1 /*
2 * Copyright (c) 2022 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "setshownumber_fuzzer.h"
17
18 #include <cstddef>
19 #include <cstdint>
20 #include <string_ex.h>
21 #include <thread>
22
23 #define private public
24 #include "addcoreservicetoken_fuzzer.h"
25 #include "core_service.h"
26 #include "napi_util.h"
27 #include "system_ability_definition.h"
28 #include "unistd.h"
29
30 using namespace OHOS::Telephony;
31 namespace OHOS {
32 static bool g_isInited = false;
33 constexpr int32_t SLOT_NUM = 2;
34 constexpr int32_t SLEEP_TIME_SECONDS = 10;
35
IsServiceInited()36 bool IsServiceInited()
37 {
38 if (!g_isInited) {
39 auto onStart = [] { DelayedSingleton<CoreService>::GetInstance()->OnStart(); };
40 std::thread startThread(onStart);
41 startThread.join();
42
43 sleep(SLEEP_TIME_SECONDS);
44 if (DelayedSingleton<CoreService>::GetInstance()->GetServiceRunningState() ==
45 static_cast<int32_t>(ServiceRunningState::STATE_RUNNING)) {
46 g_isInited = true;
47 }
48 }
49 return g_isInited;
50 }
51
OnRemoteRequest(const uint8_t * data,size_t size)52 void OnRemoteRequest(const uint8_t *data, size_t size)
53 {
54 if (!IsServiceInited()) {
55 return;
56 }
57
58 MessageParcel dataMessageParcel;
59 if (!dataMessageParcel.WriteInterfaceToken(CoreServiceStub::GetDescriptor())) {
60 return;
61 }
62 size_t dataSize = size - sizeof(uint32_t);
63 dataMessageParcel.WriteBuffer(data + sizeof(uint32_t), dataSize);
64 dataMessageParcel.RewindRead(0);
65 uint32_t code = static_cast<uint32_t>(size);
66 MessageParcel reply;
67 MessageOption option;
68 DelayedSingleton<CoreService>::GetInstance()->OnRemoteRequest(code, dataMessageParcel, reply, option);
69 }
70
GetShowNumber(const uint8_t * data,size_t size)71 void GetShowNumber(const uint8_t *data, size_t size)
72 {
73 if (!IsServiceInited()) {
74 return;
75 }
76
77 int32_t slotId = static_cast<int32_t>(size % SLOT_NUM);
78 MessageParcel dataMessageParcel;
79 dataMessageParcel.WriteInt32(slotId);
80 size_t dataSize = size - sizeof(int32_t);
81 dataMessageParcel.WriteBuffer(data + sizeof(int32_t), dataSize);
82 dataMessageParcel.RewindRead(0);
83 MessageParcel reply;
84 DelayedSingleton<CoreService>::GetInstance()->OnGetShowNumber(dataMessageParcel, reply);
85 }
86
GetSlotId(const uint8_t * data,size_t size)87 void GetSlotId(const uint8_t *data, size_t size)
88 {
89 if (!IsServiceInited()) {
90 return;
91 }
92
93 int32_t slotId = static_cast<int32_t>(size % SLOT_NUM);
94 MessageParcel dataMessageParcel;
95 dataMessageParcel.WriteInt32(slotId);
96 size_t dataSize = size - sizeof(int32_t);
97 dataMessageParcel.WriteBuffer(data + sizeof(int32_t), dataSize);
98 dataMessageParcel.RewindRead(0);
99 MessageParcel reply;
100 DelayedSingleton<CoreService>::GetInstance()->OnGetSlotId(dataMessageParcel, reply);
101 }
102
GetSimId(const uint8_t * data,size_t size)103 void GetSimId(const uint8_t *data, size_t size)
104 {
105 if (!IsServiceInited()) {
106 return;
107 }
108
109 int32_t slotId = static_cast<int32_t>(size % SLOT_NUM);
110 MessageParcel dataMessageParcel;
111 dataMessageParcel.WriteInt32(slotId);
112 size_t dataSize = size - sizeof(int32_t);
113 dataMessageParcel.WriteBuffer(data + sizeof(int32_t), dataSize);
114 dataMessageParcel.RewindRead(0);
115 MessageParcel reply;
116 DelayedSingleton<CoreService>::GetInstance()->OnGetSimId(dataMessageParcel, reply);
117 }
118
GetLocaleFromDefaultSim(const uint8_t * data,size_t size)119 void GetLocaleFromDefaultSim(const uint8_t *data, size_t size)
120 {
121 if (!IsServiceInited()) {
122 return;
123 }
124
125 MessageParcel dataMessageParcel;
126 dataMessageParcel.WriteBuffer(data, size);
127 dataMessageParcel.RewindRead(0);
128 MessageParcel reply;
129 DelayedSingleton<CoreService>::GetInstance()->OnGetLocaleFromDefaultSim(dataMessageParcel, reply);
130 }
131
SetShowNumber(const uint8_t * data,size_t size)132 void SetShowNumber(const uint8_t *data, size_t size)
133 {
134 if (!IsServiceInited()) {
135 return;
136 }
137
138 int32_t slotId = static_cast<int32_t>(size % SLOT_NUM);
139 std::string number(reinterpret_cast<const char *>(data), size);
140 auto numberU16 = Str8ToStr16(number);
141 MessageParcel dataMessageParcel;
142 dataMessageParcel.WriteInt32(slotId);
143 dataMessageParcel.WriteString16(numberU16);
144 dataMessageParcel.RewindRead(0);
145 MessageParcel reply;
146 DelayedSingleton<CoreService>::GetInstance()->OnSetShowNumber(dataMessageParcel, reply);
147 }
148
DoSomethingInterestingWithMyAPI(const uint8_t * data,size_t size)149 void DoSomethingInterestingWithMyAPI(const uint8_t *data, size_t size)
150 {
151 if (data == nullptr || size == 0) {
152 return;
153 }
154
155 OnRemoteRequest(data, size);
156 GetShowNumber(data, size);
157 GetSlotId(data, size);
158 GetSimId(data, size);
159 GetLocaleFromDefaultSim(data, size);
160 SetShowNumber(data, size);
161 return;
162 }
163 } // namespace OHOS
164
165 /* Fuzzer entry point */
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)166 extern "C" int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size)
167 {
168 OHOS::AddCoreServiceTokenFuzzer token;
169 /* Run your code on data */
170 OHOS::DoSomethingInterestingWithMyAPI(data, size);
171 return 0;
172 }
173