Garret Rieger
f94bf9f06f
[set fuzzer] limit the total number of set members in a fuzzing input.
...
Currently the fuzzer can create arbitarily long inputs which once big enough will trigger a timeout.
4 years ago
Garret Rieger
a4c3732f59
[ENOMEM] fix set clear() causing corruption if the set is in_error().
4 years ago
David Corbett
b2e7bb2a7c
Don’t map BCP 47 to coincidentally similar OT tag
4 years ago
David Corbett
17da41bd06
Update language system tag registry to OT 1.8.4
4 years ago
Khaled Hosny
5091ea7e24
Merge pull request #2733 from astiob/buffer-context-doc
...
[docs] Describe buffer context applicability more explicitly
4 years ago
ebraminio
1f8b1e7f18
[ENOMEM] Return gracefully if stages isn't initialized correctly ( #2639 )
...
This happens if calls to 'm.lookups[table_index].push ()' has been
silently failed due to lack of memory.
This change just returns gracefully instead issuing the assert.
Fixes https://crbug.com/oss-fuzz/24494
4 years ago
Garret Rieger
bbbcad0dbb
Revert "[ENOMEM] don't perform set process operations if the other set is in an error state."
...
This reverts commit f3929abafe
.
4 years ago
Garret Rieger
f3929abafe
[ENOMEM] don't perform set process operations if the other set is in an error state.
...
Running a process while the other set is in an error state can potentially corrupt this sets map map (for example by overwritting all of the major values with 0).
4 years ago
Khaled Hosny
7d64b09765
[myanmar] Don’t disable liga feature
...
This seems to have been carried over from the Indic shaper, but
Uniscribe enables it by default.
See https://github.com/harfbuzz/harfbuzz/issues/2213#issuecomment-686062915
5 years ago
Garret Rieger
8c3d4de796
[subset] Fix integer underflow in ContextFormat2.
5 years ago
David Corbett
91fe20f0f5
Disambiguate OT tags when primary tag is not first
5 years ago
David Corbett
e3db84a9d0
[use] Test CGJ and ZWNJ
5 years ago
Garret Rieger
9825e3dd2e
[ENOMEM] fix access to unitialized memory.
...
If the serialize() call fails to write the object then we can't safely read varstore_prime fields. Fixes https://oss-fuzz.com/testcase-detail/5137462782066688 .
5 years ago
David Corbett
420a74f772
[USE] Fix assertion failure for joining scripts
5 years ago
ebraminio
1e48225ca3
[ENOMEM] Check whether serialize context isn't in error
5 years ago
Ebrahim Byagowi
6e32145dc9
[meson] Make compatbile with 0.47.0
5 years ago
Garret Rieger
9562239f05
[ENOMEM] check for error in lookup visited set.
5 years ago
Garret Rieger
6f754852c1
[ENOMEM] skip asserts in to_bias if serializer is in an error state.
5 years ago
Ebrahim Byagowi
057769b1a3
[fuzzer] minor
5 years ago
Ebrahim Byagowi
0417938011
[fuzzer] Mark alloc_state as unused
...
It is really unused when failing-alloc isn't on.
5 years ago
Ebrahim Byagowi
5193357832
Revert "Remove autotools build support"
...
This reverts commit 01ac32aab2
.
5 years ago
Ebrahim Byagowi
ffe06c8f04
[glyf] Guard all the public APIs against null pool runs
...
Fixes https://crbug.com/oss-fuzz/24575 and https://crbug.com/oss-fuzz/24737
5 years ago
Ebrahim Byagowi
01ac32aab2
Remove autotools build support
5 years ago
Ebrahim Byagowi
679fac87df
Skip hb_shape if buffer object is immutable
5 years ago
Ebrahim Byagowi
ec17b62457
[var] Apply variations on empty glyphs
...
It was ignoring empty glyphs for no good reason, this fixes it.
Fixes #2618
5 years ago
Garret Rieger
18ab8029d5
[ENOMEM] check vector status in cmap subsetting.
5 years ago
Garret Rieger
06dbb6acbb
[ENOMEM] in GSUB ChainContext subsetting check maps for allocation errors.
5 years ago
Garret Rieger
fb1477795c
[ENOMEM] Check result of vector resize in CBDT subsetting.
5 years ago
Ebrahim Byagowi
efd716de3f
[cff] Check for scalars array resize result
...
Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=24504
5 years ago
Garret Rieger
040ed094ef
[ENOMEM] popragate packed/packed_map errors to the serializer.
...
Will disable further modifications based on a bad state.
5 years ago
Garret Rieger
7f358a55f4
[ENOMEM] unchecked resize in CFF2.
5 years ago
Garret Rieger
32f052b033
[ENOMEM] Fix several instances of not checking resize in CFF.
5 years ago
Garret Rieger
15644ee60e
[ENOMEM] fix memory leak if allocation fails during pop_pack().
5 years ago
Garret Rieger
42237adffc
[ENOMEM] make serializer modification operations no-ops if it's in an error state.
5 years ago
Garret Rieger
4ba8e3c6fd
[ENOMEM] Fix failure to check calloc return.
...
Fixes https://oss-fuzz.com/testcase-detail/6246465148813312 .
5 years ago
Garret Rieger
d307c24abf
[ENOMEM] check resize() return.
...
Fixes https://oss-fuzz.com/testcase-detail/5641892164009984 .
5 years ago
Ebrahim Byagowi
48ad745996
[ENOMEM] Fix buffer's content check logic
...
So now rest of shape fuzzer also can be enabled.
Fixes #2571
5 years ago
Ebrahim Byagowi
c33e8006fd
[fuzz] Implement failing allocator
5 years ago
Ebrahim Byagowi
d38d63319b
[tests] minor
5 years ago
Ebrahim Byagowi
322426f8c8
[tests] Use TTFont of fonttools to avoid temp files
5 years ago
Hamidreza Bayat
08fef15818
Use fonttools's python package instead of cli
5 years ago
Ebrahim Byagowi
5c46683ab8
[fuzz] increase shape fuzzer timeout
...
as https://circleci.com/gh/harfbuzz/harfbuzz/149203
5 years ago
Ebrahim Byagowi
945bcd7230
minor
5 years ago
Ebrahim Byagowi
fa0436ddd1
[ENOMEM][fuzzer/subset] early return if the result is null
...
I don't see _or_fail APIs idiomatic for the project but since it is there, let's have this
5 years ago
Ebrahim Byagowi
11d583a9ea
[aat] Consume glyph insertion from buffer's max_ops ( #2223 )
...
Glyph insertion is an expensive operation and we like to have it limited
based on buffer's input size which is handled by buffer's max_ops.
clusterfuzz-testcase-minimized-harfbuzz_fuzzer-5754958982021120:
Before the change: 0.67s user 0.00s system 99% cpu 0.674 total
After the change: 0.02s user 0.00s system 98% cpu 0.024 total
Which takes much longer on valgrind and tsan bots.
5 years ago
Ebrahim Byagowi
cd6f62d960
[meson] Raise timeout value of subset fuzzer testcases
...
happens when tsan is enabled
5 years ago
Ebrahim Byagowi
e4f9969108
[ci] migrate to meson
...
two bots, one bot here (distcheck) and one in travis still run autotools and
won't be removed till we decide about autotools
5 years ago
Ebrahim Byagowi
e04050e3b8
[meson] split fuzzer_ldflags before use
5 years ago
Ebrahim Byagowi
c5def34730
[meson] don't underscorify fuzzers names
5 years ago
Ebrahim Byagowi
d608f2ac85
[meson] Add fuzzer_ldflags
...
As ots, https://github.com/khaledhosny/ots/commit/4d37b9b
5 years ago