[FFmpeg-devel] [PATCH 0/1][TOOL][HACK] Allocation NULL check fuzzer

Michael Niedermayer michael at niedermayer.cc
Sat Nov 25 02:07:28 EET 2017

On Fri, Nov 24, 2017 at 11:41:06PM +0000, Derek Buitenhuis wrote:
> On 11/24/2017 11:35 PM, Michael Niedermayer wrote:
> > Maybe integrating this in:
> > https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> > 
> > would make sense
> > 
> > That would run it automatically on ffmpeg master HEAD on powerfull hw
> Could make sense, yeah - wouldn't be that hard.
> It would probably make an absolute ton of reports, since there are quite
> a few unchecked allocs in FFmpeg... might be kinda spammy.

> Also not sure how Google feels about using oss-fuzz to look for missing
> NULL checks? Is there some set of guidelines?

I do not know that but i would be surprised if null dereferences tests
where unwelcome

oss-fuzz will already report null derferences and OOM conditions, as
well as undefined behavior. So in some sense various points on the map
surrounding this here are already tested for

Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

In a rich man's house there is no place to spit but his face.
-- Diogenes of Sinope
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: Digital signature
URL: <http://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20171125/89ac6ed4/attachment.sig>

More information about the ffmpeg-devel mailing list