Limit pdf_codec_fax_fuzzer input size. Larger inputs probably do not improve coverage. BUG=chromium:910505 Change-Id: I9a2fb4a1c1addbae8f5bd24db018b5be1ef5bb9d Reviewed-on: https://pdfium-review.googlesource.com/c/46612 Reviewed-by: Tom Sepez <tsepez@chromium.org> Commit-Queue: Lei Zhang <thestig@chromium.org>

commit: 51340b520686e85ac182d22de352e237047e3b4c [log] [tgz]
author: Lei Zhang <thestig@chromium.org> Thu Dec 06 20:38:04 2018 +0000
committer: Chromium commit bot <commit-bot@chromium.org> Thu Dec 06 20:38:04 2018 +0000
tree: 1ebe8ac25aa17f178c6d499ffb1bde3d829386cc
parent: f1038808a9c8f9735362bb11a4d061a2ab025129 [diff]
diff --git a/testing/fuzzers/pdf_codec_fax_fuzzer.cc b/testing/fuzzers/pdf_codec_fax_fuzzer.cc
index 1d0b0f8..96cae23 100644
--- a/testing/fuzzers/pdf_codec_fax_fuzzer.cc
+++ b/testing/fuzzers/pdf_codec_fax_fuzzer.cc

@@ -13,10 +13,15 @@
 }
 
 extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
-  const int kParameterSize = 21;
+  static constexpr size_t kParameterSize = 21;
   if (size < kParameterSize)
     return 0;
 
+  // Limit data size to prevent fuzzer timeout.
+  static constexpr size_t kMaxDataSize = 256 * 1024;
+  if (size > kParameterSize + kMaxDataSize)
+    return 0;
+
   int width = GetInteger(data);
   int height = GetInteger(data + 4);
   int K = GetInteger(data + 8);
commit	51340b520686e85ac182d22de352e237047e3b4c	[log] [tgz]
author	Lei Zhang <thestig@chromium.org>	Thu Dec 06 20:38:04 2018 +0000
committer	Chromium commit bot <commit-bot@chromium.org>	Thu Dec 06 20:38:04 2018 +0000
tree	1ebe8ac25aa17f178c6d499ffb1bde3d829386cc
parent	f1038808a9c8f9735362bb11a4d061a2ab025129 [diff]