mollyim/webrtc
1
0
Fork 0
mirror of https://github.com/mollyim/webrtc.git synced 2025-05-19 08:37:54 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
webrtc/test/fuzzers/comfort_noise_decoder_fuzzer.cc
Henrik Lundin 151be2dffc comfort_noise_decoder_fuzzer: limit the fuzzer input size to avoid timeout 
The length of the fuzzer input can sometimes be really long (more than
1000000 bytes), and this take a very long time to execute. Typically,
the fuzzer times out instead. This change limits the used length of
the fuzzer to 200000 bytes.

NOTRY=TRUE

Bug: chromium:802149
Change-Id: Ia9d2f080602bba8ff70c5f0575bb9ecfa99c537c
Reviewed-on: https://webrtc-review.googlesource.com/57581
Commit-Queue: Henrik Lundin <henrik.lundin@webrtc.org>
Reviewed-by: Alex Loiko <aleloi@webrtc.org>
Cr-Commit-Position: refs/heads/master@{#22183}
2018-02-26 10:52:30 +00:00

56 lines
1.8 KiB
C++
Raw Blame History

/*
* Copyright (c) 2017 The WebRTC project authors. All Rights Reserved.
*
* Use of this source code is governed by a BSD-style license
* that can be found in the LICENSE file in the root of the source
* tree. An additional intellectual property rights grant can be found
* in the file PATENTS. All contributing project authors may
* be found in the AUTHORS file in the root of the source tree.
*/
#include "api/array_view.h"
#include "modules/audio_coding/codecs/cng/webrtc_cng.h"
#include "rtc_base/buffer.h"
#include "test/fuzzers/fuzz_data_helper.h"
namespace webrtc {
namespace test {
namespace {
void FuzzOneInputTest(rtc::ArrayView<const uint8_t> data) {
FuzzDataHelper fuzz_data(data);
ComfortNoiseDecoder cng_decoder;
while (1) {
if (!fuzz_data.CanReadBytes(1))
break;
const uint8_t sid_frame_len = fuzz_data.Read<uint8_t>();
auto sid_frame = fuzz_data.ReadByteArray(sid_frame_len);
if (sid_frame.empty())
break;
cng_decoder.UpdateSid(sid_frame);
if (!fuzz_data.CanReadBytes(3))
break;
constexpr bool kTrueOrFalse[] = {true, false};
const bool new_period = fuzz_data.SelectOneOf(kTrueOrFalse);
constexpr size_t kOutputSizes[] = {80, 160, 320, 480};
const size_t output_size = fuzz_data.SelectOneOf(kOutputSizes);
const size_t num_generate_calls = fuzz_data.Read<uint8_t>();
rtc::BufferT<int16_t> output(output_size);
for (size_t i = 0; i < num_generate_calls; ++i) {
cng_decoder.Generate(output, new_period);
}
}
}
} // namespace
} // namespace test
void FuzzOneInput(const uint8_t* data, size_t size) {
// Limit the input size to 100000 bytes to avoid fuzzer timeout.
if (size > 200000)
return;
test::FuzzOneInputTest(rtc::ArrayView<const uint8_t>(data, size));
}
} // namespace webrtc
Reference in a new issue View git blame Copy permalink