1 /*
2  * Copyright (c) 2023-2024 Huawei Device Co., Ltd.
3  * Licensed under the Apache License, Version 2.0 (the "License");
4  * you may not use this file except in compliance with the License.
5  * You may obtain a copy of the License at
6  *
7  *     http://www.apache.org/licenses/LICENSE-2.0
8  *
9  * Unless required by applicable law or agreed to in writing, software
10  * distributed under the License is distributed on an "AS IS" BASIS,
11  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12  * See the License for the specific language governing permissions and
13  * limitations under the License.
14  */
15 
16 #include "verifycredentialstub_fuzzer.h"
17 
18 #include <string>
19 #include <vector>
20 #include "account_log_wrapper.h"
21 #include "app_account_authenticator_callback_stub.h"
22 #include "app_account_manager_service.h"
23 #include "iapp_account.h"
24 #include "fuzz_data.h"
25 
26 using namespace std;
27 using namespace OHOS::AccountSA;
28 
29 class MockAuthenticatorCallback final : public AppAccountAuthenticatorCallbackStub {
30 public:
OnResult(int32_t resultCode,const OHOS::AAFwk::Want & result)31     void OnResult(int32_t resultCode, const OHOS::AAFwk::Want &result) {}
OnRequestRedirected(OHOS::AAFwk::Want & request)32     void OnRequestRedirected(OHOS::AAFwk::Want &request) {}
OnRequestContinued()33     void OnRequestContinued() {}
34 };
35 
36 namespace OHOS {
37 const std::u16string APPACCOUNT_TOKEN = u"ohos.accountfwk.IAppAccount";
VerifyCredentialStubFuzzTest(const uint8_t * data,size_t size)38 bool VerifyCredentialStubFuzzTest(const uint8_t* data, size_t size)
39 {
40     if ((data == nullptr) || (size == 0)) {
41         return false;
42     }
43     FuzzData fuzzData(data, size);
44     std::string testName = fuzzData.GenerateRandomString();
45     std::string testOwner = fuzzData.GenerateRandomString();
46     std::string testValue = fuzzData.GenerateRandomString();
47     VerifyCredentialOptions options;
48     options.credentialType = testValue;
49     options.credential = testValue;
50     sptr<MockAuthenticatorCallback> callback = new (std::nothrow) MockAuthenticatorCallback();
51     if (callback == nullptr) {
52         ACCOUNT_LOGI("AppAccountStub VerifyCredential callback is null");
53         return false;
54     }
55     MessageParcel dataTemp;
56     if (!dataTemp.WriteInterfaceToken(APPACCOUNT_TOKEN)) {
57         return false;
58     }
59     if (!dataTemp.WriteString(testName)) {
60         return false;
61     }
62     if (!dataTemp.WriteString(testOwner)) {
63         return false;
64     }
65     if (!dataTemp.WriteParcelable(&options)) {
66         return false;
67     }
68     if (!dataTemp.WriteRemoteObject(callback->AsObject())) {
69         return false;
70     }
71     MessageParcel reply;
72     MessageOption option;
73     uint32_t code = static_cast<uint32_t>(AppAccountInterfaceCode::VERIFY_CREDENTIAL);
74     auto appAccountManagerService = std::make_shared<AppAccountManagerService>();
75     appAccountManagerService->OnRemoteRequest(code, dataTemp, reply, option);
76     return true;
77 }
78 }
79 
80 /* Fuzzer entry point */
LLVMFuzzerTestOneInput(const uint8_t * data,size_t size)81 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
82 {
83     /* Run your code on data */
84     OHOS::VerifyCredentialStubFuzzTest(data, size);
85     return 0;
86 }
87 
88