Set up an (empty) fuzzing framework

Author: mstoeckl

fuzz/Cargo.toml

@@ -0,0 +1,27 @@
+
+[package]
+name = "image-fuzz"
+version = "0.0.1"
+authors = ["Automatically generated"]
+edition = "2021"
+publish = false
+
+[package.metadata]
+cargo-fuzz = true
+
+[dependencies]
+image = { version = "0.25.5", default-features = false }
+
+[dependencies.image-extras]
+path = ".."
+features = []
+[dependencies.libfuzzer-sys]
+version = "0.4"
+
+# Temporarily needed for image-extras to build, see ../Cargo.toml
+[patch.crates-io]
+image = { git = "https://github.com/fintelia/image", branch = "decoding-hooks" }
+
+# Prevent this from interfering with workspaces
+[workspace]
+members = ["."]

fuzz/README.md

@@ -0,0 +1,12 @@
+# Fuzzing with libfuzzer
+
+For the possibly more up-to-date guide see <https://fuzz.rs/book/cargo-fuzz/setup.html>.
+
+> $ cargo install cargo-fuzz
+> $ cargo +nightly fuzz run fuzzer_script_<format>
+
+# Bug reports
+
+As explained in the project [README](../README.md), fuzzing is not a priority for
+this crate and decoders may panic or worse on malformed input. Please do not
+open issues for crashes found by fuzzing, though PRs fixing them are welcome.