tinygltf

GitHub-Proxy/tinygltf

Fork 0

mirror of https://git.mirrors.martin98.com/https://github.com/syoyo/tinygltf.git synced 2025-08-05 14:30:39 +08:00

Commit Graph

Author	SHA1	Message	Date
Jeff McGlynn	8915252407	Add checks for boundary conditions for malformed glTF files When loading untrusted glTF files, ideally an error should be returned if the file is malformed instead of an exception/crash. Add additional validation for crashes found when running tinygltf under a fuzzer, and add test cases to confirm: 1. Validate that the primitive indices value is within the model->accessors bounds before dereferencing. 2. Validate that the accessors bufferView index if valid. 3. Validate that the buffer's index is valid when parsing images. 4. For glb files, validate that the overall length is within the provided input buffer.	2019-04-25 16:51:09 -07:00

Author

SHA1

Message

Date

Jeff McGlynn

8915252407

Add checks for boundary conditions for malformed glTF files

When loading untrusted glTF files, ideally an error should be returned
if the file is malformed instead of an exception/crash.  Add additional
validation for crashes found when running tinygltf under a fuzzer, and
add test cases to confirm:

1. Validate that the primitive indices value is within the
   model->accessors bounds before dereferencing.
2. Validate that the accessors bufferView index if valid.
3. Validate that the buffer's index is valid when parsing images.
4. For glb files, validate that the overall length is within the
   provided input buffer.

2019-04-25 16:51:09 -07:00

1 Commits