Skip to content

feat: Fuzz Testing SwiftParser #3728

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 14 commits into from
Feb 8, 2024
Merged

feat: Fuzz Testing SwiftParser #3728

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
a1e428d
Merge pull request #1 from intel/main
joydeep049 Nov 1, 2023
f0bd35d
Merge pull request #4 from intel/main
joydeep049 Nov 3, 2023
97ec9a5
Merge pull request #5 from intel/main
joydeep049 Nov 9, 2023
829036e
Merge pull request #6 from intel/main
joydeep049 Jan 4, 2024
7b56348
feat: fuzz testing swiftparser
joydeep049 Jan 14, 2024
cfad62e
fix: linting issues
joydeep049 Jan 14, 2024
aa1c224
fix: isort linting issues
joydeep049 Jan 14, 2024
1995c05
Merge branch 'main' into fuzz-swift
joydeep049 Jan 14, 2024
95a8c59
feat: added docstrings
joydeep049 Jan 24, 2024
a930a43
feat: added docstrings
joydeep049 Jan 24, 2024
e76128a
fix: isort linting issues
joydeep049 Jan 24, 2024
60a3ee0
Update fuzz_package_resolved.py
joydeep049 Jan 24, 2024
7cd24da
Merge branch 'main' into fuzz-swift
joydeep049 Jan 24, 2024
2662e16
fix: linting issues
joydeep049 Jan 25, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
78 changes: 78 additions & 0 deletions fuzz/fuzz_package_resolved.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,78 @@
# Copyright (C) 2023 Intel Corporation
# SPDX-License-Identifier: GPL-3.0-or-later

import json
import sys
import tempfile
from pathlib import Path

import atheris
import atheris_libprotobuf_mutator
from google.protobuf.json_format import MessageToDict

import fuzz.generated.package_resolved_pb2 as package_resolved_pb2
from cve_bin_tool.cvedb import CVEDB
from cve_bin_tool.log import LOGGER

with atheris.instrument_imports():
from cve_bin_tool.parsers.swift import SwiftParser

cve_db = CVEDB()
logger = LOGGER.getChild("Fuzz")


def PackageResolvedBuilder(data):
"""Convert the Protobuf message to a dictionary"""
json_data = MessageToDict(
data, preserving_proto_field_name=True, including_default_value_fields=True
)

with open(file_path, "w") as f:
f.write("{\n")
f.write(' "object": {\n')
f.write(' "pins": [\n')

# Iterating through package pins
for i, pin in enumerate(json_data.get("object", {}).get("pins", [])):
f.write(" {\n")
f.write(f' "package": "{pin.get("package", "")}",\n')
f.write(f' "repositoryURL": "{pin.get("repositoryURL", "")}",\n')
f.write(' "state": {\n')
state = pin.get("state", {})
f.write(f' "branch": {json.dumps(state.get("branch"))},\n')
f.write(f' "revision": "{state.get("revision", "")}",\n')
f.write(f' "version": "{state.get("version", "")}"\n')
f.write(" }\n")
f.write(
" }"
+ (
","
if i < len(json_data.get("object", {}).get("pins", [])) - 1
else ""
)
+ "\n"
)

f.write(" ]\n")
f.write(" },\n")
f.write(f' "version": {json_data.get("version", 1)}\n')
f.write("}\n")


def TestParseData(data):
try:
PackageResolvedBuilder(data)

swift_parser = SwiftParser(cve_db, logger)
swift_parser.run_checker(file_path)

except SystemExit:
return


file_path = str(Path(tempfile.mkdtemp(prefix="cve-bin-tool-")) / "Package.resolved")

atheris_libprotobuf_mutator.Setup(
sys.argv, TestParseData, proto=package_resolved_pb2.PackageResolved
)
atheris.Fuzz()
29 changes: 29 additions & 0 deletions fuzz/generated/package_resolved_pb2.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
"""Generated protocol buffer code."""
from google.protobuf import descriptor as _descriptor
from google.protobuf import descriptor_pool as _descriptor_pool
from google.protobuf import symbol_database as _symbol_database
from google.protobuf.internal import builder as _builder

# @@protoc_insertion_point(imports)

_sym_db = _symbol_database.Default()


DESCRIPTOR = _descriptor_pool.Default().AddSerializedFile(
b'\n\x16package_resolved.proto\x12\x08resolved"A\n\x0cPackageState\x12\x0e\n\x06\x62ranch\x18\x01 \x01(\t\x12\x10\n\x08revision\x18\x02 \x01(\t\x12\x0f\n\x07version\x18\x03 \x01(\t"[\n\nPackagePin\x12\x0f\n\x07package\x18\x01 \x01(\t\x12\x15\n\rrepositoryURL\x18\x02 \x01(\t\x12%\n\x05state\x18\x03 \x01(\x0b\x32\x16.resolved.PackageState"\x82\x01\n\x0fPackageResolved\x12\x30\n\x06object\x18\x01 \x01(\x0b\x32 .resolved.PackageResolved.Object\x12\x0f\n\x07version\x18\x02 \x01(\x05\x1a,\n\x06Object\x12"\n\x04pins\x18\x01 \x03(\x0b\x32\x14.resolved.PackagePinb\x06proto3'
)

_globals = globals()
_builder.BuildMessageAndEnumDescriptors(DESCRIPTOR, _globals)
_builder.BuildTopDescriptorsAndMessages(DESCRIPTOR, "package_resolved_pb2", _globals)
if _descriptor._USE_C_DESCRIPTORS is False:
DESCRIPTOR._options = None
_globals["_PACKAGESTATE"]._serialized_start = 36
_globals["_PACKAGESTATE"]._serialized_end = 101
_globals["_PACKAGEPIN"]._serialized_start = 103
_globals["_PACKAGEPIN"]._serialized_end = 194
_globals["_PACKAGERESOLVED"]._serialized_start = 197
_globals["_PACKAGERESOLVED"]._serialized_end = 327
_globals["_PACKAGERESOLVED_OBJECT"]._serialized_start = 283
_globals["_PACKAGERESOLVED_OBJECT"]._serialized_end = 327
# @@protoc_insertion_point(module_scope)
31 changes: 31 additions & 0 deletions fuzz/proto_files/package_resolved.proto
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,31 @@
// Copyright (C) 2023 Intel Corporation
// SPDX-License-Identifier: GPL-3.0-or-later

syntax = "proto3";

package resolved;

// Represents the state of a package, with optional branch, revision, and version.
message PackageState {
string branch = 1; // Branch name (optional, can be empty)
string revision = 2; // Revision or commit hash
string version = 3; // Version of the package
}

// Represents a single package pin.
message PackagePin {
string package = 1; // Name of the package
string repositoryURL = 2; // URL of the package's repository
PackageState state = 3; // State of the package
}

// Represents the top-level structure of the package.resolved file.
message PackageResolved {
message Object {
repeated PackagePin pins = 1; // List of package pins
}

Object object = 1; // Object containing the list of pins
int32 version = 2; // Version of the package.resolved file
}