From c900f2e42c6ef4b51b5b9237fa6829a4db544d29 Mon Sep 17 00:00:00 2001
From: Michael Niedermayer <michael@niedermayer.cc>
Date: Wed, 23 Feb 2022 23:58:41 +0100
Subject: tools/target_dem_fuzzer: Check fmt before dereferencing

Fixes: NULL pointer dereference
Fixes: 44884/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-4656748688965632

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
---
 tools/target_dem_fuzzer.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'tools')

diff --git a/tools/target_dem_fuzzer.c b/tools/target_dem_fuzzer.c
index 687989ccc8..32767a0182 100644
--- a/tools/target_dem_fuzzer.c
+++ b/tools/target_dem_fuzzer.c
@@ -173,7 +173,7 @@ int LLVMFuzzerTestOneInput(const uint8_t *data, size_t size) {
     }
 
     // HLS uses a loop with sleep, we thus must breakout or we timeout
-    if (!strcmp(fmt->name, "hls"))
+    if (fmt && !strcmp(fmt->name, "hls"))
         interrupt_counter &= 31;
 
     if (!io_buffer_size || size / io_buffer_size > maxblocks)
-- 
cgit v1.2.3