
Add fuzzing support for some libpurple features
2021-06-24, Jordy Zomer <>
Add fuzzing support for some libpurple features

Testing Done:

I built and tested all of these fuzzers for libpurple.

You can build them by first building pidgin/libpurple with `--enable-fuzzing` then going into `libpurple/tests` and run `make check`. After that you can run these fuzzers. With a dictionary if you want :)

for example:
$ ./fuzz_markup_strip_html -dict=dictionaries/html.dict
Dictionary: 465 entries
INFO: Seed: 2274862685
INFO: Loaded 1 modules (3 inline 8-bit counters): 3 [0x5a4ec0, 0x5a4ec3),
INFO: Loaded 1 PC tables (3 PCs): 3 [0x568ee8,0x568f18),
INFO: -max_len is not provided; libFuzzer will not generate inputs larger than 4096 bytes
INFO: A corpus is not provided, starting from an empty corpus
#2 INITED cov: 2 ft: 2 corp: 1/1b exec/s: 0 rss: 30Mb
#1048576 pulse cov: 2 ft: 2 corp: 1/1b lim: 4096 exec/s: 524288 rss: 789Mb
#2097152 pulse cov: 2 ft: 2 corp: 1/1b lim: 4096 exec/s: 524288 rss: 792Mb

Best Regards,

Jordy Zomer

Reviewed at
#include <dbus/dbus-glib.h>
#include <stdio.h>
#include <stdlib.h>
#include "dbus-purple.h"
#include "purple-client.h"
static DBusGConnection *bus;
static DBusGProxy *purple_proxy;
static GList *garray_int_to_glist(GArray *array)
GList *list = NULL;
gsize i;
for (i = 0; i < array->len; i++)
list = g_list_append(list, GINT_TO_POINTER(g_array_index(array,gint,i)));
g_array_free(array, TRUE);
return list;
static GSList *garray_int_to_gslist(GArray *array)
GSList *list = NULL;
gsize i;
for (i = 0; i < array->len; i++)
list = g_slist_append(list, GINT_TO_POINTER(g_array_index(array,gint,i)));
g_array_free(array, TRUE);
return list;
#include "purple-client-bindings.c"
static void lose(const char *fmt, ...) G_GNUC_NORETURN G_GNUC_PRINTF (1, 2);
static void lose_gerror(const char *prefix, GError *error) G_GNUC_NORETURN;
static void
lose(const char *str, ...)
va_list args;
va_start(args, str);
vfprintf(stderr, str, args);
fputc('\n', stderr);
static void
lose_gerror(const char *prefix, GError *error)
lose("%s: %s", prefix, error->message);
void purple_init(void)
GError *error = NULL;
#if !GLIB_CHECK_VERSION(2, 36, 0)
/* GLib type system is automaticaly initialized since 2.36. */
bus = dbus_g_bus_get (DBUS_BUS_SESSION, &error);
if (!bus)
lose_gerror ("Couldn't connect to session bus", error);
purple_proxy = dbus_g_proxy_new_for_name (bus,
if (!purple_proxy)
lose_gerror ("Couldn't connect to the Purple Service", error);