• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1 // Copyright (c) 2020 Google LLC
2 //
3 // Licensed under the Apache License, Version 2.0 (the "License");
4 // you may not use this file except in compliance with the License.
5 // You may obtain a copy of the License at
6 //
7 //     http://www.apache.org/licenses/LICENSE-2.0
8 //
9 // Unless required by applicable law or agreed to in writing, software
10 // distributed under the License is distributed on an "AS IS" BASIS,
11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 // See the License for the specific language governing permissions and
13 // limitations under the License.
14 
15 #ifndef SOURCE_FUZZ_FUZZER_PASS_ADD_FUNCTION_CALLS_H_
16 #define SOURCE_FUZZ_FUZZER_PASS_ADD_FUNCTION_CALLS_H_
17 
18 #include "source/fuzz/fuzzer_pass.h"
19 
20 namespace spvtools {
21 namespace fuzz {
22 
23 // Fuzzer pass that adds calls at random to (a) livesafe functions, from
24 // anywhere, and (b) any functions, from dead blocks.
25 class FuzzerPassAddFunctionCalls : public FuzzerPass {
26  public:
27   FuzzerPassAddFunctionCalls(
28       opt::IRContext* ir_context, TransformationContext* transformation_context,
29       FuzzerContext* fuzzer_context,
30       protobufs::TransformationSequence* transformations);
31 
32   ~FuzzerPassAddFunctionCalls();
33 
34   void Apply() override;
35 
36  private:
37   // Identify all instructions available at |instr_it|, in block |block| of
38   // |function|, that are potentially suitable as function call actual
39   // parameters.  The results are grouped by type.
40   std::map<uint32_t, std::vector<opt::Instruction*>>
41   GetAvailableInstructionsSuitableForActualParameters(
42       opt::Function* function, opt::BasicBlock* block,
43       const opt::BasicBlock::iterator& inst_it);
44 
45   // Randomly chooses suitable arguments to invoke |callee| right before
46   // instruction |caller_inst_it| of block |caller_block| in |caller_function|,
47   // based on both existing available instructions and the addition of new
48   // instructions to the module.
49   std::vector<uint32_t> ChooseFunctionCallArguments(
50       const opt::Function& callee, opt::Function* caller_function,
51       opt::BasicBlock* caller_block,
52       const opt::BasicBlock::iterator& caller_inst_it);
53 };
54 
55 }  // namespace fuzz
56 }  // namespace spvtools
57 
58 #endif  // SOURCE_FUZZ_FUZZER_PASS_ADD_FUNCTION_CALLS_H_
59