libvips

Commit Graph

Author	SHA1	Message	Date
John Cupitt	cb1634dd31	block fuzz data over 100kb Many codecs can take a huge amount of time attempting to read large random objects. jpeg_read_header(), for example, can take ~10s on a 1mb of random data. Ignore fuzz objects over 100kb. See https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24383	2020-07-25 14:46:44 +01:00
John Cupitt	7c5971392c	tighten fuzz size limits we are still seeing timeouts	2019-10-30 08:57:46 +00:00
John Cupitt	1de458556a	try adding a file fuzzer oss-fuzz normally fuzzes with memory buffers, but a lot of the libvips loadres, especially CSV and PPM, only work from the filesystem. This fuzzer writes the oss-fuzz buffer to the FS, then fuzzes that.	2019-08-23 12:43:59 +01:00

Author

SHA1

Message

Date

John Cupitt

cb1634dd31

block fuzz data over 100kb

Many codecs can take a huge amount of time attempting to read large
random objects. jpeg_read_header(), for example, can take ~10s on a 1mb
of random data.

Ignore fuzz objects over 100kb.

See https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24383

2020-07-25 14:46:44 +01:00

John Cupitt

7c5971392c

tighten fuzz size limits

we are still seeing timeouts

2019-10-30 08:57:46 +00:00

John Cupitt

1de458556a

try adding a file fuzzer

oss-fuzz normally fuzzes with memory buffers, but a lot of the libvips
loadres, especially CSV and PPM, only work from the filesystem.

This fuzzer writes the oss-fuzz buffer to the FS, then fuzzes that.

2019-08-23 12:43:59 +01:00

3 Commits