[libFuzzer] one more puzzle, value_profile cracks it in a second

llvm-svn: 281066

diff --git a/llvm/lib/Fuzzer/test/AbsNegAndConstantTest.cpp b/llvm/lib/Fuzzer/test/AbsNegAndConstantTest.cpp
new file mode 100644 (file)
index 0000000..f2ade45
--- /dev/null
+++ b/llvm/lib/Fuzzer/test/AbsNegAndConstantTest.cpp
@@ -0,0 +1,23 @@
+// This file is distributed under the University of Illinois Open Source
+// License. See LICENSE.TXT for details.
+
+// abs(x) < 0 and y == Const puzzle.
+#include <cstring>
+#include <cstdint>
+#include <cstdlib>
+#include <cstddef>
+#include <cstdio>
+
+extern "C" int LLVMFuzzerTestOneInput(const uint8_t *Data, size_t Size) {
+  if (Size < 8) return 0;
+  int x;
+  unsigned y;
+  memcpy(&x, Data, 4);
+  memcpy(&y, Data + 4, 4);
+  if (abs(x) < 0 && y == 0xbaddcafe) {
+    printf("BINGO; Found the target, exiting; x = 0x%x y 0x%x\n", x, y);
+    exit(1);
+  }
+  return 0;
+}
+

diff --git a/llvm/lib/Fuzzer/test/CMakeLists.txt b/llvm/lib/Fuzzer/test/CMakeLists.txt
index dcafb1a..dde189a 100644 (file)
--- a/llvm/lib/Fuzzer/test/CMakeLists.txt
+++ b/llvm/lib/Fuzzer/test/CMakeLists.txt
@@ -62,6 +62,7 @@ set(TestBinaries)
 ###############################################################################
 
 set(Tests
+  AbsNegAndConstantTest
   AccumulateAllocationsTest
   BufferOverflowOnInput
   CallerCalleeTest

diff --git a/llvm/lib/Fuzzer/test/value-profile-cmp.test b/llvm/lib/Fuzzer/test/value-profile-cmp.test
index 3567edc..ae06495 100644 (file)
--- a/llvm/lib/Fuzzer/test/value-profile-cmp.test
+++ b/llvm/lib/Fuzzer/test/value-profile-cmp.test
@@ -1,5 +1,6 @@
 CHECK: BINGO
 RUN: not LLVMFuzzer-SimpleCmpTest -use_value_profile=1 -runs=100000000 2>&1 | FileCheck %s
 RUN: not LLVMFuzzer-SimpleHashTest -use_value_profile=1 -runs=100000000 2>&1 | FileCheck %s
+RUN: not LLVMFuzzer-AbsNegAndConstantTest -use_value_profile=1 -runs=100000000 2>&1 | FileCheck %s