Improve JPX fuzzer This CL splits initialization into two parts so that the fuzzer can check for enormous sizes in headers before calling the opj decoding code. Bug: chromium:903724 Change-Id: I1dc7095d65b55319cb748d8a24206d72dd66390d Reviewed-on: https://pdfium-review.googlesource.com/c/45732 Reviewed-by: Tom Sepez <tsepez@chromium.org> Commit-Queue: Nicolás Peña Moreno <npm@chromium.org>

commit: fa7983ef8c0a5e84819cda14bae56ee87c925654 [log] [tgz]
author: Nicolas Pena <npm@chromium.org> Fri Nov 16 21:54:51 2018 +0000
committer: Chromium commit bot <commit-bot@chromium.org> Fri Nov 16 21:54:51 2018 +0000
tree: dffd670d640657bee9266805e07ac99c76d40406
parent: a274b41b901113adba297f0eb01394f6c175992c [diff] [blame]
diff --git a/core/fxcodec/codec/cjpx_decoder.h b/core/fxcodec/codec/cjpx_decoder.h
index 5be4b87..940efd8 100644
--- a/core/fxcodec/codec/cjpx_decoder.h
+++ b/core/fxcodec/codec/cjpx_decoder.h

@@ -24,6 +24,7 @@
 
   bool Init(pdfium::span<const uint8_t> src_data);
   void GetInfo(uint32_t* width, uint32_t* height, uint32_t* components);
+  bool StartDecode();
   bool Decode(uint8_t* dest_buf,
               uint32_t pitch,
               const std::vector<uint8_t>& offsets);
commit	fa7983ef8c0a5e84819cda14bae56ee87c925654	[log] [tgz]
author	Nicolas Pena <npm@chromium.org>	Fri Nov 16 21:54:51 2018 +0000
committer	Chromium commit bot <commit-bot@chromium.org>	Fri Nov 16 21:54:51 2018 +0000
tree	dffd670d640657bee9266805e07ac99c76d40406
parent	a274b41b901113adba297f0eb01394f6c175992c [diff] [blame]