<div dir="ltr">Thanks for your comments, Ralph and Jean-Marc. <div><br></div><div>Please find attached the amended patch: </div><div><br></div><div>- decodes a sequence of input packets rather than just one (I'm planning on using the Opus test vectors as the seed corpus)<br></div><div>- decides on decoder setup and FEC independently of the packet data</div><div><div>- uses Opus functions to parse ToC</div><br class="inbox-inbox-Apple-interchange-newline"></div><div>Cheers,</div><div>Felicia</div><div><br></div><div><div class="gmail_quote"><div dir="ltr">On Sun, Jan 29, 2017 at 9:48 PM Jean-Marc Valin <<a href="mailto:jmvalin@jmvalin.ca">jmvalin@jmvalin.ca</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Felicia,<br class="gmail_msg">
<br class="gmail_msg">
Here's a few comments/questions on your patch:<br class="gmail_msg">
<br class="gmail_msg">
> static void ParseToc(const uint8_t toc, TocInfo *const info) {<br class="gmail_msg">
<br class="gmail_msg">
Any particular reason you don't use the Opus functions for parsing the<br class="gmail_msg">
ToC? It seems like opus_packet_get_nb_samples(),<br class="gmail_msg">
opus_packet_get_bandwidth(), and opus_packet_get_nb_channels() should do<br class="gmail_msg">
the trick.<br class="gmail_msg">
<br class="gmail_msg">
> int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size)<br class="gmail_msg">
<br class="gmail_msg">
How is that function supposed to work? I noticed that it will only<br class="gmail_msg">
decode a single packet. How does the fuzzer handle testing for bugs that<br class="gmail_msg">
only happen for a given sequence of input packets?<br class="gmail_msg">
<br class="gmail_msg">
Cheers,<br class="gmail_msg">
<br class="gmail_msg">
Jean-Marc<br class="gmail_msg">
<br class="gmail_msg">
<br class="gmail_msg">
<br class="gmail_msg">
<br class="gmail_msg">
On 27/01/17 02:48 PM, Felicia Lim wrote:<br class="gmail_msg">
> Hi all,<br class="gmail_msg">
><br class="gmail_msg">
> I'm working on fuzzing Opus with OSS-Fuzz and have started with the<br class="gmail_msg">
> decoder. Attached is a patch to add the corresponding fuzz target.<br class="gmail_msg">
> Please let me know if there are any concerns?<br class="gmail_msg">
><br class="gmail_msg">
> Thanks,<br class="gmail_msg">
> Felicia<br class="gmail_msg">
><br class="gmail_msg">
><br class="gmail_msg">
> _______________________________________________<br class="gmail_msg">
> opus mailing list<br class="gmail_msg">
> <a href="mailto:opus@xiph.org" class="gmail_msg" target="_blank">opus@xiph.org</a><br class="gmail_msg">
> <a href="http://lists.xiph.org/mailman/listinfo/opus" rel="noreferrer" class="gmail_msg" target="_blank">http://lists.xiph.org/mailman/listinfo/opus</a><br class="gmail_msg">
><br class="gmail_msg">
</blockquote></div></div></div>