1 // Copyright 2024 The Chromium Authors
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "testing/libfuzzer/renderer_fuzzing/renderer_fuzzing.h"
6
7 #include <map>
8
9 #include "base/memory/singleton.h"
10
Run(const blink::BrowserInterfaceBrokerProxy * context_interface_broker_proxy,blink::ThreadSafeBrowserInterfaceBrokerProxy * process_interface_broker_proxy,blink::AssociatedInterfaceProvider * associated_interface_provider,const std::string & fuzzer_id,std::vector<uint8_t> && input,base::OnceClosure done_closure)11 void RendererFuzzing::Run(
12 const blink::BrowserInterfaceBrokerProxy* context_interface_broker_proxy,
13 blink::ThreadSafeBrowserInterfaceBrokerProxy*
14 process_interface_broker_proxy,
15 blink::AssociatedInterfaceProvider* associated_interface_provider,
16 const std::string& fuzzer_id,
17 std::vector<uint8_t>&& input,
18 base::OnceClosure done_closure) {
19 auto it = RendererFuzzing::GetInstance()->fuzzers_.find(fuzzer_id);
20 CHECK(it != std::end(RendererFuzzing::GetInstance()->fuzzers_));
21 it->second->Run(context_interface_broker_proxy,
22 process_interface_broker_proxy, associated_interface_provider,
23 std::move(input), std::move(done_closure));
24 }
25
GetInstance()26 RendererFuzzing* RendererFuzzing::GetInstance() {
27 // We must use a leaky singleton here because at this point of initialization,
28 // we might not have an AtExit manager set up yet.
29 return base::Singleton<RendererFuzzing,
30 base::LeakySingletonTraits<RendererFuzzing>>::get();
31 }
32