Skip to content

fix: assertion failure when fuzzing proto strings #1002

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 29, 2025
Merged

fix: assertion failure when fuzzing proto strings #1002

merged 1 commit into from
Oct 29, 2025

Conversation

@simonresch
Copy link
Contributor

@simonresch simonresch commented Oct 29, 2025

When parsing protobuf messages from libfuzzer bytes in the protobuf mutator we don't enforce length limits. This could lead to maxSizeIncrease < 0 situations if the e.g. a String read by the protobuf mutator exceeds the size limit.
To guard against similar cases we now enforce the size constraints for the byte array that is being mutated before performing the mutation.

@simonresch simonresch force-pushed the CIF-1814-fix-possible-negative-size-increase branch from 13f0274 to 935705d Compare October 29, 2025 10:37
@simonresch
fix: assertion failure when fuzzing proto strings
00f03d5 
When parsing protobuf messages from libfuzzer bytes in the protobuf
mutator we don't enforce length limits. This could lead to
maxSizeIncrease < 0 situations if the e.g. a String read by the protobuf
mutator exceeds the size limit.
To guard against similar cases we now enforce the size constraints for
the byte array that is being mutated before performing the mutation.
@simonresch simonresch force-pushed the CIF-1814-fix-possible-negative-size-increase branch from 935705d to 00f03d5 Compare October 29, 2025 10:38
@simonresch simonresch marked this pull request as ready for review October 29, 2025 10:41
oetr
oetr approved these changes Oct 29, 2025
View reviewed changes
Copy link
Contributor

@oetr oetr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@simonresch simonresch merged commit 6da8018 into main Oct 29, 2025
9 checks passed
@simonresch simonresch deleted the CIF-1814-fix-possible-negative-size-increase branch October 29, 2025 13:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@oetr oetr oetr approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@simonresch @oetr