-
Show log
Commit
-
Hash : 990e166a
Author :
Date : 2019-06-08T19:02:42
Fixed bug 3894 - Fuzzing crashes for SDL_LoadWAV Simon Hug I had a look at this and made some additions to SDL_wave.c. The attached patch adds many checks and error messages. For some reason I also added A-law and ?-law decoders. Forgot exactly why... but hey, they're small. The WAVE format is seriously underspecified (at least by the documents that are publicly available on the internet) and it's a shame Microsoft never put something better out there. The language used in them is so loose at times, it's not surprising the encoders and decoders behave very differently. The Windows Media Player doesn't even support MS ADPCM correctly. The patch also adds some hints to make the decoder more strict at the cost of compatibility with weird WAVE files. I still think it needs a bit of cleaning up (Not happy with the MultiplySize function. Don't like the name and other SDL code may want to use something like this too.) and some duplicated code may be folded together. It does work in this state and I have thrown all kinds of WAVE files at it. The AFL files also pass with it and some even play (obviously just noise). Crafty little fuzzer. Any critique would be welcome. I have a fork of SDL with a audio-loadwav branch over here if someone wants to use the commenting feature of Bitbucket: https://bitbucket.org/ChliHug/SDL I also cobbled some Lua scripts together to create WAVE test files: https://bitbucket.org/ChliHug/gendat
-
Files
- .hgignore
- Android.mk
- BUGS.txt
- CMakeLists.txt
- COPYING.txt
- CREDITS.txt
- INSTALL.txt
- Makefile.in
- Makefile.minimal
- Makefile.os2
- Makefile.pandora
- Makefile.psp
- Makefile.wiz
- README-SDL.txt
- README.txt
- SDL2.spec.in
- SDL2Config.cmake
- TODO.txt
- VisualC-WinRT/
- VisualC.html
- VisualC/
- WhatsNew.txt
- Xcode-iOS/
- Xcode/
- acinclude/
- android-project-ant/
- android-project/
- autogen.sh
- build-scripts/
- cmake/
- cmake_uninstall.cmake.in
- configure
- configure.ac
- debian/
- docs/
- include/
- sdl2-config.cmake.in
- sdl2-config.in
- sdl2.m4
- sdl2.pc.in
- src/
- test/
- visualtest/
- wayland-protocols/
-
Properties
-
Git HTTP https://git.kmx.io/kc3-lang/SDL.git Git SSH git@git.kmx.io:kc3-lang/SDL.git Public access ? public Description Users
Tags
-
README.txt
-
Simple DirectMedia Layer (SDL) Version 2.0 --- https://www.libsdl.org/ Simple DirectMedia Layer is a cross-platform development library designed to provide low level access to audio, keyboard, mouse, joystick, and graphics hardware via OpenGL and Direct3D. It is used by video playback software, emulators, and popular games including Valve's award winning catalog and many Humble Bundle games. More extensive documentation is available in the docs directory, starting with README.md Enjoy! Sam Lantinga (slouken@libsdl.org)