commit 0ed1c48711cefd8b169e3d1f8fcf5f8e4701922d
author Petteri Aimonen <jpa@git.mail.kapsi.fi> Wed Dec 18 09:51:13 2019 +0200
committer Petteri Aimonen <jpa@git.mail.kapsi.fi> Wed Dec 18 09:51:13 2019 +0200
tree 50cf5abe51d475bec01fd7ac340179b78b5f240e
parent 1f2c18e8bebff6beb2341c333367c2637da45033

More libFuzzer fixes

tests/fuzztest/fuzztest.c

diff --git a/tests/fuzztest/fuzztest.c b/tests/fuzztest/fuzztest.c
index 0c22b4b..3f23a96 100644
--- a/tests/fuzztest/fuzztest.c
+++ b/tests/fuzztest/fuzztest.c
@@ -262,7 +262,11 @@
     bool status;
     
     alltypes_static_AllTypes *msg = malloc_with_check(sizeof(alltypes_static_AllTypes));
+#ifdef LLVMFUZZER
+    memset(msg, 0xAA, sizeof(alltypes_static_AllTypes));
+#else
     rand_fill((uint8_t*)msg, sizeof(alltypes_static_AllTypes));
+#endif
     stream = pb_istream_from_buffer(buffer, msglen);
     status = pb_decode(&stream, alltypes_static_AllTypes_fields, msg);
 
@@ -271,14 +275,9 @@
         sanity_check_static(msg);
     }
     
-    if (!status && assert_success)
+    if (assert_success)
     {
-        /* Anything that was successfully encoded, should be decodeable.
-         * One exception: strings without null terminator are encoded up
-         * to end of buffer, but refused on decode because the terminator
-         * would not fit. */
-        if (strcmp(stream.errmsg, "string overflow") != 0)
-            assert(status);
+        assert(status);
     }
     
     free_with_check(msg);
@@ -412,8 +411,6 @@
 
 int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size)
 {
-    bool status;
-
     if (do_static_decode(data, size, false))
         do_static_roundtrip(data, size);