Commit Graph

16 Commits

Author SHA1 Message Date
John Cupitt
54ce3513fd add some corpus ascii files
some sample images for the file loader
2019-08-23 12:50:33 +01:00
John Cupitt
1de458556a try adding a file fuzzer
oss-fuzz normally fuzzes with memory buffers, but a lot of the libvips
loadres, especially CSV and PPM, only work from the filesystem.

This fuzzer writes the oss-fuzz buffer to the FS, then fuzzes that.
2019-08-23 12:43:59 +01:00
John Cupitt
19a80e4efb Merge branch '8.8' 2019-08-21 17:37:16 +01:00
Oscar Mira
a3466f305c move fuzzing corpus into a single dir 2019-08-19 19:54:56 +02:00
Oscar Mira
16a5cac2e3 add fuzzers for vips_smartcrop and vip_mosaic 2019-08-19 18:51:37 +02:00
John Cupitt
d81efda782 better blocking of large input images in the fuzzer
things like 65494x5 pixel PNGs were being allowed through and caused
timeouts
2019-08-09 16:45:08 +01:00
John Cupitt
7abe129ac4 don't invert signed ints in tiffload 2019-08-07 17:08:18 +01:00
John Cupitt
6ba34e479e better shrinkv for int32 types
use double as the sum type to prevent int overflow
2019-08-06 16:55:10 +01:00
Oscar Mira
4304ef35ee add already fixed testcases to fuzz corpus 2019-08-06 13:37:41 +02:00
Oscar Mira
7c8af4e78a remove stale file 2019-08-06 13:37:41 +02:00
Oscar Mira
78c0014708 add UBSAN sanitizer 2019-08-02 19:46:42 +02:00
Oscar Mira
45de60e571 skip large images in the fuzzers not in the lib
This reverts commit 0accdf858b.
2019-08-02 17:56:33 +02:00
John Cupitt
a6fbf1af36
Merge pull request #1264 from omira-sch/add-oss-fuzz
improve fuzz targets and oss-fuzz integration
2019-07-21 17:48:58 +01:00
John Cupitt
9063b8608e revise README 2019-07-18 08:43:41 +01:00
Oscar Mira
f2745e19c9 add check script for regression testing
Run the fuzz targets over the seed corpus with the standalone driver as part of
the test suite.
2019-07-15 14:02:27 +02:00
Oscar Mira
3ea72c286e improve fuzz targets and oss-fuzz integration
It replaces current fuzz setup with 5 new fuzzers integrating them with
top-level Makefile. It now supports multiple fuzzing engines and Google's
oss-fuzz. By default, the fuzzers are linked against an standalone runner to
easily reproduce bugs.
2019-07-15 14:02:27 +02:00