sergiotarxz
/
libvips
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
7,635 Commits 1 Branch 0 Tags 76 MiB
Commit Graph

5 Commits

Author SHA1 Message Date
John Cupitt cb1634dd31 block fuzz data over 100kb 
Many codecs can take a huge amount of time attempting to read large
random objects. jpeg_read_header(), for example, can take ~10s on a 1mb
of random data.

Ignore fuzz objects over 100kb.

See https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24383
 2020-07-25 14:46:44 +01:00
John Cupitt 7c5971392c tighten fuzz size limits 
we are still seeing timeouts
 2019-10-30 08:57:46 +00:00
John Cupitt d81efda782 better blocking of large input images in the fuzzer 
things like 65494x5 pixel PNGs were being allowed through and caused
timeouts
 2019-08-09 16:45:08 +01:00
Oscar Mira 45de60e571 skip large images in the fuzzers not in the lib 
This reverts commit 0accdf858b.
 2019-08-02 17:56:33 +02:00
Oscar Mira 3ea72c286e improve fuzz targets and oss-fuzz integration 
It replaces current fuzz setup with 5 new fuzzers integrating them with
top-level Makefile. It now supports multiple fuzzing engines and Google's
oss-fuzz. By default, the fuzzers are linked against an standalone runner to
easily reproduce bugs.
 2019-07-15 14:02:27 +02:00