update sequence_compression_api fuzzer test

author Yann Collet <cyan@fb.com>

Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)

committer Yann Collet <cyan@fb.com>

Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)
author Yann Collet <cyan@fb.com>
Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)
committer Yann Collet <cyan@fb.com>
Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)
diff --git a/tests/fuzz/sequence_compression_api.c b/tests/fuzz/sequence_compression_api.c

index 68923e11e602bdf5e98636c0e3dd2ae3de97b84b..e01daacaa897a0c4b074c8277c92c3cba3736d38 100644 (file)
--- a/tests/fuzz/sequence_compression_api.c
+++ b/tests/fuzz/sequence_compression_api.c
@@ -221,11 +221,11 @@ static size_t generateRandomSequences(FUZZ_dataProducer_t* producer,
      return nbSeqGenerated;
  }
  
-static size_t roundTripTest(void *result, size_t resultCapacity,
-                            void *compressed, size_t compressedCapacity,
-                            size_t srcSize,
-                            const void *dict, size_t dictSize,
-                            size_t generatedSequencesSize,
+static size_t roundTripTest(void* result, size_t resultCapacity,
+                            void* compressed, size_t compressedCapacity,
+                            const void* src, size_t srcSize,
+                            const void* dict, size_t dictSize,
+                            const ZSTD_Sequence* seqs, size_t seqSize,
                              int wLog, int cLevel, unsigned hasDict,
                              ZSTD_sequenceFormat_e mode)
  {
@@ -245,12 +245,22 @@ static size_t roundTripTest(void *result, size_t resultCapacity,
      }
  
      cSize = ZSTD_compressSequences(cctx, compressed, compressedCapacity,
-                                   generatedSequences, generatedSequencesSize,
-                                   generatedSrc, srcSize);
+                                   seqs, seqSize,
+                                   src, srcSize);
+    if ( (ZSTD_getErrorCode(cSize) == ZSTD_error_dstSize_tooSmall)
+      && (mode == ZSTD_sf_explicitBlockDelimiters) ) {
+        /* Valid scenario : in explicit delimiter mode,
+         * it might be possible for the compressed size to outgrow dstCapacity.
+         * In which case, it's still a valid fuzzer scenario,
+         * but no roundtrip shall be possible */
+        return 0;
+    }
+    /* round-trip */
      FUZZ_ZASSERT(cSize);
      dSize = ZSTD_decompressDCtx(dctx, result, resultCapacity, compressed, cSize);
      FUZZ_ZASSERT(dSize);
-
+    FUZZ_ASSERT_MSG(dSize == srcSize, "Incorrect regenerated size");
+    FUZZ_ASSERT_MSG(!FUZZ_memcmp(src, result, srcSize), "Corruption!");
      return dSize;
  }
  
@@ -298,10 +308,11 @@ int LLVMFuzzerTestOneInput(const uint8_t* src, size_t size)
      nbSequences = generateRandomSequences(producer, ZSTD_FUZZ_GENERATED_LITERALS_SIZE, dictSize, wLog, mode);
      generatedSrcSize = decodeSequences(generatedSrc, nbSequences, ZSTD_FUZZ_GENERATED_LITERALS_SIZE, dictBuffer, dictSize, mode);
      /* Note : in explicit block delimiters mode,
-     * the fuzzer might generate a lot of small incompressible blocks.
+     * the fuzzer might generate a lot of small blocks.
       * In which case, the final compressed size might be > ZSTD_compressBound().
-     * Solution : provide a much more generous cBufSize to cover these scenarios */
-    cBufSize = (mode == ZSTD_sf_noBlockDelimiters) ? ZSTD_compressBound(generatedSrcSize) : 256 + (generatedSrcSize * 2);
+     * This is still a valid scenario fuzzer though, which makes it possible to check under-sized dstCapacity.
+     * The test just doesn't roundtrip. */
+    cBufSize = ZSTD_compressBound(generatedSrcSize);
      cBuf = FUZZ_malloc(cBufSize);
  
      rBufSize = generatedSrcSize;
@@ -318,14 +329,12 @@ int LLVMFuzzerTestOneInput(const uint8_t* src, size_t size)
  
      {   const size_t result = roundTripTest(rBuf, rBufSize,
                                          cBuf, cBufSize,
-                                        generatedSrcSize,
+                                        generatedSrc, generatedSrcSize,
                                          dictBuffer, dictSize,
-                                        nbSequences,
+                                        generatedSequences, nbSequences,
                                          (int)wLog, cLevel, hasDict, mode);
-        FUZZ_ZASSERT(result);
-        FUZZ_ASSERT_MSG(result == generatedSrcSize, "Incorrect regenerated size");
+        FUZZ_ASSERT(result <= generatedSrcSize);  /* can be 0 when no round-trip */
      }
-    FUZZ_ASSERT_MSG(!FUZZ_memcmp(generatedSrc, rBuf, generatedSrcSize), "Corruption!");
  
      free(rBuf);
      free(cBuf);
diff --git a/tests/fuzz/zstd_helpers.h b/tests/fuzz/zstd_helpers.h

index 7813884d3f396202ba3dcfc29a1052b8c6d82f27..9fbefdc72a9f2c21110bd3b2f54840e9d37bc2a8 100644 (file)
--- a/tests/fuzz/zstd_helpers.h
+++ b/tests/fuzz/zstd_helpers.h
@@ -17,6 +17,7 @@
  #define ZSTD_STATIC_LINKING_ONLY
  
  #include "zstd.h"
+#include "zstd_errors.h"
  #include "fuzz_data_producer.h"
  #include <stdint.h>
author	Yann Collet <cyan@fb.com>
	Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)
committer	Yann Collet <cyan@fb.com>
	Tue, 1 Feb 2022 00:17:11 +0000 (16:17 -0800)
tests/fuzz/sequence_compression_api.c		patch \| blob \| blame \| history
tests/fuzz/zstd_helpers.h		patch \| blob \| blame \| history