Enforce the block count limit when decoding (#79)

BrianSipos · web-flow · commit 40957f9dda03 · 2025-08-22T10:18:23.000-04:00
diff --git a/cmake/Findlibfuzzer.cmake b/cmake/Findlibfuzzer.cmake
@@ -6,7 +6,7 @@
 
 if(NOT CMAKE_C_COMPILER_ID MATCHES "Clang"
    OR NOT CMAKE_CXX_COMPILER_ID MATCHES "Clang")
-  message(FATAL "Can only fuzz with clang compiler")
+  message(FATAL_ERROR "Can only fuzz with clang compiler")
 endif()
 
 # Options for all compilation units
diff --git a/src/mock_bpa/decode.c b/src/mock_bpa/decode.c
@@ -268,23 +268,28 @@ int bsl_mock_decode_bundle(QCBORDecodeContext *dec, MockBPA_Bundle_t *bundle)
 
     BSL_LOG_DEBUG("decoding primary block...");
     int res = bsl_mock_decode_primary(dec, &(bundle->primary_block));
-    if (res || QCBORDecode_GetError(dec))
+    if (res || (QCBOR_SUCCESS != QCBORDecode_GetError(dec)))
     {
-        BSL_LOG_ERR("failed in primary block");
+        BSL_LOG_ERR("failed decoding primary block");
         return 2;
     }
 
     // iterate until failure of CBOR, not block decoder
     while (QCBOR_SUCCESS == QCBORDecode_PeekNext(dec, &decitem))
     {
+        if (bundle->block_count >= MockBPA_BUNDLE_MAXBLOCKS)
+        {
+            BSL_LOG_ERR("number of canonical blocks exceeded limit %zd", MockBPA_BUNDLE_MAXBLOCKS);
+            return 3;
+        }
         BSL_LOG_DEBUG("decoding canonical block (at %zd)...", QCBORDecode_Tell(dec));
 
         MockBPA_CanonicalBlock_t blk = { 0 };
 
         res = bsl_mock_decode_canonical(dec, &blk);
-        if (res || QCBORDecode_GetError(dec))
+        if (res || (QCBOR_SUCCESS != QCBORDecode_GetError(dec)))
         {
-            BSL_LOG_ERR("failed in canonical block");
+            BSL_LOG_ERR("failed decoding canonical block");
             BSL_FREE(blk.btsd);
             return 3;
         }

Original file line number	Diff line number	Diff line change
`@@ -268,23 +268,28 @@ int bsl_mock_decode_bundle(QCBORDecodeContext dec, MockBPA_Bundle_t bundle)`
`268`	`268`
`269`	`269`	`BSL_LOG_DEBUG("decoding primary block...");`
`270`	`270`	`int res = bsl_mock_decode_primary(dec, &(bundle->primary_block));`
`271`		`- if (res \|\| QCBORDecode_GetError(dec))`
	`271`	`+ if (res \|\| (QCBOR_SUCCESS != QCBORDecode_GetError(dec)))`
`272`	`272`	`{`
`273`		`- BSL_LOG_ERR("failed in primary block");`
	`273`	`+ BSL_LOG_ERR("failed decoding primary block");`
`274`	`274`	`return 2;`
`275`	`275`	`}`
`276`	`276`
`277`	`277`	`// iterate until failure of CBOR, not block decoder`
`278`	`278`	`while (QCBOR_SUCCESS == QCBORDecode_PeekNext(dec, &decitem))`
`279`	`279`	`{`
	`280`	`+ if (bundle->block_count >= MockBPA_BUNDLE_MAXBLOCKS)`
	`281`	`+ {`
	`282`	`+ BSL_LOG_ERR("number of canonical blocks exceeded limit %zd", MockBPA_BUNDLE_MAXBLOCKS);`
	`283`	`+ return 3;`
	`284`	`+ }`
`280`	`285`	`BSL_LOG_DEBUG("decoding canonical block (at %zd)...", QCBORDecode_Tell(dec));`
`281`	`286`
`282`	`287`	`MockBPA_CanonicalBlock_t blk = { 0 };`
`283`	`288`
`284`	`289`	`res = bsl_mock_decode_canonical(dec, &blk);`
`285`		`- if (res \|\| QCBORDecode_GetError(dec))`
	`290`	`+ if (res \|\| (QCBOR_SUCCESS != QCBORDecode_GetError(dec)))`
`286`	`291`	`{`
`287`		`- BSL_LOG_ERR("failed in canonical block");`
	`292`	`+ BSL_LOG_ERR("failed decoding canonical block");`
`288`	`293`	`BSL_FREE(blk.btsd);`
`289`	`294`	`return 3;`
`290`	`295`	`}`