From 3997a73384cdc569247328dcd6355b60cf86f4fd Mon Sep 17 00:00:00 2001
From: TaowerfulMAX <liurantao@huawei.com>
Date: Mon, 8 Sep 2025 20:16:23 +0800
Subject: [PATCH 1/2] fix: solve hook malloc fuzz OOM at 64-bits system.

Signed-off-by: TaowerfulMAX <liurantao@huawei.com>
---
 .../test/fuzztest/hookmalloc_fuzzer/hookmalloc_fuzzer.cpp      | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/hookmalloc_fuzzer.cpp b/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/hookmalloc_fuzzer.cpp
index bc0da35e7..26c8983ae 100644
--- a/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/hookmalloc_fuzzer.cpp
+++ b/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/hookmalloc_fuzzer.cpp
@@ -17,6 +17,7 @@
 
 namespace OHOS {
 constexpr unsigned int WAIT_THREAD_TIME = 3;
+constexpr size_t MAX_MALLOC_SIZE = 1024 * 1024 * 1024; // bigger may over rss litmit
 bool FuzzMallocHookTest(const uint8_t* data, size_t size)
 {
     if (data == nullptr || size == 0) {
@@ -24,7 +25,7 @@ bool FuzzMallocHookTest(const uint8_t* data, size_t size)
     }
 
     FuzzedDataProvider provider(data, size);
-    auto sizeHook = provider.ConsumeIntegral<size_t>();
+    auto sizeHook = provider.ConsumeIntegral<size_t>() % MAX_MALLOC_SIZE;
     ohos_malloc_hook_initialize(&__libc_malloc_default_dispatch, nullptr, nullptr);
     ohos_malloc_hook_on_start(nullptr);
 
-- 
Gitee


From fde3bd6f3eb9679a7ad15824451a3c6660e0b5f2 Mon Sep 17 00:00:00 2001
From: TaowerfulMAX <liurantao@huawei.com>
Date: Mon, 8 Sep 2025 20:18:53 +0800
Subject: [PATCH 2/2] fix: reduce the hook fuzz testing time to the standard
 duration.

Signed-off-by: TaowerfulMAX <liurantao@huawei.com>
---
 .../native_hook/test/fuzztest/hookinit_fuzzer/project.xml       | 2 +-
 .../native_hook/test/fuzztest/hookmalloc_fuzzer/project.xml     | 2 +-
 .../native_hook/test/fuzztest/hookmiscdata_fuzzer/project.xml   | 2 +-
 .../native_hook/test/fuzztest/hookprctl_fuzzer/project.xml      | 2 +-
 .../native_hook/test/fuzztest/hookset_fuzzer/project.xml        | 2 +-
 5 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/device/plugins/native_hook/test/fuzztest/hookinit_fuzzer/project.xml b/device/plugins/native_hook/test/fuzztest/hookinit_fuzzer/project.xml
index 741c1d5df..ff1fff9f1 100644
--- a/device/plugins/native_hook/test/fuzztest/hookinit_fuzzer/project.xml
+++ b/device/plugins/native_hook/test/fuzztest/hookinit_fuzzer/project.xml
@@ -18,7 +18,7 @@
     <!-- maximum length of a test input -->
     <max_len>1000</max_len>
     <!-- maximum total time in seconds to run the fuzzer -->
-    <max_total_time>300</max_total_time>
+    <max_total_time>120</max_total_time>
     <!-- memory usage limit in Mb -->
     <rss_limit_mb>4096</rss_limit_mb>
   </fuzztest>
diff --git a/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/project.xml b/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/project.xml
index 741c1d5df..ff1fff9f1 100644
--- a/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/project.xml
+++ b/device/plugins/native_hook/test/fuzztest/hookmalloc_fuzzer/project.xml
@@ -18,7 +18,7 @@
     <!-- maximum length of a test input -->
     <max_len>1000</max_len>
     <!-- maximum total time in seconds to run the fuzzer -->
-    <max_total_time>300</max_total_time>
+    <max_total_time>120</max_total_time>
     <!-- memory usage limit in Mb -->
     <rss_limit_mb>4096</rss_limit_mb>
   </fuzztest>
diff --git a/device/plugins/native_hook/test/fuzztest/hookmiscdata_fuzzer/project.xml b/device/plugins/native_hook/test/fuzztest/hookmiscdata_fuzzer/project.xml
index 741c1d5df..ff1fff9f1 100644
--- a/device/plugins/native_hook/test/fuzztest/hookmiscdata_fuzzer/project.xml
+++ b/device/plugins/native_hook/test/fuzztest/hookmiscdata_fuzzer/project.xml
@@ -18,7 +18,7 @@
     <!-- maximum length of a test input -->
     <max_len>1000</max_len>
     <!-- maximum total time in seconds to run the fuzzer -->
-    <max_total_time>300</max_total_time>
+    <max_total_time>120</max_total_time>
     <!-- memory usage limit in Mb -->
     <rss_limit_mb>4096</rss_limit_mb>
   </fuzztest>
diff --git a/device/plugins/native_hook/test/fuzztest/hookprctl_fuzzer/project.xml b/device/plugins/native_hook/test/fuzztest/hookprctl_fuzzer/project.xml
index 741c1d5df..ff1fff9f1 100644
--- a/device/plugins/native_hook/test/fuzztest/hookprctl_fuzzer/project.xml
+++ b/device/plugins/native_hook/test/fuzztest/hookprctl_fuzzer/project.xml
@@ -18,7 +18,7 @@
     <!-- maximum length of a test input -->
     <max_len>1000</max_len>
     <!-- maximum total time in seconds to run the fuzzer -->
-    <max_total_time>300</max_total_time>
+    <max_total_time>120</max_total_time>
     <!-- memory usage limit in Mb -->
     <rss_limit_mb>4096</rss_limit_mb>
   </fuzztest>
diff --git a/device/plugins/native_hook/test/fuzztest/hookset_fuzzer/project.xml b/device/plugins/native_hook/test/fuzztest/hookset_fuzzer/project.xml
index 741c1d5df..ff1fff9f1 100644
--- a/device/plugins/native_hook/test/fuzztest/hookset_fuzzer/project.xml
+++ b/device/plugins/native_hook/test/fuzztest/hookset_fuzzer/project.xml
@@ -18,7 +18,7 @@
     <!-- maximum length of a test input -->
     <max_len>1000</max_len>
     <!-- maximum total time in seconds to run the fuzzer -->
-    <max_total_time>300</max_total_time>
+    <max_total_time>120</max_total_time>
     <!-- memory usage limit in Mb -->
     <rss_limit_mb>4096</rss_limit_mb>
   </fuzztest>
-- 
Gitee