From 7cfb15cfb6e651879e972b6d07377b77d997bb15 Mon Sep 17 00:00:00 2001
From: Arthur Chan <arthur.chan@adalogics.com>
Date: Mon, 21 Oct 2024 13:46:57 +0000
Subject: [PATCH 1/2] OSS-Fuzz: OSS-Fuzz integration and new fuzzers

Signed-off-by: Arthur Chan <arthur.chan@adalogics.com>
---
 fuzz/Cargo.toml                      |  4 ++
 fuzz/fuzz_targets/fuzz_conversion.rs | 65 ++++++++++++++++++++++++++++
 2 files changed, 69 insertions(+)
 create mode 100644 fuzz/fuzz_targets/fuzz_conversion.rs

diff --git a/fuzz/Cargo.toml b/fuzz/Cargo.toml
index cb1951c..13607f9 100644
--- a/fuzz/Cargo.toml
+++ b/fuzz/Cargo.toml
@@ -20,3 +20,7 @@ members = ["."]
 [[bin]]
 name = "fuzz_target_1"
 path = "fuzz_targets/fuzz_target_1.rs"
+
+[[bin]]
+name = "fuzz_conversion"
+path = "fuzz_targets/fuzz_conversion.rs"
diff --git a/fuzz/fuzz_targets/fuzz_conversion.rs b/fuzz/fuzz_targets/fuzz_conversion.rs
new file mode 100644
index 0000000..44b8ec5
--- /dev/null
+++ b/fuzz/fuzz_targets/fuzz_conversion.rs
@@ -0,0 +1,65 @@
+// Copyright 2024 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+#![no_main]
+
+#[macro_use] extern crate libfuzzer_sys;
+extern crate httpdate;
+
+use httpdate::HttpDate;
+use std::time::{SystemTime, UNIX_EPOCH};
+use std::convert::TryInto;
+
+fuzz_target!(|data: &[u8]| {
+    // Skip this round if data is not enough
+    if data.len() < 8 {
+        return;
+    }
+
+    // Create system time object
+    let secs_since_epoch = u64::from_le_bytes(data[0..8].try_into().unwrap_or_default());
+    let duration = std::time::Duration::from_secs(secs_since_epoch);
+    let system_time = match UNIX_EPOCH.checked_add(duration) {
+        Some(time) => time,
+        None => return,
+    };
+
+    // Skip value that could make HttpDate panic
+    if secs_since_epoch >= 253402300800 {
+        return;
+    }
+
+    // Fuzz other functions
+    let http_date = HttpDate::from(system_time);
+    let _ = SystemTime::from(http_date);
+    let _ = http_date.to_string();
+
+    // Fuzz partial_cmp if enough data is left
+    if data.len() >= 16 {
+        let other_secs_since_epoch = u64::from_le_bytes(data[8..16].try_into().unwrap_or_default());
+        let other_duration = std::time::Duration::from_secs(other_secs_since_epoch);
+        let other_system_time = match UNIX_EPOCH.checked_add(other_duration) {
+            Some(time) => time,
+            None => return,
+        };
+
+        // Skip value that could make HttpDate panic
+        if other_secs_since_epoch >= 253402300800 {
+            return;
+        }
+
+        let other_http_date = HttpDate::from(other_system_time);
+        let _ = http_date.partial_cmp(&other_http_date);
+    }
+});

From 227cdf3d7f642cc96bca47c36b1fcb3d0368664c Mon Sep 17 00:00:00 2001
From: Arthur Chan <arthur.chan@adalogics.com>
Date: Tue, 10 Dec 2024 16:42:55 +0000
Subject: [PATCH 2/2] Fix fuzzers

Signed-off-by: Arthur Chan <arthur.chan@adalogics.com>
---
 fuzz/Cargo.toml                                    |  4 ++--
 fuzz/fuzz_targets/fuzz_conversion.rs               | 14 --------------
 .../{fuzz_target_1.rs => fuzz_parse.rs}            |  0
 3 files changed, 2 insertions(+), 16 deletions(-)
 rename fuzz/fuzz_targets/{fuzz_target_1.rs => fuzz_parse.rs} (100%)

diff --git a/fuzz/Cargo.toml b/fuzz/Cargo.toml
index 13607f9..31c6f9b 100644
--- a/fuzz/Cargo.toml
+++ b/fuzz/Cargo.toml
@@ -18,8 +18,8 @@ git = "https://github.com/rust-fuzz/libfuzzer-sys.git"
 members = ["."]
 
 [[bin]]
-name = "fuzz_target_1"
-path = "fuzz_targets/fuzz_target_1.rs"
+name = "fuzz_parse"
+path = "fuzz_targets/fuzz_parse.rs"
 
 [[bin]]
 name = "fuzz_conversion"
diff --git a/fuzz/fuzz_targets/fuzz_conversion.rs b/fuzz/fuzz_targets/fuzz_conversion.rs
index 44b8ec5..b56db76 100644
--- a/fuzz/fuzz_targets/fuzz_conversion.rs
+++ b/fuzz/fuzz_targets/fuzz_conversion.rs
@@ -1,17 +1,3 @@
-// Copyright 2024 Google LLC
-//
-// Licensed under the Apache License, Version 2.0 (the "License");
-// you may not use this file except in compliance with the License.
-// You may obtain a copy of the License at
-//
-//      http://www.apache.org/licenses/LICENSE-2.0
-//
-// Unless required by applicable law or agreed to in writing, software
-// distributed under the License is distributed on an "AS IS" BASIS,
-// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-// See the License for the specific language governing permissions and
-// limitations under the License.
-
 #![no_main]
 
 #[macro_use] extern crate libfuzzer_sys;
diff --git a/fuzz/fuzz_targets/fuzz_target_1.rs b/fuzz/fuzz_targets/fuzz_parse.rs
similarity index 100%
rename from fuzz/fuzz_targets/fuzz_target_1.rs
rename to fuzz/fuzz_targets/fuzz_parse.rs