c29fa5a6Sopenharmony_ci } 31c29fa5a6Sopenharmony_ci errno_t ret = memcpy_s(&object, objectSize, data, objectSize); 32c29fa5a6Sopenharmony_ci if (ret != EOK) { 33c29fa5a6Sopenharmony_ci return 0; 34c29fa5a6Sopenharmony_ci } 35c29fa5a6Sopenharmony_ci return objectSize; 36c29fa5a6Sopenharmony_ci} 37c29fa5a6Sopenharmony_ci 38c29fa5a6Sopenharmony_cisize_t GetString(const uint8_t *data, size_t size, char *object, size_t objectSize) 39c29fa5a6Sopenharmony_ci{ 40c29fa5a6Sopenharmony_ci if (objectSize > size) { 41c29fa5a6Sopenharmony_ci return 0; 42c29fa5a6Sopenharmony_ci } 43c29fa5a6Sopenharmony_ci errno_t ret = memcpy_s(&object, objectSize, data, objectSize); 44c29fa5a6Sopenharmony_ci if (ret != EOK) { 45c29fa5a6Sopenharmony_ci return 0; 46c29fa5a6Sopenharmony_ci } 47c29fa5a6Sopenharmony_ci return objectSize; 48c29fa5a6Sopenharmony_ci} 49c29fa5a6Sopenharmony_ci 50c29fa5a6Sopenharmony_civoid UpdateHotAreas(const uint8_t *data, size_t size, WindowInfo &windowInfo) 51c29fa5a6Sopenharmony_ci{ 52c29fa5a6Sopenharmony_ci size_t startPos = 0; 53c29fa5a6Sopenharmony_ci std::vector<Rect> defaultHotAreasInfo; 54c29fa5a6Sopenharmony_ci std::vector<Rect> pointerHotAreasInfo; 55c29fa5a6Sopenharmony_ci for (size_t j = 0; j < WindowInfo::MAX_HOTAREA_COUNT; ++j) { 56c29fa5a6Sopenharmony_ci Rect defaultRect; 57c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, defaultRect.height); 58c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, defaultRect.width); 59c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, defaultRect.x); 60c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, defaultRect.y); 61c29fa5a6Sopenharmony_ci defaultHotAreasInfo.push_back(defaultRect); 62c29fa5a6Sopenharmony_ci Rect pointerRect; 63c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, pointerRect.height); 64c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, pointerRect.width); 65c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, pointerRect.x); 66c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, pointerRect.y); 67c29fa5a6Sopenharmony_ci pointerHotAreasInfo.push_back(pointerRect); 68c29fa5a6Sopenharmony_ci } 69c29fa5a6Sopenharmony_ci windowInfo.defaultHotAreas = defaultHotAreasInfo; 70c29fa5a6Sopenharmony_ci windowInfo.pointerHotAreas = pointerHotAreasInfo; 71c29fa5a6Sopenharmony_ci} 72c29fa5a6Sopenharmony_ci 73c29fa5a6Sopenharmony_civoid UpdateDisplayInfo(const uint8_t *data, size_t size, int32_t windowId) 74c29fa5a6Sopenharmony_ci{ 75c29fa5a6Sopenharmony_ci DisplayGroupInfo displayGroupInfo; 76c29fa5a6Sopenharmony_ci size_t startPos = 0; 77c29fa5a6Sopenharmony_ci size_t stringSize = 4; 78c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayGroupInfo.width); 79c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayGroupInfo.height); 80c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayGroupInfo.focusWindowId); 81c29fa5a6Sopenharmony_ci std::vector<WindowInfo> windowsInfo; 82c29fa5a6Sopenharmony_ci std::vector<DisplayInfo> displaysInfo; 83c29fa5a6Sopenharmony_ci WindowInfo windowInfo; 84c29fa5a6Sopenharmony_ci windowInfo.id = windowId; 85c29fa5a6Sopenharmony_ci windowInfo.pid = IPCSkeleton::GetCallingPid(); 86c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowInfo.uid); 87c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowInfo.area.x); 88c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowInfo.area.y); 89c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowInfo.area.width); 90c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowInfo.area.height); 91c29fa5a6Sopenharmony_ci UpdateHotAreas(data, size, windowInfo); 92c29fa5a6Sopenharmony_ci windowsInfo.push_back(windowInfo); 93c29fa5a6Sopenharmony_ci 94c29fa5a6Sopenharmony_ci DisplayInfo displayInfo; 95c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.id); 96c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.x); 97c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.y); 98c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.width); 99c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.height); 100c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, displayInfo.dpi); 101c29fa5a6Sopenharmony_ci char name[] = "name"; 102c29fa5a6Sopenharmony_ci startPos += GetString(data + startPos, size - startPos, name, stringSize); 103c29fa5a6Sopenharmony_ci displayInfo.name = name; 104c29fa5a6Sopenharmony_ci char uniq[] = "uniq"; 105c29fa5a6Sopenharmony_ci GetString(data + startPos, size - startPos, uniq, stringSize); 106c29fa5a6Sopenharmony_ci displayInfo.uniq = uniq; 107c29fa5a6Sopenharmony_ci displaysInfo.push_back(displayInfo); 108c29fa5a6Sopenharmony_ci displayGroupInfo.windowsInfo = windowsInfo; 109c29fa5a6Sopenharmony_ci displayGroupInfo.displaysInfo = displaysInfo; 110c29fa5a6Sopenharmony_ci InputManager::GetInstance()->UpdateDisplayInfo(displayGroupInfo); 111c29fa5a6Sopenharmony_ci} 112c29fa5a6Sopenharmony_ci 113c29fa5a6Sopenharmony_civoid PointerStyleFuzzTest(const uint8_t *data, size_t size) 114c29fa5a6Sopenharmony_ci{ 115c29fa5a6Sopenharmony_ci int32_t windowId; 116c29fa5a6Sopenharmony_ci size_t startPos = 0; 117c29fa5a6Sopenharmony_ci startPos += GetObject<int32_t>(data + startPos, size - startPos, windowId); 118c29fa5a6Sopenharmony_ci UpdateDisplayInfo(data, size, windowId); 119c29fa5a6Sopenharmony_ci PointerStyle pointerStyle; 120c29fa5a6Sopenharmony_ci GetObject<int32_t>(data + startPos, size - startPos, pointerStyle.id); 121c29fa5a6Sopenharmony_ci InputManager::GetInstance()->SetPointerStyle(windowId, pointerStyle); 122c29fa5a6Sopenharmony_ci InputManager::GetInstance()->GetPointerStyle(windowId, pointerStyle); 123c29fa5a6Sopenharmony_ci} 124c29fa5a6Sopenharmony_ci} // MMI 125c29fa5a6Sopenharmony_ci} // OHOS 126c29fa5a6Sopenharmony_ci 127c29fa5a6Sopenharmony_ci/* Fuzzer entry point */ 128c29fa5a6Sopenharmony_ciextern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) 129c29fa5a6Sopenharmony_ci{ 130c29fa5a6Sopenharmony_ci /* Run your code on data */ 131c29fa5a6Sopenharmony_ci OHOS::MMI::PointerStyleFuzzTest(data, size); 132c29fa5a6Sopenharmony_ci return 0; 133c29fa5a6Sopenharmony_ci}