1 /*
2  * Copyright 2020 The Android Open Source Project
3  *
4  * Licensed under the Apache License, Version 2.0 (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  *
8  *      http://www.apache.org/licenses/LICENSE-2.0
9  *
10  * Unless required by applicable law or agreed to in writing, software
11  * distributed under the License is distributed on an "AS IS" BASIS,
12  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13  * See the License for the specific language governing permissions and
14  * limitations under the License.
15  */
16 
17 #ifndef BT_STACK_FUZZ_A2DP_HELPERS_H_
18 #define BT_STACK_FUZZ_A2DP_HELPERS_H_
19 
20 // NOTE: This file should not be included directly.
21 //       It is included by the corresponding "...Functions.h" file.
22 
23 #include <fuzzer/FuzzedDataProvider.h>
24 #include <vector>
25 #include "bt_target.h"
26 #include "bt_trace.h"
27 #include "fuzzers/sdp/sdpFuzzHelpers.h"
28 #include "osi/include/allocator.h"
29 #include "stack/a2dp/a2dp_int.h"
30 
31 #define MAX_DB_SIZE 4096
32 
generateDBParams(FuzzedDataProvider * fdp)33 tA2DP_SDP_DB_PARAMS generateDBParams(FuzzedDataProvider* fdp) {
34   std::vector<uint16_t> attr_list = generateArbitraryAttrList(fdp);
35 
36   tA2DP_SDP_DB_PARAMS db_params;
37   db_params.db_len = fdp->ConsumeIntegralInRange<uint32_t>(0, MAX_DB_SIZE);
38   db_params.num_attr = attr_list.size();
39   db_params.p_attrs = attr_list.empty() ? nullptr : attr_list.data();
40 
41   return db_params;
42 }
43 
44 // Define our empty callback function
a2dp_find_callback(bool found,tA2DP_Service * p_service,const RawAddress & peer_address)45 void a2dp_find_callback(bool found, tA2DP_Service* p_service,
46                         const RawAddress& peer_address) {
47   // Free the RawAddress we created in the generate function
48   delete &peer_address;
49 }
50 
51 // Function to clean up and clear our allocated objects
cleanupA2dpFuzz()52 void cleanupA2dpFuzz() {
53   // Delete our a2dp_cb database if it exists
54   if (a2dp_cb.find.p_db) {
55     osi_free(a2dp_cb.find.p_db);
56   }
57   // This function resets the a2dp_cb global to defaults
58   A2DP_Init();
59 
60   // SDP needs to perform cleanup as well.
61   cleanupSdpFuzz();
62 }
63 
64 #endif  // BT_STACK_FUZZ_A2DP_HELPERS_H_
65