1 /*
2 * Copyright (c) 2022-2024 Huawei Device Co., Ltd.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at
6 *
7 * http://www.apache.org/licenses/LICENSE-2.0
8 *
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
14 */
15
16 #include "verifyaccesstoken_fuzzer.h"
17
18 #include <string>
19 #include <vector>
20 #include <thread>
21 #include "accesstoken_fuzzdata.h"
22 #undef private
23 #include "accesstoken_kit.h"
24
25 using namespace std;
26 using namespace OHOS::Security::AccessToken;
27
28 namespace OHOS {
VerifyAccessTokenFuzzTest(const uint8_t * data,size_t size)29 bool VerifyAccessTokenFuzzTest(const uint8_t* data, size_t size)
30 {
31 if ((data == nullptr) || (size == 0)) {
32 return false;
33 }
34
35 AccessTokenFuzzData fuzzData(data, size);
36 int32_t result = AccessTokenKit::VerifyAccessToken(
37 fuzzData.GetData<AccessTokenID>(), fuzzData.GenerateRandomString(), false);
38
39 return result == RET_SUCCESS;
40 }
41 }
42
43 /* Fuzzer entry point */
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)44 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
45 {
46 /* Run your code on data */
47 OHOS::VerifyAccessTokenFuzzTest(data, size);
48 return 0;
49 }
50