Lagom/Fuzzers: Add MP3 fuzzer

2 files changed, 29 insertions, 0 deletions

diff --git a/Meta/Lagom/Fuzzers/CMakeLists.txt b/Meta/Lagom/Fuzzers/CMakeLists.txt
index da2c8e37f7..6fa8da4750 100644
--- a/Meta/Lagom/Fuzzers/CMakeLists.txt
+++ b/Meta/Lagom/Fuzzers/CMakeLists.txt
@@ -28,6 +28,7 @@ add_simple_fuzzer(FuzzGzipDecompression LagomCompress)
 add_simple_fuzzer(FuzzICOLoader LagomGfx)
 add_simple_fuzzer(FuzzJPGLoader LagomGfx)
 add_simple_fuzzer(FuzzMD5 LagomCrypto)
+add_simple_fuzzer(FuzzMP3Loader LagomAudio)
 add_simple_fuzzer(FuzzPEM LagomCrypto)
 add_simple_fuzzer(FuzzPNGLoader LagomGfx)
 add_simple_fuzzer(FuzzPBMLoader LagomGfx)
diff --git a/Meta/Lagom/Fuzzers/FuzzMP3Loader.cpp b/Meta/Lagom/Fuzzers/FuzzMP3Loader.cpp
new file mode 100644
index 0000000000..fd8cecc810
--- /dev/null
+++ b/Meta/Lagom/Fuzzers/FuzzMP3Loader.cpp
@@ -0,0 +1,28 @@
+/*
+ * Copyright (c) 2022, Luke Wilde <lukew@serenityos.org>
+ *
+ * SPDX-License-Identifier: BSD-2-Clause
+ */
+
+#include <LibAudio/MP3Loader.h>
+#include <stddef.h>
+#include <stdint.h>
+
+extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
+{
+    auto flac_data = ByteBuffer::copy(data, size).release_value();
+    auto mp3 = make<Audio::MP3LoaderPlugin>(flac_data);
+
+    if (mp3->initialize().is_error())
+        return 1;
+
+    for (;;) {
+        auto samples = mp3->get_more_samples();
+        if (samples.is_error())
+            return 2;
+        if (samples.value()->sample_count() > 0)
+            break;
+    }
+
+    return 0;
+}