commit d860f08a1e44be36ffa3bc7e0db9b89fdf952508
author Treehugger Robot <android-test-infra-autosubmit@system.gserviceaccount.com> Tue Jun 11 09:10:43 2024 +0000
committer Gerrit Code Review <noreply-gerritcodereview@google.com> Tue Jun 11 09:10:43 2024 +0000
tree ade3a91194a41258cbce55cf29f293da819534f1
parent e1dee26b09443fdfbe736d5161309208c6706376
parent 3ec797638303931fdfd204581540be7f079c093f

Merge "Create decoder using fd and buffer" into main

native/graphics/jni/fuzz/fuzz_imagedecoder.cpp

diff --git a/native/graphics/jni/fuzz/fuzz_imagedecoder.cpp b/native/graphics/jni/fuzz/fuzz_imagedecoder.cpp
index 886f307..6743997 100644
--- a/native/graphics/jni/fuzz/fuzz_imagedecoder.cpp
+++ b/native/graphics/jni/fuzz/fuzz_imagedecoder.cpp
@@ -31,6 +31,20 @@
 
 using PixelPointer = std::unique_ptr<void, PixelFreer>;
 
+AImageDecoder* init(const uint8_t* data, size_t size, bool useFileDescriptor) {
+    AImageDecoder* decoder = nullptr;
+    if (useFileDescriptor) {
+        constexpr char testFd[] = "tempFd";
+        int32_t fileDesc = open(testFd, O_RDWR | O_CREAT | O_TRUNC);
+        write(fileDesc, data, size);
+        AImageDecoder_createFromFd(fileDesc, &decoder);
+        close(fileDesc);
+    } else {
+        AImageDecoder_createFromBuffer(data, size, &decoder);
+    }
+    return decoder;
+}
+
 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
     FuzzedDataProvider dataProvider = FuzzedDataProvider(data, size);
     /**
@@ -39,8 +53,8 @@
      */
     const int32_t dataSize = dataProvider.ConsumeIntegralInRange<int32_t>(0, (size * 80) / 100);
     std::vector<uint8_t> inputBuffer = dataProvider.ConsumeBytes<uint8_t>(dataSize);
-    AImageDecoder* decoder = nullptr;
-    AImageDecoder_createFromBuffer(inputBuffer.data(), inputBuffer.size(), &decoder);
+    AImageDecoder* decoder =
+            init(inputBuffer.data(), inputBuffer.size(), dataProvider.ConsumeBool());
     if (!decoder) {
         return 0;
     }