Clean up fuzz helper classes

- Remove OEMCrypto state changes hidden in constructors and destructors. - Use composition instead of inheritance to structure classes. - Avoid calling non-trivial destructors for objects with static lifetime. Merged from https://widevine-internal-review.googlesource.com/168497 Merged from https://widevine-internal-review.googlesource.com/171170 Merged from https://widevine-internal-review.googlesource.com/171171 Merged from https://widevine-internal-review.googlesource.com/171870 Change-Id: I20476a7b1132d11f011b8650ec01e3c2dc3fc0e8
2023-03-20 17:46:15 +00:00
parent af070601b0
commit 53fe55cb72
30 changed files with 518 additions and 398 deletions
--- a/libwvdrmengine/oemcrypto/test/fuzz_tests/oemcrypto_generic_verify_fuzz.cc
+++ b/libwvdrmengine/oemcrypto/test/fuzz_tests/oemcrypto_generic_verify_fuzz.cc
@@ -2,18 +2,19 @@
 // source code may only be used and distributed under the Widevine
 // License Agreement.

+#include <vector>
+
 #include "FuzzedDataProvider.h"
 #include "OEMCryptoCENC.h"
 #include "oec_session_util.h"
 #include "oemcrypto_fuzz_helper.h"
 #include "oemcrypto_fuzz_structs.h"
-#include "oemcrypto_types.h"

-namespace wvoec {
+namespace {

 // Properties deserialized from fuzzed data.
 struct FuzzedProperties {
-  OEMCrypto_Generic_Api_Fuzz structure;
+  wvoec::OEMCrypto_Generic_Api_Fuzz structure;
  std::vector<uint8_t> buffer;
  std::vector<uint8_t> signature;
 };
@@ -24,12 +25,15 @@ struct OptionalFuzzedProperties {
  bool has_value;
 };

-OEMCryptoLicenseAPIFuzz license_api_fuzz;
+// Avoid calling non-trivial destructor.
+wvoec::OEMCryptoLicenseAPIFuzz& license_api_fuzz =
+    *new wvoec::OEMCryptoLicenseAPIFuzz;

 OptionalFuzzedProperties DeserializeFuzzedData(const uint8_t* data,
                                               size_t size) {
  OptionalFuzzedProperties fuzzed_properties;
-  const std::vector<FuzzedData> inputs = SplitFuzzedData(data, size);
+  const std::vector<wvoec::FuzzedData> inputs =
+      wvoec::SplitFuzzedData(data, size);
  if (inputs.size() < 2 ||
      inputs[0].size < sizeof(fuzzed_properties.value.structure)) {
    fuzzed_properties.has_value = false;
@@ -38,10 +42,10 @@ OptionalFuzzedProperties DeserializeFuzzedData(const uint8_t* data,
  FuzzedDataProvider fuzzed_data(inputs[0].data, inputs[0].size);
  fuzzed_data.ConsumeData(&fuzzed_properties.value.structure,
                          sizeof(fuzzed_properties.value.structure));
-  ConvertDataToValidEnum(OEMCrypto_CipherMode_MaxValue,
-                         &fuzzed_properties.value.structure.cipher_mode);
-  ConvertDataToValidEnum(OEMCrypto_Algorithm_MaxValue,
-                         &fuzzed_properties.value.structure.algorithm);
+  wvoec::ConvertDataToValidEnum(OEMCrypto_CipherMode_MaxValue,
+                                &fuzzed_properties.value.structure.cipher_mode);
+  wvoec::ConvertDataToValidEnum(OEMCrypto_Algorithm_MaxValue,
+                                &fuzzed_properties.value.structure.algorithm);
  fuzzed_properties.value.buffer = fuzzed_data.ConsumeRemainingBytes<uint8_t>();
  fuzzed_properties.value.signature.assign(inputs[1].data,
                                           inputs[1].data + inputs[1].size);
@@ -49,8 +53,11 @@ OptionalFuzzedProperties DeserializeFuzzedData(const uint8_t* data,
  return fuzzed_properties;
 }

+}  // namespace
+
 extern "C" int LLVMFuzzerInitialize(int* argc, char*** argv) {
-  RedirectStdoutToFile();
+  wvoec::RedirectStdoutToFile();
+  license_api_fuzz.Initialize();
  license_api_fuzz.LoadLicense();
  return 0;
 }
@@ -64,12 +71,12 @@ extern "C" size_t LLVMFuzzerCustomMutator(uint8_t* data, size_t size,
    return 0;
  }

-  // Get key handle for signing and verifying.
-  Session* const session = license_api_fuzz.session();
-  vector<uint8_t> key_handle;
-  OEMCryptoResult result = GetKeyHandleIntoVector(
-      session->session_id(), session->license().keys[0].key_id,
-      session->license().keys[0].key_id_length,
+  // Select key and perform verification.
+  wvoec::Session& session = license_api_fuzz.session();
+  std::vector<uint8_t> key_handle;
+  OEMCryptoResult result = wvoec::GetKeyHandleIntoVector(
+      session.session_id(), session.license().keys[0].key_id,
+      session.license().keys[0].key_id_length,
      fuzzed_properties.value.structure.cipher_mode, key_handle);
  if (result == OEMCrypto_SUCCESS) {
    // Generate a new signature if verification fails.
@@ -96,7 +103,8 @@ extern "C" size_t LLVMFuzzerCustomMutator(uint8_t* data, size_t size,
                             &signature_length);
      const size_t signature_offset =
          sizeof(fuzzed_properties.value.structure) +
-          fuzzed_properties.value.buffer.size() + sizeof(kFuzzDataSeparator);
+          fuzzed_properties.value.buffer.size() +
+          sizeof(wvoec::kFuzzDataSeparator);
      size = signature_offset + signature_length;
      if (size > max_size) {
        return 0;
@@ -118,11 +126,11 @@ extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
  }

  // Select key and perform verification.
-  Session* const session = license_api_fuzz.session();
-  vector<uint8_t> key_handle;
-  GetKeyHandleIntoVector(
-      session->session_id(), session->license().keys[0].key_id,
-      session->license().keys[0].key_id_length,
+  wvoec::Session& session = license_api_fuzz.session();
+  std::vector<uint8_t> key_handle;
+  wvoec::GetKeyHandleIntoVector(
+      session.session_id(), session.license().keys[0].key_id,
+      session.license().keys[0].key_id_length,
      fuzzed_properties.value.structure.cipher_mode, key_handle);
  OEMCrypto_Generic_Verify(key_handle.data(), key_handle.size(),
                           fuzzed_properties.value.buffer.data(),
@@ -132,5 +140,3 @@ extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
                           fuzzed_properties.value.signature.size());
  return 0;
 }
-
-}  // namespace wvoec