Adding fuzzers for StoragedService and StoragedPrivateService

    ],

    path: "binder",

}

cc_fuzz {

    name: "storaged_service_fuzzer",

    defaults: [

        "storaged_defaults",

        "service_fuzzer_defaults",

    ],

    srcs: ["tests/fuzzers/storaged_service_fuzzer.cpp"],

    static_libs: [

        "libstoraged",

    ],

}

cc_fuzz {

    name: "storaged_private_service_fuzzer",

    defaults: [

        "storaged_defaults",

        "service_fuzzer_defaults",

    ],

    srcs: ["tests/fuzzers/storaged_private_service_fuzzer.cpp"],

    static_libs: [

        "libstoraged",

    ],

}

 No newline at end of file

using namespace android::os;

using namespace android::os::storaged;

namespace android {

class StoragedService : public BinderService<StoragedService>, public BnStoraged {

private:

    void dumpUidRecordsDebug(int fd, const vector<struct uid_record>& entries);

sp<IStoragedPrivate> get_storaged_pri_service();

}  // namespace android

#endif /* _STORAGED_SERVICE_H_ */

 No newline at end of file

extern sp<storaged_t> storaged_sp;

namespace android {

status_t StoragedService::start() {

    return BinderService<StoragedService>::publish();

}

    return interface_cast<IStoragedPrivate>(binder);

}

}  // namespace android

 No newline at end of file

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

#include <fuzzbinder/libbinder_driver.h>

#include <storaged.h>

#include <storaged_service.h>

sp<storaged_t> storaged_sp;

extern "C" int LLVMFuzzerInitialize(int /**argc*/, char /****argv*/) {

    storaged_sp = new storaged_t();

    storaged_sp->init();

    return 0;

}

extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {

    auto storagedPrivateService = new StoragedPrivateService();

    fuzzService(storagedPrivateService, FuzzedDataProvider(data, size));

    return 0;

}

 No newline at end of file

/*

 * Copyright (C) 2023 The Android Open Source Project

 *

 * Licensed under the Apache License, Version 2.0 (the "License");

 * you may not use this file except in compliance with the License.

 * You may obtain a copy of the License at

 *

 *      http://www.apache.org/licenses/LICENSE-2.0

 *

 * Unless required by applicable law or agreed to in writing, software

 * distributed under the License is distributed on an "AS IS" BASIS,

 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

 * See the License for the specific language governing permissions and

 * limitations under the License.

 */

#include <fuzzbinder/libbinder_driver.h>

#include <storaged.h>

#include <storaged_service.h>

sp<storaged_t> storaged_sp;

extern "C" int LLVMFuzzerInitialize(int /**argc*/, char /****argv*/) {

    storaged_sp = new storaged_t();

    storaged_sp->init();

    return 0;

}

extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {

    auto storagedService = new StoragedService();

    fuzzService(storagedService, FuzzedDataProvider(data, size));

    return 0;

}

 No newline at end of file