All the extractors have a common API - creating a data source, extraction of all the tracks, etc. These common APIs have been abstracted in a base class called ExtractorFuzzerBase to ensure code is reused between fuzzer plugins.
Additionally, ExtractorFuzzerBase also has support for memory based buffer BufferSource since the fuzzing engine feeds data using memory buffers and usage of standard data source objects like FileSource, HTTPSource, etc. is not feasible.
The fuzzer plugin for MP4 extractor uses the ExtractorFuzzerBase class and implements only the createExtractor to create the MP4 extractor class.
Dict file (dictionary file) is created for MP4 to ensure that the required MP4 atoms are present in every input file that goes to the fuzzer. This ensures that larger code gets covered as a range of MP4 atoms will be present in the input data.
This describes steps to build mp4_extractor_fuzzer binary.
Build the fuzzer
$ mm -j$(nproc) mp4_extractor_fuzzer
Create a directory CORPUS_DIR and copy some MP4 files to that folder Push this directory to device.
To run on device
$ adb sync data $ adb shell /data/fuzz/arm64/mp4_extractor_fuzzer/mp4_extractor_fuzzer CORPUS_DIR
The fuzzer plugin for WAV extractor uses the ExtractorFuzzerBase class and implements only the createExtractor to create the WAV extractor class.
This describes steps to build wav_extractor_fuzzer binary.
Build the fuzzer
$ mm -j$(nproc) wav_extractor_fuzzer
Create a directory CORPUS_DIR and copy some wav files to that folder Push this directory to device.
To run on device
$ adb sync data $ adb shell /data/fuzz/arm64/wav_extractor_fuzzer/wav_extractor_fuzzer CORPUS_DIR
The fuzzer plugin for MP3 extractor uses the ExtractorFuzzerBase class and implements only the createExtractor to create the MP3 extractor class.
This describes steps to build mp3_extractor_fuzzer binary.
Build the fuzzer
$ mm -j$(nproc) mp3_extractor_fuzzer
Create a directory CORPUS_DIR and copy some mp3 files to that folder Push this directory to device.
To run on device
$ adb sync data $ adb shell /data/fuzz/arm64/mp3_extractor_fuzzer/mp3_extractor_fuzzer CORPUS_DIR
The fuzzer plugin for AAC extractor uses the ExtractorFuzzerBase class and implements only the createExtractor to create the AAC extractor class.
This describes steps to build aac_extractor_fuzzer binary.
Build the fuzzer
$ mm -j$(nproc) aac_extractor_fuzzer
Create a directory CORPUS_DIR and copy some aac files to that folder Push this directory to device.
To run on device
$ adb sync data $ adb shell /data/fuzz/arm64/aac_extractor_fuzzer/aac_extractor_fuzzer CORPUS_DIR