1 /*
2 * Copyright (c) 2023 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include <fuzzer/FuzzedDataProvider.h>
17 #include "ecmascript/global_env.h"
18 #include "ecmascript/napi/include/jsnapi.h"
19 #include "promiseref_fuzzer.h"
20
21 using namespace panda;
22 using namespace panda::ecmascript;
23
24 namespace OHOS {
PromiseRefCatchFuzzTest(const uint8_t * data,size_t size)25 void PromiseRefCatchFuzzTest(const uint8_t* data, size_t size)
26 {
27 using FunctionCallback = Local<JSValueRef>(*)(JsiRuntimeCallInfo*);
28 FuzzedDataProvider fdp(data, size);
29 const int arkProp = fdp.ConsumeIntegral<int>();
30 RuntimeOption option;
31 option.SetLogLevel(common::LOG_LEVEL::ERROR);
32 option.SetArkProperties(arkProp);
33 EcmaVM *vm = JSNApi::CreateJSVM(option);
34 if (data == nullptr || size <= 0) {
35 LOG_ECMA(ERROR) << "illegal input!";
36 return;
37 }
38 Local<PromiseCapabilityRef> capability = PromiseCapabilityRef::New(vm);
39 Local<PromiseRef> promise = capability->GetPromise(vm);
40 FunctionCallback RejectCallback = nullptr;
41 Local<FunctionRef> reject = FunctionRef::New(vm, RejectCallback);
42 promise->Catch(vm, reject);
43 JSNApi::DestroyJSVM(vm);
44 }
45
PromiseRefThenFinallyFuzzTest(const uint8_t * data,size_t size)46 void PromiseRefThenFinallyFuzzTest(const uint8_t* data, size_t size)
47 {
48 using FunctionCallback = Local<JSValueRef>(*)(JsiRuntimeCallInfo*);
49 FuzzedDataProvider fdp(data, size);
50 const int arkProp = fdp.ConsumeIntegral<int>();
51 RuntimeOption option;
52 option.SetLogLevel(common::LOG_LEVEL::ERROR);
53 option.SetArkProperties(arkProp);
54 EcmaVM *vm = JSNApi::CreateJSVM(option);
55 if (data == nullptr || size <= 0) {
56 LOG_ECMA(ERROR) << "illegal input!";
57 return;
58 }
59 Local<PromiseCapabilityRef> capability = PromiseCapabilityRef::New(vm);
60 Local<PromiseRef> promise = capability->GetPromise(vm);
61 FunctionCallback RejectCallback = nullptr;
62 Local<FunctionRef> reject = FunctionRef::New(vm, RejectCallback);
63 promise->Finally(vm, reject);
64 promise->Then(vm, reject, reject);
65 JSNApi::DestroyJSVM(vm);
66 }
67
PromiseRefThenWithTwoParameterFuzzTest(const uint8_t * data,size_t size)68 void PromiseRefThenWithTwoParameterFuzzTest(const uint8_t* data, size_t size)
69 {
70 using FunctionCallback = Local<JSValueRef>(*)(JsiRuntimeCallInfo*);
71 FuzzedDataProvider fdp(data, size);
72 const int arkProp = fdp.ConsumeIntegral<int>();
73 RuntimeOption option;
74 option.SetLogLevel(common::LOG_LEVEL::ERROR);
75 option.SetArkProperties(arkProp);
76 EcmaVM *vm = JSNApi::CreateJSVM(option);
77 if (data == nullptr || size <= 0) {
78 LOG_ECMA(ERROR) << "illegal input!";
79 return;
80 }
81 Local<PromiseCapabilityRef> capability = PromiseCapabilityRef::New(vm);
82 Local<PromiseRef> promise = capability->GetPromise(vm);
83 FunctionCallback RejectCallback = nullptr;
84 Local<FunctionRef> reject = FunctionRef::New(vm, RejectCallback);
85 promise->Then(vm, reject);
86 JSNApi::DestroyJSVM(vm);
87 }
88 }
89
90 // Fuzzer entry point.
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)91 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
92 {
93 // Run your code on data.
94 OHOS::PromiseRefCatchFuzzTest(data, size);
95 OHOS::PromiseRefThenFinallyFuzzTest(data, size);
96 OHOS::PromiseRefThenWithTwoParameterFuzzTest(data, size);
97 return 0;
98 }