From 65e5824d3a46c468530aba5de4c11b6c8de4cede Mon Sep 17 00:00:00 2001 From: mtklein Date: Wed, 13 Jan 2016 12:57:57 -0800 Subject: Add new fuzz binary. This is designed to have short startup time, for maximum fuzzing throughput. BUG=skia: GOLD_TRYBOT_URL= https://gold.skia.org/search2?unt=true&query=source_type%3Dgm&master=false&issue=1589563002 Review URL: https://codereview.chromium.org/1589563002 --- fuzz/Fuzz.h | 43 +++++++++++++++++++++++++++++++++++++++++++ fuzz/FuzzPaeth.cpp | 40 ++++++++++++++++++++++++++++++++++++++++ fuzz/fuzz.cpp | 40 ++++++++++++++++++++++++++++++++++++++++ 3 files changed, 123 insertions(+) create mode 100644 fuzz/Fuzz.h create mode 100644 fuzz/FuzzPaeth.cpp create mode 100644 fuzz/fuzz.cpp (limited to 'fuzz') diff --git a/fuzz/Fuzz.h b/fuzz/Fuzz.h new file mode 100644 index 0000000000..cf5bcb9ead --- /dev/null +++ b/fuzz/Fuzz.h @@ -0,0 +1,43 @@ +/* + * Copyright 2016 Google Inc. + * + * Use of this source code is governed by a BSD-style license that can be + * found in the LICENSE file. + */ + +#ifndef Fuzz_DEFINED +#define Fuzz_DEFINED + +#include "SkData.h" +#include "SkTRegistry.h" +#include "SkTypes.h" +#include + +class Fuzz : SkNoncopyable { +public: + explicit Fuzz(SkData*); + + uint32_t nextU(); + float nextF(); + + // These return a value in [min, max). + uint32_t nextURange(uint32_t min, uint32_t max); + float nextFRange(float min, float max); + +private: + SkAutoTUnref fBytes; +}; + +struct Fuzzable { + const char* name; + void (*fn)(Fuzz*); +}; + +#define DEF_FUZZ(name, f) \ + static void fuzz_##name(Fuzz*); \ + SkTRegistry register_##name({#name, fuzz_##name}); \ + static void fuzz_##name(Fuzz* f) + +#define ASSERT(cond) do { if (!(cond)) abort(); } while(false) + +#endif//Fuzz_DEFINED diff --git a/fuzz/FuzzPaeth.cpp b/fuzz/FuzzPaeth.cpp new file mode 100644 index 0000000000..aa7deb09e2 --- /dev/null +++ b/fuzz/FuzzPaeth.cpp @@ -0,0 +1,40 @@ +/* + * Copyright 2016 Google Inc. + * + * Use of this source code is governed by a BSD-style license that can be + * found in the LICENSE file. + */ + +#include "Fuzz.h" + +// This really is just an example Fuzz*.cpp file. +// It tests that two different ways of calculating the Paeth predictor function are equivalent. + +static uint8_t paeth_std(uint8_t a, uint8_t b, uint8_t c) { + int p = a+b-c; + + int pa = abs(p-a), + pb = abs(p-b), + pc = abs(p-c); + + if (pb < pa) { pa = pb; a = b; } + if (pc < pa) { a = c; } + return a; +} + +static uint8_t paeth_alt(uint8_t a, uint8_t b, uint8_t c) { + int min = SkTMin(a,b), + max = SkTMax(a,b); + int delta = (max-min)/3; + + if (c <= min+delta) return max; + if (c >= max-delta) return min; + return c; +} + +DEF_FUZZ(Paeth, fuzz) { + int a = fuzz->nextU(), + b = fuzz->nextU(), + c = fuzz->nextU(); + ASSERT(paeth_alt(a,b,c) == paeth_std(a,b,c)); +} diff --git a/fuzz/fuzz.cpp b/fuzz/fuzz.cpp new file mode 100644 index 0000000000..6e31790951 --- /dev/null +++ b/fuzz/fuzz.cpp @@ -0,0 +1,40 @@ +/* + * Copyright 2016 Google Inc. + * + * Use of this source code is governed by a BSD-style license that can be + * found in the LICENSE file. + */ + +#include "Fuzz.h" +#include "SkCommandLineFlags.h" + +DEFINE_string2(match, m, "", "The usual match patterns, applied to name."); +DEFINE_string2(bytes, b, "", "Path to file containing fuzzed bytes."); + +int main(int argc, char** argv) { + SkCommandLineFlags::Parse(argc, argv); + SkAutoTUnref bytes; + if (!FLAGS_bytes.isEmpty()) { + bytes.reset(SkData::NewFromFileName(FLAGS_bytes[0])); + } + + for (auto r = SkTRegistry::Head(); r; r = r->next()) { + auto fuzzable = r->factory(); + if (!SkCommandLineFlags::ShouldSkip(FLAGS_match, fuzzable.name)) { + SkDebugf("Running %s...\n", fuzzable.name); + Fuzz fuzz(bytes); + fuzzable.fn(&fuzz); + } + } + return 0; +} + + +Fuzz::Fuzz(SkData* bytes) : fBytes(SkSafeRef(bytes)) {} + +// These methods are all TODO(kjlubick). +uint32_t Fuzz::nextU() { return 0; } +float Fuzz::nextF() { return 0.0f; } +uint32_t Fuzz::nextURange(uint32_t min, uint32_t max) { return min; } +float Fuzz::nextFRange(float min, float max) { return min; } + -- cgit v1.2.3