diff options
author | Allan Sandfeld Jensen <allan.jensen@qt.io> | 2019-03-05 17:34:47 +0100 |
---|---|---|
committer | Allan Sandfeld Jensen <allan.jensen@qt.io> | 2019-03-06 10:04:14 +0000 |
commit | eaf1da4d961fbbda9455f9af3b23d1af777f43fa (patch) | |
tree | 95970599ecee31c4f7f940bc97ac98c61a3d0cad /chromium/sandbox/win/fuzzer | |
parent | 38a9a29f4f9436cace7f0e7abf9c586057df8a4e (diff) | |
download | qtwebengine-chromium-eaf1da4d961fbbda9455f9af3b23d1af777f43fa.tar.gz |
BASELINE: Update Chromium to 73.0.3683.64
Change-Id: I76517dc277ba4e16bfd7e098fda3d079656b3b9f
Reviewed-by: Michael BrĂ¼ning <michael.bruning@qt.io>
Diffstat (limited to 'chromium/sandbox/win/fuzzer')
-rw-r--r-- | chromium/sandbox/win/fuzzer/fuzzer_types.h | 38 | ||||
-rw-r--r-- | chromium/sandbox/win/fuzzer/sandbox_ipc_fuzzer.cc | 28 |
2 files changed, 0 insertions, 66 deletions
diff --git a/chromium/sandbox/win/fuzzer/fuzzer_types.h b/chromium/sandbox/win/fuzzer/fuzzer_types.h deleted file mode 100644 index 8ff06d0d15c..00000000000 --- a/chromium/sandbox/win/fuzzer/fuzzer_types.h +++ /dev/null @@ -1,38 +0,0 @@ -// Copyright 2017 The Chromium Authors. All rights reserved. -// Use of this source code is governed by a BSD-style license that can be -// found in the LICENSE file. - -#ifndef SANDBOX_FUZZER_TYPES_H_ -#define SANDBOX_FUZZER_TYPES_H_ - -#include <stdint.h> - -// This file defines Windows types for the sandbox_ipc_fuzzer target when -// compiled on Linux. -// -// It also disables Windows exception handling to ensure any crashes are -// captured by the fuzzing harness. - -// Disable exceptions. -#if defined(__try) -#undef __try -#endif -#define __try if(true) -#if defined(__except) -#undef __except -#endif -#define __except(...) if(false) - -// Windows types used in sandbox. -typedef void* HANDLE; -typedef uint32_t DWORD; -typedef int32_t LONG; -typedef uint32_t ULONG; -typedef uint32_t* ULONG_PTR; -typedef LONG NTSTATUS; -typedef void PROCESS_INFORMATION; - -// __stdcall is used in one place. TODO(wfh): replace with WINAPI. -#define __stdcall - -#endif // SANDBOX_FUZZER_TYPES_H_ diff --git a/chromium/sandbox/win/fuzzer/sandbox_ipc_fuzzer.cc b/chromium/sandbox/win/fuzzer/sandbox_ipc_fuzzer.cc deleted file mode 100644 index 1c2ea8c5430..00000000000 --- a/chromium/sandbox/win/fuzzer/sandbox_ipc_fuzzer.cc +++ /dev/null @@ -1,28 +0,0 @@ -// Copyright 2017 The Chromium Authors. All rights reserved. -// Use of this source code is governed by a BSD-style license that can be -// found in the LICENSE file. - -#include <stddef.h> -#include <stdint.h> - -#include "sandbox/win/src/crosscall_server.h" -#include "sandbox/win/src/ipc_args.h" - -extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) { - using namespace sandbox; - - uint32_t output_size = 0; - std::unique_ptr<CrossCallParamsEx> params(CrossCallParamsEx::CreateFromBuffer( - const_cast<uint8_t*>(data), size, &output_size)); - - if (!params.get()) - return 0; - - uint32_t tag = params->GetTag(); - IPCParams ipc_params = {0}; - ipc_params.ipc_tag = tag; - void* args[kMaxIpcParams]; - GetArgs(params.get(), &ipc_params, args); - ReleaseArgs(&ipc_params, args); - return 0; -} |