AuroraMiddleware/qt5base-lts
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fuzzing: Don't try to load huge valid images

Browse Source 
They are justified in using huge memory.

Pick-to: 5.15
Change-Id: Id16d2ea67cfac0e031d05258173391e222b41097
Reviewed-by: Albert Astals Cid <albert.astals.cid@kdab.com>
Reviewed-by: Eirik Aavitsland <eirik.aavitsland@qt.io>
This commit is contained in:
Robert Loehning 2020-06-08 14:42:55 +02:00
parent 9ba88a2689
commit 927a82f5e0
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
tests/libfuzzer/gui/image/qimage/loadfromdata/main.cpp
View File

@ -26,8 +26,11 @@
** **
****************************************************************************/ ****************************************************************************/
#include <QBuffer>
#include <QGuiApplication> #include <QGuiApplication>
#include <QImage> #include <QImage>
#include <QImageReader>
#include <QSize>
#include <QtGlobal> #include <QtGlobal>
// silence warnings // silence warnings
@ -41,6 +44,12 @@ extern "C" int LLVMFuzzerTestOneInput(const char *Data, size_t Size) {
static char arg3[] = "minimal"; static char arg3[] = "minimal";
static char *argv[] = {arg1, arg2, arg3, nullptr}; static char *argv[] = {arg1, arg2, arg3, nullptr};
static QGuiApplication qga(argc, argv); static QGuiApplication qga(argc, argv);
QImage().loadFromData(QByteArray::fromRawData(Data, Size)); QByteArray input(QByteArray::fromRawData(Data, Size));
QBuffer buf(&input);
const QSize size = QImageReader(&buf).size();
// Don't try to load huge valid images.
// They are justified in using huge memory.
if (!size.isValid() || uint64_t(size.width()) * size.height() < 64 * 1024 * 1024)
QImage().loadFromData(input);
return 0; return 0;
} }