mirror of
https://github.com/samba-team/samba.git
synced 2024-12-22 13:34:15 +03:00
fuzz: fix lzxpress plain round-trip fuzzer
The 'compressed' string can be about 9/8 the size of the decompressed string, but we didn't allow enough memory in the fuzz target for that. Then when it failed, we didn't check. Credit to OSSFuzz. Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz> Reviewed-by: Jeremy Allison <jra@samba.org>
This commit is contained in:
parent
6f77b376d4
commit
e7489be7be
@ -27,7 +27,7 @@ int LLVMFuzzerInitialize(int *argc, char ***argv)
|
||||
|
||||
int LLVMFuzzerTestOneInput(uint8_t *buf, size_t len)
|
||||
{
|
||||
static uint8_t compressed[1024 * 1024] = {0};
|
||||
static uint8_t compressed[1024 * 1280] = {0};
|
||||
static uint8_t decompressed[1024 * 1024] = {0};
|
||||
ssize_t compressed_size;
|
||||
ssize_t decompressed_size;
|
||||
@ -38,6 +38,9 @@ int LLVMFuzzerTestOneInput(uint8_t *buf, size_t len)
|
||||
|
||||
compressed_size = lzxpress_compress(buf, len,
|
||||
compressed, sizeof(compressed));
|
||||
if (compressed_size < 0) {
|
||||
abort();
|
||||
}
|
||||
|
||||
decompressed_size = lzxpress_decompress(compressed, compressed_size,
|
||||
decompressed, sizeof(decompressed));
|
||||
|
Loading…
Reference in New Issue
Block a user