Limit pdf_codec_fax_fuzzer input size.
Larger inputs probably do not improve coverage.
BUG=chromium:910505
Change-Id: I9a2fb4a1c1addbae8f5bd24db018b5be1ef5bb9d
Reviewed-on: https://pdfium-review.googlesource.com/c/46612
Reviewed-by: Tom Sepez <tsepez@chromium.org>
Commit-Queue: Lei Zhang <thestig@chromium.org>
diff --git a/testing/fuzzers/pdf_codec_fax_fuzzer.cc b/testing/fuzzers/pdf_codec_fax_fuzzer.cc
index 1d0b0f8..96cae23 100644
--- a/testing/fuzzers/pdf_codec_fax_fuzzer.cc
+++ b/testing/fuzzers/pdf_codec_fax_fuzzer.cc
@@ -13,10 +13,15 @@
}
extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size) {
- const int kParameterSize = 21;
+ static constexpr size_t kParameterSize = 21;
if (size < kParameterSize)
return 0;
+ // Limit data size to prevent fuzzer timeout.
+ static constexpr size_t kMaxDataSize = 256 * 1024;
+ if (size > kParameterSize + kMaxDataSize)
+ return 0;
+
int width = GetInteger(data);
int height = GetInteger(data + 4);
int K = GetInteger(data + 8);