fuzzing-helper/generator.go

package main

import (
	"errors"
	"math"
	"reflect"
)

type Generator struct {
	data     	[]byte
	dataSize 	uint32
	position 	uint32
	mapStruct   map[string]interface{}
	arrayStruct []interface{}
}

func NewGenerator(fuzzData []byte) *Generator {
	return &Generator{
		data:     fuzzData,
		dataSize: uint32(len(fuzzData)),
	}
}

func (g *Generator) fillAny(any reflect.Value) error {
	switch any.Kind() {
	case reflect.Struct:
		for i := 0; i < any.NumField(); i++ {
			err := g.fillAny(any.Field(i))
			if err != nil {
				return err
			}
		}

	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
		newInt, err := g.GenerateInt()
		if err != nil {
			return err
		}
		any.SetInt(int64(newInt))

	case reflect.Ptr:
		any.Set(reflect.New(any.Type().Elem()))
		err := g.fillAny(any.Elem())
		if err != nil {
			return err
		}

	case reflect.String:
		str, err := g.GenerateString()
		if err != nil {
			return err
		}
		any.SetString(str)

	case reflect.Float32:
		newFloat, err := g.GenerateFloat32()
		if err != nil {
			return err
		}
		any.SetFloat(float64(newFloat))

	case reflect.Float64:
		newFloat, err := g.GenerateFloat64()
		if err != nil {
			return err
		}
		any.SetFloat(float64(newFloat))

	case reflect.Complex64:
		newFloatReal, err := g.GenerateFloat32()
		if err != nil {
			return err
		}
		newFloatImag, err := g.GenerateFloat32()
		if err != nil {
			return err
		}
		any.SetComplex(complex(float64(newFloatReal), float64(newFloatImag)))

	case reflect.Complex128:
		newFloatReal, err := g.GenerateFloat64()
		if err != nil {
			return err
		}
		newFloatImag, err := g.GenerateFloat64()
		if err != nil {
			return err
		}
		any.SetComplex(complex(newFloatReal, newFloatImag))

	case reflect.Map:
		any.Set(reflect.MakeMap(any.Type()))

		mapLen, err := g.GenerateUInt32()
		if err != nil {
			return err
		}

		for i := uint32(0); i < mapLen; i++ {
			key := fmt.Sprintf("key%d", i)
			mapValue := reflect.New(any.Type().Elem())
			err := g.fillAny(mapValue.Elem())
			if err != nil {
				return err
			}
			any.SetMapIndex(reflect.ValueOf(key), mapValue.Elem())
		}

	case reflect.Array:
		any.Set(reflect.New(any.Type()).Elem())
		arrayLen := any.Len()
		for i := 0; i < arrayLen; i++ {
			arrayValue := reflect.New(any.Type().Elem())
			err := g.fillAny(arrayValue.Elem())
			if err != nil {
				return err
			}
			any.Index(i).Set(arrayValue.Elem())
		}

	default:
		panic("unhandled default case")
	}
	return nil
}

func (g *Generator) GenerateStruct(targetStruct interface{}) error {
	e := reflect.ValueOf(targetStruct).Elem()
	return g.fillAny(e)
}

func (g *Generator) GenerateInt() (int, error) {
	if g.position >= g.dataSize {
		return 0, errors.New("the data bytes are over")
	}
	result := int(g.data[g.position])
	g.position++
	return result, nil
}

func (g *Generator) GenerateUInt32() (uint32, error) {
	if g.position+3 >= g.dataSize {
		return 0, errors.New("the data bytes are over")
	}
	result := uint32(0)
	for i := 0; i < 4; i++ {
		result = result<<8 | uint32(g.data[g.position])
		g.position++
	}
	return result, nil
}

func (g *Generator) GenerateString() (string, error) {
	maxStrLength := uint32(2000000)

	if g.position >= g.dataSize {
		return "nil", errors.New("the data bytes are over")
	}

	length, err := g.GenerateUInt32()
	if err != nil {
		return "nil", errors.New("the data bytes are over")
	}

	if g.position > maxStrLength {
		return "nil", errors.New("the string length too large")
	}

	startBytePos := g.position
	if startBytePos >= g.dataSize {
		return "nil", errors.New("the data bytes are over")
	}

	if startBytePos+length > g.dataSize {
		return "nil", errors.New("the data bytes are over")
	}

	if startBytePos > startBytePos+length {
		return "nil", errors.New("overflow")
	}

	g.position = startBytePos + length
	result := string(g.data[startBytePos:g.position])

	return result, nil
}

func (g *Generator) GenerateFloat32() (float32, error) {
	if g.position+3 >= g.dataSize {
		return 0, errors.New("the data bytes are over")
	}

	bits := uint32(0)
	for i := 0; i < 4; i++ {
		bits = bits<<8 | uint32(g.data[g.position])
		g.position++
	}

	floatBits := uint32(math.Float32bits(math.Float32frombits(bits)))
	result := math.Float32frombits(floatBits)

	return result, nil
}

func (g *Generator) GenerateFloat64() (float64, error) {
	if g.position+7 >= g.dataSize {
		return 0, errors.New("the data bytes are over")
	}

	bits := uint64(0)
	for i := 0; i < 8; i++ {
		bits = bits<<8 | uint64(g.data[g.position])
		g.position++
	}

	result := math.Float64frombits(bits)

	return result, nil
}
implement struct, pointer and int generation 2024-04-11 13:38:58 +00:00			`package main`

			`import (`
			`"errors"`
implement string, float, complex 2024-04-19 13:00:23 +00:00			`"math"`
implement struct, pointer and int generation 2024-04-11 13:38:58 +00:00			`"reflect"`
			`)`

			`type Generator struct {`
implement map, array 2024-04-24 19:09:23 +00:00			`data []byte`
			`dataSize uint32`
			`position uint32`
			`mapStruct map[string]interface{}`
			`arrayStruct []interface{}`
implement struct, pointer and int generation 2024-04-11 13:38:58 +00:00			`}`

			`func NewGenerator(fuzzData []byte) *Generator {`
			`return &Generator{`
			`data: fuzzData,`
			`dataSize: uint32(len(fuzzData)),`
			`}`
			`}`

			`func (g *Generator) fillAny(any reflect.Value) error {`
			`switch any.Kind() {`
			`case reflect.Struct:`
			`for i := 0; i < any.NumField(); i++ {`
			`err := g.fillAny(any.Field(i))`
			`if err != nil {`
			`return err`
			`}`
			`}`

			`case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:`
			`newInt, err := g.GenerateInt()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetInt(int64(newInt))`

			`case reflect.Ptr:`
			`any.Set(reflect.New(any.Type().Elem()))`
			`err := g.fillAny(any.Elem())`
			`if err != nil {`
			`return err`
			`}`

implement string, float, complex 2024-04-19 13:00:23 +00:00			`case reflect.String:`
			`str, err := g.GenerateString()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetString(str)`

			`case reflect.Float32:`
			`newFloat, err := g.GenerateFloat32()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetFloat(float64(newFloat))`

			`case reflect.Float64:`
			`newFloat, err := g.GenerateFloat64()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetFloat(float64(newFloat))`

			`case reflect.Complex64:`
			`newFloatReal, err := g.GenerateFloat32()`
			`if err != nil {`
			`return err`
			`}`
			`newFloatImag, err := g.GenerateFloat32()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetComplex(complex(float64(newFloatReal), float64(newFloatImag)))`

			`case reflect.Complex128:`
			`newFloatReal, err := g.GenerateFloat64()`
			`if err != nil {`
			`return err`
			`}`
			`newFloatImag, err := g.GenerateFloat64()`
			`if err != nil {`
			`return err`
			`}`
			`any.SetComplex(complex(newFloatReal, newFloatImag))`

implement map, array 2024-04-24 19:09:23 +00:00			`case reflect.Map:`
			`any.Set(reflect.MakeMap(any.Type()))`

			`mapLen, err := g.GenerateUInt32()`
			`if err != nil {`
			`return err`
			`}`

			`for i := uint32(0); i < mapLen; i++ {`
			`key := fmt.Sprintf("key%d", i)`
			`mapValue := reflect.New(any.Type().Elem())`
			`err := g.fillAny(mapValue.Elem())`
			`if err != nil {`
			`return err`
			`}`
			`any.SetMapIndex(reflect.ValueOf(key), mapValue.Elem())`
			`}`

			`case reflect.Array:`
			`any.Set(reflect.New(any.Type()).Elem())`
			`arrayLen := any.Len()`
			`for i := 0; i < arrayLen; i++ {`
			`arrayValue := reflect.New(any.Type().Elem())`
			`err := g.fillAny(arrayValue.Elem())`
			`if err != nil {`
			`return err`
			`}`
			`any.Index(i).Set(arrayValue.Elem())`
			`}`

implement struct, pointer and int generation 2024-04-11 13:38:58 +00:00			`default:`
			`panic("unhandled default case")`
			`}`
			`return nil`
			`}`

			`func (g *Generator) GenerateStruct(targetStruct interface{}) error {`
			`e := reflect.ValueOf(targetStruct).Elem()`
			`return g.fillAny(e)`
			`}`

			`func (g *Generator) GenerateInt() (int, error) {`
			`if g.position >= g.dataSize {`
			`return 0, errors.New("the data bytes are over")`
			`}`
			`result := int(g.data[g.position])`
			`g.position++`
			`return result, nil`
			`}`
implement string, float, complex 2024-04-19 13:00:23 +00:00
			`func (g *Generator) GenerateUInt32() (uint32, error) {`
			`if g.position+3 >= g.dataSize {`
			`return 0, errors.New("the data bytes are over")`
			`}`
			`result := uint32(0)`
			`for i := 0; i < 4; i++ {`
			`result = result<<8 \| uint32(g.data[g.position])`
			`g.position++`
			`}`
			`return result, nil`
			`}`

			`func (g *Generator) GenerateString() (string, error) {`
			`maxStrLength := uint32(2000000)`

			`if g.position >= g.dataSize {`
			`return "nil", errors.New("the data bytes are over")`
			`}`

			`length, err := g.GenerateUInt32()`
			`if err != nil {`
			`return "nil", errors.New("the data bytes are over")`
			`}`

			`if g.position > maxStrLength {`
			`return "nil", errors.New("the string length too large")`
			`}`

			`startBytePos := g.position`
			`if startBytePos >= g.dataSize {`
			`return "nil", errors.New("the data bytes are over")`
			`}`

			`if startBytePos+length > g.dataSize {`
			`return "nil", errors.New("the data bytes are over")`
			`}`

			`if startBytePos > startBytePos+length {`
			`return "nil", errors.New("overflow")`
			`}`

			`g.position = startBytePos + length`
			`result := string(g.data[startBytePos:g.position])`

			`return result, nil`
			`}`

			`func (g *Generator) GenerateFloat32() (float32, error) {`
			`if g.position+3 >= g.dataSize {`
			`return 0, errors.New("the data bytes are over")`
			`}`

			`bits := uint32(0)`
			`for i := 0; i < 4; i++ {`
			`bits = bits<<8 \| uint32(g.data[g.position])`
			`g.position++`
			`}`

			`floatBits := uint32(math.Float32bits(math.Float32frombits(bits)))`
			`result := math.Float32frombits(floatBits)`

			`return result, nil`
			`}`

			`func (g *Generator) GenerateFloat64() (float64, error) {`
			`if g.position+7 >= g.dataSize {`
			`return 0, errors.New("the data bytes are over")`
			`}`

			`bits := uint64(0)`
			`for i := 0; i < 8; i++ {`
			`bits = bits<<8 \| uint64(g.data[g.position])`
			`g.position++`
			`}`

			`result := math.Float64frombits(bits)`

			`return result, nil`
			`}`