diff options
author | Stanislav Malyshev <stas@php.net> | 2019-07-30 22:45:55 -0700 |
---|---|---|
committer | Nikita Popov <nikita.ppv@gmail.com> | 2019-09-16 16:04:09 +0200 |
commit | 41f45647f90a44514fd18b16fdcec5cceebf1635 (patch) | |
tree | 688d0670036c81318dad8498be625580388b7933 /sapi/fuzzer/fuzzer-parser.c | |
parent | 9b9fac78b033e8b26d24cf35d69b603ca84a61d2 (diff) | |
download | php-git-41f45647f90a44514fd18b16fdcec5cceebf1635.tar.gz |
Add fuzzer SAPIs to the core
Diffstat (limited to 'sapi/fuzzer/fuzzer-parser.c')
-rw-r--r-- | sapi/fuzzer/fuzzer-parser.c | 80 |
1 files changed, 80 insertions, 0 deletions
diff --git a/sapi/fuzzer/fuzzer-parser.c b/sapi/fuzzer/fuzzer-parser.c new file mode 100644 index 0000000000..eb1e03b6e8 --- /dev/null +++ b/sapi/fuzzer/fuzzer-parser.c @@ -0,0 +1,80 @@ +/* + +----------------------------------------------------------------------+ + | PHP Version 7 | + +----------------------------------------------------------------------+ + | Copyright (c) The PHP Group | + +----------------------------------------------------------------------+ + | This source file is subject to version 3.01 of the PHP license, | + | that is bundled with this package in the file LICENSE, and is | + | available through the world-wide-web at the following url: | + | http://www.php.net/license/3_01.txt | + | If you did not receive a copy of the PHP license and are unable to | + | obtain it through the world-wide-web, please send a note to | + | license@php.net so we can mail you a copy immediately. | + +----------------------------------------------------------------------+ + | Authors: Johannes Schlüter <johanes@php.net> | + | Stanislav Malyshev <stas@php.net> | + +----------------------------------------------------------------------+ + */ + +#include <main/php.h> +#include <main/php_main.h> +#include <main/SAPI.h> +#include <ext/standard/info.h> +#include <ext/standard/php_var.h> +#include <main/php_variables.h> +#ifdef JO0 +#include <ext/standard/php_smart_str.h> +#endif + +#include "fuzzer.h" + +#include "fuzzer-sapi.h" + +int fuzzer_do_parse(zend_file_handle *file_handle, char *filename) +{ + int retval = FAILURE; /* failure by default */ + + SG(options) |= SAPI_OPTION_NO_CHDIR; + SG(request_info).argc=0; + SG(request_info).argv=NULL; + + if (php_request_startup(TSRMLS_C)==FAILURE) { + php_module_shutdown(TSRMLS_C); + return FAILURE; + } + + SG(headers_sent) = 1; + SG(request_info).no_headers = 1; + php_register_variable("PHP_SELF", filename, NULL TSRMLS_CC); + + zend_first_try { + zend_compile_file(file_handle, ZEND_REQUIRE); + //retval = php_execute_script(file_handle TSRMLS_CC); + } zend_end_try(); + + php_request_shutdown((void *) 0); + + return (retval == SUCCESS) ? SUCCESS : FAILURE; +} + +int fuzzer_do_request_d(char *filename, char *data, size_t data_len); + +int LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size) { + char *s = malloc(Size+1); + memcpy(s, Data, Size); + s[Size] = '\0'; + + fuzzer_do_request_d("fuzzer.php", Data, Size); + //fuzzer_do_parse(&file_handle, "fuzzer.php"); + + free(s); + return 0; +} + +int LLVMFuzzerInitialize(int *argc, char ***argv) { + fuzzer_init_php(); + + /* fuzzer_shutdown_php(); */ + return 0; +} |