[aat] Fix sanitize slowdown
Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=11034
This commit is contained in:
parent
b9478e28ac
commit
83780308b4
|
@ -422,6 +422,8 @@ struct StateTable
|
|||
num_states,
|
||||
num_classes * states[0].static_size)))
|
||||
return_trace (false);
|
||||
if ((c->max_ops -= num_states - state) < 0)
|
||||
return_trace (false);
|
||||
{ /* Sweep new states. */
|
||||
const HBUINT16 *stop = &states[num_states * num_classes];
|
||||
for (const HBUINT16 *p = &states[state * num_classes]; p < stop; p++)
|
||||
|
@ -431,6 +433,8 @@ struct StateTable
|
|||
|
||||
if (unlikely (!c->check_array (entries, num_entries)))
|
||||
return_trace (false);
|
||||
if ((c->max_ops -= num_entries - entry) < 0)
|
||||
return_trace (false);
|
||||
{ /* Sweep new entries. */
|
||||
const Entry<Extra> *stop = &entries[num_entries];
|
||||
for (const Entry<Extra> *p = &entries[entry]; p < stop; p++)
|
||||
|
|
|
@ -443,10 +443,10 @@ struct hb_sanitize_context_t :
|
|||
|
||||
mutable unsigned int debug_depth;
|
||||
const char *start, *end;
|
||||
mutable int max_ops;
|
||||
private:
|
||||
bool writable;
|
||||
unsigned int edit_count;
|
||||
mutable int max_ops;
|
||||
hb_blob_t *blob;
|
||||
unsigned int num_glyphs;
|
||||
bool num_glyphs_set;
|
||||
|
|
Loading…
Reference in New Issue