2015-12-11 18:25:45 +01:00
|
|
|
/*
|
|
|
|
|
* Copyright (c) 2015 The WebRTC project authors. All Rights Reserved.
|
|
|
|
|
*
|
|
|
|
|
* Use of this source code is governed by a BSD-style license
|
|
|
|
|
* that can be found in the LICENSE file in the root of the source
|
|
|
|
|
* tree. An additional intellectual property rights grant can be found
|
|
|
|
|
* in the file PATENTS. All contributing project authors may
|
|
|
|
|
* be found in the AUTHORS file in the root of the source tree.
|
|
|
|
|
*/
|
2016-05-01 14:53:46 -07:00
|
|
|
|
|
|
|
|
#include <memory>
|
|
|
|
|
|
2018-07-02 17:28:07 +02:00
|
|
|
#include "modules/include/module_common_types_public.h"
|
2017-09-15 06:47:31 +02:00
|
|
|
#include "modules/rtp_rtcp/source/byte_io.h"
|
|
|
|
|
#include "modules/rtp_rtcp/source/fec_test_helper.h"
|
|
|
|
|
#include "modules/rtp_rtcp/source/ulpfec_generator.h"
|
|
|
|
|
#include "rtc_base/checks.h"
|
2019-09-03 11:07:37 +02:00
|
|
|
#include "rtc_base/copy_on_write_buffer.h"
|
2020-03-05 10:14:04 +01:00
|
|
|
#include "system_wrappers/include/clock.h"
|
2015-12-11 18:25:45 +01:00
|
|
|
|
|
|
|
|
namespace webrtc {
|
|
|
|
|
|
2016-09-20 23:16:28 -07:00
|
|
|
namespace {
|
|
|
|
|
constexpr uint8_t kFecPayloadType = 96;
|
|
|
|
|
constexpr uint8_t kRedPayloadType = 97;
|
|
|
|
|
} // namespace
|
|
|
|
|
|
2015-12-11 18:25:45 +01:00
|
|
|
void FuzzOneInput(const uint8_t* data, size_t size) {
|
2020-03-05 10:14:04 +01:00
|
|
|
SimulatedClock clock(1);
|
|
|
|
|
UlpfecGenerator generator(kRedPayloadType, kFecPayloadType, &clock);
|
2015-12-11 18:25:45 +01:00
|
|
|
size_t i = 0;
|
|
|
|
|
if (size < 4)
|
|
|
|
|
return;
|
2016-04-27 00:18:41 +02:00
|
|
|
FecProtectionParams params = {
|
|
|
|
|
data[i++] % 128, static_cast<int>(data[i++] % 10), kFecMaskBursty};
|
2020-03-05 10:14:04 +01:00
|
|
|
generator.SetProtectionParameters(params, params);
|
2015-12-11 18:25:45 +01:00
|
|
|
uint16_t seq_num = data[i++];
|
2018-06-15 14:54:16 +02:00
|
|
|
uint16_t prev_seq_num = 0;
|
2015-12-11 18:25:45 +01:00
|
|
|
while (i + 3 < size) {
|
|
|
|
|
size_t rtp_header_length = data[i++] % 10 + 12;
|
|
|
|
|
size_t payload_size = data[i++] % 10;
|
|
|
|
|
if (i + payload_size + rtp_header_length + 2 > size)
|
|
|
|
|
break;
|
2019-09-03 11:07:37 +02:00
|
|
|
rtc::CopyOnWriteBuffer packet(&data[i], payload_size + rtp_header_length);
|
|
|
|
|
packet.EnsureCapacity(IP_PACKET_SIZE);
|
2020-03-05 10:14:04 +01:00
|
|
|
// Write a valid parsable header (version = 2, no padding, no extensions,
|
|
|
|
|
// no CSRCs).
|
2021-01-12 11:44:05 +01:00
|
|
|
ByteWriter<uint8_t>::WriteBigEndian(packet.MutableData(), 2 << 6);
|
2018-06-15 14:54:16 +02:00
|
|
|
// Make sure sequence numbers are increasing.
|
2021-01-12 11:44:05 +01:00
|
|
|
ByteWriter<uint16_t>::WriteBigEndian(packet.MutableData() + 2, seq_num++);
|
2015-12-11 18:25:45 +01:00
|
|
|
i += payload_size + rtp_header_length;
|
2016-01-29 16:26:43 +01:00
|
|
|
const bool protect = data[i++] % 2 == 1;
|
2018-06-15 14:54:16 +02:00
|
|
|
|
|
|
|
|
// Check the sequence numbers are monotonic. In rare case the packets number
|
|
|
|
|
// may loop around and in the same FEC-protected group the packet sequence
|
|
|
|
|
// number became out of order.
|
2018-07-02 17:28:07 +02:00
|
|
|
if (protect && IsNewerSequenceNumber(seq_num, prev_seq_num) &&
|
|
|
|
|
seq_num < prev_seq_num + kUlpfecMaxMediaPackets) {
|
2020-03-05 10:14:04 +01:00
|
|
|
RtpPacketToSend rtp_packet(nullptr);
|
|
|
|
|
// Check that we actually have a parsable packet, we want to fuzz FEC
|
|
|
|
|
// logic, not RTP header parsing.
|
|
|
|
|
RTC_CHECK(rtp_packet.Parse(packet));
|
|
|
|
|
generator.AddPacketAndGenerateFec(rtp_packet);
|
2018-06-15 14:54:16 +02:00
|
|
|
prev_seq_num = seq_num;
|
2015-12-11 18:25:45 +01:00
|
|
|
}
|
2020-03-05 10:14:04 +01:00
|
|
|
|
|
|
|
|
generator.GetFecPackets();
|
2015-12-11 18:25:45 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} // namespace webrtc
|
