From patchwork Mon Aug 12 13:29:51 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Michael Niedermayer X-Patchwork-Id: 50991 Delivered-To: ffmpegpatchwork2@gmail.com Received: by 2002:a05:612c:1ff2:b0:489:2eb3:e4c4 with SMTP id ks18csp1355077vqb; Mon, 12 Aug 2024 06:30:04 -0700 (PDT) X-Forwarded-Encrypted: i=2; AJvYcCUcf8sibYUzdIxJ/XMG5ozE6y9kuTuuRU4d1m5xRD9dqQFjbSR0Md4u4lCbA5BxVBEWrhkHQi1EFynQ6+Lia8JDvPqfohOul69z0Q== X-Google-Smtp-Source: AGHT+IE6aTq4yU5b4IRlsMq9kvYXOrZxsA9TMnlir5pzRP5wuBsij554WZH7ALXkjPayLroChx+6 X-Received: by 2002:adf:ef92:0:b0:367:dc45:55ab with SMTP id ffacd0b85a97d-3716ccf0004mr343935f8f.25.1723469404706; Mon, 12 Aug 2024 06:30:04 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1723469404; cv=none; d=google.com; s=arc-20160816; b=OaqF40q5uXyhr/fcWViq294b7K8q9/H3DPXowJ64pMmOmfNrfTrn4mG1hQcLn1or1I KwhiOPJ4TaW+L1csXfnaBevFNDSAGqAB3Jk4Ls28WXELYafw0P87XOZ2JdsoDe8HXH4W ryk4WfjOaP7qxCu9DPYrB4R6dgbWX2YAnKv/KHq/B3FbLfDSPdxuDBtv/K1FhIJKta3d 0fQmutXPm17xsGkzcAzfEfskihwkYNH/FWRD3MvVD4a+0o4sXEVc3X1pWQpg6S30lybY 2I17rN/Hefv1dhCDt5sMguDIPR80IVTQGDBWRbgW5Q+sPWOTRCISTI73WyrV2oehZIhn 9SsQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=sender:errors-to:content-transfer-encoding:reply-to:list-subscribe :list-help:list-post:list-archive:list-unsubscribe:list-id :precedence:subject:mime-version:message-id:date:to:from :dkim-signature:delivered-to; bh=m5zm6yMOxVpiNF/TcDHNvYg0hjb0ofoCDnwQ2GRFXFg=; fh=e5zN9xSzcxLA6bGo3lF+CqTbY/oLwzApV03EO/RBfgQ=; b=XX519Gtonqa/DoKRjUAAkwsMG7HCA8Az+LsW3YE8aAunAVODh03+hpVsx1ci/hgfN8 QNmqOKPXqhnNGEz87G87eH68ezm4pZaByaufle8m+i+FDh47cQOUKdH1QhI+pVx731Lz unQb3Kjd5REa9WNAZcCAWtMKUcDHmk0nuQ18TYprtlOvcS6z7dIpZ9SMb5fmH8sZSOq5 /fX1PjjdEzx1uyi/JWAGeAzYQXO9yl/pDeodjit/sfq+iFfNN8rkiO2VHYFI5wuGxLtf IGGZ8H6OSmSCyk0AzeZha3KjjTX+XfL+B/IXBealdl0rjq9Va4IRf93H0W+SfyRyg54y RsIw==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@niedermayer.cc header.s=gm1 header.b=CRpMzyTe; spf=pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) smtp.mailfrom=ffmpeg-devel-bounces@ffmpeg.org Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org. [79.124.17.100]) by mx.google.com with ESMTP id a640c23a62f3a-a80bb348096si288642566b.890.2024.08.12.06.30.03; Mon, 12 Aug 2024 06:30:04 -0700 (PDT) Received-SPF: pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) client-ip=79.124.17.100; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@niedermayer.cc header.s=gm1 header.b=CRpMzyTe; spf=pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) smtp.mailfrom=ffmpeg-devel-bounces@ffmpeg.org Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id 42F2768D981; Mon, 12 Aug 2024 16:30:00 +0300 (EEST) X-Original-To: ffmpeg-devel@ffmpeg.org Delivered-To: ffmpeg-devel@ffmpeg.org Received: from relay1-d.mail.gandi.net (relay1-d.mail.gandi.net [217.70.183.193]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 8692668D981 for ; Mon, 12 Aug 2024 16:29:53 +0300 (EEST) Received: by mail.gandi.net (Postfix) with ESMTPSA id 84B28240005 for ; Mon, 12 Aug 2024 13:29:52 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=niedermayer.cc; s=gm1; t=1723469392; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=7Ex41HoSeR3yrY1eU7rlBVAjWpUojveY/Fw6RBKIWHA=; b=CRpMzyTeyl4Ek2zg9bPq89As0Db8I/Nu3jq/sLybliEsTYRtTJWRH1VdzcV/LOzJ5xVbx1 Jp1TAB4bb/wUwHTZIjO0YCtW7l16IjNsxURHKdYxsFtA+7Dbd6HSgb9tOh4OjKa2bhHjp7 fFDOh/EA3Rh5DWpvF/Z7n0O5LwwxAs1mq3WTzPma+W06FrfUyRZ18GKTJA35bGojf0tsJ7 LiFRso6UkX+kgysZwvOHBrIu2m42BHY7ElQ/ODhccoaG7XeFPa6EDD8VgyV5VGtayoWdQ3 Acv0mhDhTePmrmw03ADkFfd3b6qeLRIFKVyHS1ilgKsoMAA6QbSNtVF7dPb7Zw== From: Michael Niedermayer To: FFmpeg development discussions and patches Date: Mon, 12 Aug 2024 15:29:51 +0200 Message-ID: <20240812132951.1409672-1-michael@niedermayer.cc> X-Mailer: git-send-email 2.45.2 MIME-Version: 1.0 X-GND-Sasl: michael@niedermayer.cc Subject: [FFmpeg-devel] [PATCH] tools/target_dec_fuzzer: Check that FFv1 doesnt leave uninitialized memory in its buffers X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" X-TUID: CuhOB7paWv6E Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer --- tools/target_dec_fuzzer.c | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/tools/target_dec_fuzzer.c b/tools/target_dec_fuzzer.c index 794b5b92cc7..5fccf2ab8fc 100644 --- a/tools/target_dec_fuzzer.c +++ b/tools/target_dec_fuzzer.c @@ -129,7 +129,14 @@ static int fuzz_video_get_buffer(AVCodecContext *ctx, AVFrame *frame) frame->extended_data = frame->data; for (i = 0; i < 4 && size[i]; i++) { - frame->buf[i] = av_buffer_allocz(size[i]); + switch(ctx->codec_id) { + case AV_CODEC_ID_FFV1: + frame->buf[i] = av_buffer_alloc(size[i]); + break; + default: + frame->buf[i] = av_buffer_allocz(size[i]); + } + if (!frame->buf[i]) goto fail; frame->data[i] = frame->buf[i]->data;