1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-22 13:34:15 +03:00

fuzz: fix lzxpress plain round-trip fuzzer

The 'compressed' string can be about 9/8 the size of the decompressed
string, but we didn't allow enough memory in the fuzz target for that.
Then when it failed, we didn't check.

Credit to OSSFuzz.

Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Jeremy Allison <jra@samba.org>
This commit is contained in:
Douglas Bagnall 2022-12-04 11:47:56 +13:00 committed by Jeremy Allison
parent 6f77b376d4
commit e7489be7be

View File

@ -27,7 +27,7 @@ int LLVMFuzzerInitialize(int *argc, char ***argv)
int LLVMFuzzerTestOneInput(uint8_t *buf, size_t len)
{
static uint8_t compressed[1024 * 1024] = {0};
static uint8_t compressed[1024 * 1280] = {0};
static uint8_t decompressed[1024 * 1024] = {0};
ssize_t compressed_size;
ssize_t decompressed_size;
@ -38,6 +38,9 @@ int LLVMFuzzerTestOneInput(uint8_t *buf, size_t len)
compressed_size = lzxpress_compress(buf, len,
compressed, sizeof(compressed));
if (compressed_size < 0) {
abort();
}
decompressed_size = lzxpress_decompress(compressed, compressed_size,
decompressed, sizeof(decompressed));