From 4075324e2b81c11254a28362942a477594be6b28 Mon Sep 17 00:00:00 2001
From: Ivan Nardi <12729895+IvanNardi@users.noreply.github.com>
Date: Thu, 16 Feb 2023 18:04:34 +0100
Subject: fuzz: extend fuzz coverage (#1888)

---
 fuzz/fuzz_libinjection.c | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 fuzz/fuzz_libinjection.c

(limited to 'fuzz/fuzz_libinjection.c')

diff --git a/fuzz/fuzz_libinjection.c b/fuzz/fuzz_libinjection.c
new file mode 100644
index 000000000..9fd60107b
--- /dev/null
+++ b/fuzz/fuzz_libinjection.c
@@ -0,0 +1,25 @@
+#include "ndpi_api.h"
+#include "../src/lib/third_party/include/libinjection.h"
+#include "../src/lib/third_party/include/libinjection_xss.h"
+#include "../src/lib/third_party/include/libinjection_sqli.h"
+
+int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
+  char *query;
+  char fingerprint[8];
+
+  /* No memory allocations involved */
+
+  /* Libinjection: it wants null-terminated string */
+
+  query = malloc(size + 1);
+  memcpy(query, data, size);
+  query[size] = '\0';
+
+  libinjection_sqli(query, strlen(query), fingerprint);
+
+  libinjection_xss(query, strlen(query));
+
+  free(query);
+
+  return 0;
+}
-- 
cgit v1.2.3