1 /*
2 * Copyright (c) 2023-2025 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "authenticatestub_fuzzer.h"
17
18 #include <string>
19 #include <vector>
20 #include "account_log_wrapper.h"
21 #include "app_account_authenticator_callback_stub.h"
22 #include "app_account_manager_service.h"
23 #include "iapp_account.h"
24 #include "fuzz_data.h"
25
26 using namespace std;
27 using namespace OHOS::AccountSA;
28
29 class MockAuthenticatorCallback final : public AppAccountAuthenticatorCallbackStub {
30 public:
OnResult(int32_t resultCode,const OHOS::AAFwk::Want & result)31 OHOS::ErrCode OnResult(int32_t resultCode, const OHOS::AAFwk::Want &result)
32 {
33 return OHOS::ERR_OK;
34 }
35
OnRequestRedirected(const OHOS::AAFwk::Want & request)36 OHOS::ErrCode OnRequestRedirected(const OHOS::AAFwk::Want &request)
37 {
38 return OHOS::ERR_OK;
39 }
40
OnRequestContinued()41 OHOS::ErrCode OnRequestContinued()
42 {
43 return OHOS::ERR_OK;
44 }
CallbackEnter(uint32_t code)45 OHOS::ErrCode CallbackEnter([[maybe_unused]] uint32_t code)
46 {
47 return OHOS::ERR_OK;
48 }
CallbackExit(uint32_t code,int32_t result)49 OHOS::ErrCode CallbackExit([[maybe_unused]] uint32_t code, [[maybe_unused]] int32_t result)
50 {
51 return OHOS::ERR_OK;
52 }
53 };
54
55 namespace OHOS {
56 const std::u16string APPACCOUNT_TOKEN = u"OHOS.AccountSA.IAppAccount";
AuthenticateStubFuzzTest(const uint8_t * data,size_t size)57 bool AuthenticateStubFuzzTest(const uint8_t* data, size_t size)
58 {
59 if ((data == nullptr) || (size == 0)) {
60 return false;
61 }
62 FuzzData fuzzData(data, size);
63 MessageParcel dataTemp;
64 bool isWriteInterfaceToken = fuzzData.GetData<bool>();
65 if (isWriteInterfaceToken) {
66 if (!dataTemp.WriteInterfaceToken(APPACCOUNT_TOKEN)) {
67 return false;
68 }
69 }
70 bool isWriteStringInfo = fuzzData.GetData<bool>();
71 if (isWriteStringInfo) {
72 AppAccountStringInfo stringInfo;
73 stringInfo.name = fuzzData.GenerateString();
74 stringInfo.owner = fuzzData.GenerateString();
75 stringInfo.authType = fuzzData.GenerateString();
76 if (!dataTemp.WriteParcelable(&stringInfo)) {
77 return false;
78 }
79 }
80 bool isWriteWant = fuzzData.GetData<bool>();
81 if (isWriteWant) {
82 AAFwk::Want options;
83 if (!dataTemp.WriteParcelable(&options)) {
84 return false;
85 }
86 }
87 bool isWriteCallback = fuzzData.GetData<bool>();
88 if (isWriteCallback) {
89 sptr<IAppAccountAuthenticatorCallback> callback = new (std::nothrow) MockAuthenticatorCallback();
90 if (callback == nullptr) {
91 ACCOUNT_LOGI("AppAccountStub Authenticate callback is null");
92 return false;
93 }
94 if (!dataTemp.WriteRemoteObject(callback->AsObject())) {
95 return false;
96 }
97 }
98 MessageParcel reply;
99 MessageOption option;
100 uint32_t code = static_cast<uint32_t>(IAppAccountIpcCode::COMMAND_AUTHENTICATE);
101 auto appAccountManagerService = std::make_shared<AppAccountManagerService>();
102 appAccountManagerService->OnRemoteRequest(code, dataTemp, reply, option);
103 return true;
104 }
105 }
106
107 /* Fuzzer entry point */
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)108 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
109 {
110 /* Run your code on data */
111 OHOS::AuthenticateStubFuzzTest(data, size);
112 return 0;
113 }
114
115