dany/libwebp
1
0
Fork 0
mirror of https://github.com/webmproject/libwebp.git synced 2025-04-05 00:16:50 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

Compare kFuzzPxLimit to max_num_operations

Browse Source 
To avoid timeouts caused by extreme rescaling such as
1x14339 -> 51712x1

Change-Id: I291d8e3b24155c190256411a506b7312abde8c45
This commit is contained in:
Yannis Guyon 2023-05-16 13:20:14 +02:00
parent ed27437160
commit 2d547e24dc
1 changed files with 7 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
tests/fuzzer/advanced_api_fuzzer.c
View File

@ -88,10 +88,13 @@ int LLVMFuzzerTestOneInput(const uint8_t* const data, size_t size) {
fuzz_px_limit /= 2; fuzz_px_limit /= 2;
} }
// A big output canvas can lead to out-of-memory and timeout issues, // A big output canvas can lead to out-of-memory and timeout issues,
// but a big internal working buffer can too. // but a big internal working buffer can too. Also, rescaling from a
if ((uint64_t)scaled_width * scaled_height > fuzz_px_limit || // very wide input image to a very tall canvas can be as slow as
(uint64_t)config.input.width * config.input.height > // decoding a huge number of pixels. Avoid timeouts due to these.
fuzz_px_limit) { const uint64_t max_num_operations =
(uint64_t)Max(scaled_width, config.input.width) *
Max(scaled_height, config.input.height);
if (max_num_operations > fuzz_px_limit) {
break; break;
} }
} }