From 8f987713dd0fa791c5c511c13bb27021fa653fb0 Mon Sep 17 00:00:00 2001
From: "Dr.Smile" <vabnick@gmail.com>
Date: Wed, 24 Feb 2021 01:53:54 +0300
Subject: Fix crash on empty strings

Our hash function doesn't handle zero-length buffers,
but it was not a problem until 82b225b3d6653091d028b39d561d185ed76a7be5.
Found by OSS-Fuzz.
---
 libass/ass_utils.h | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/libass/ass_utils.h b/libass/ass_utils.h
index 3f65b87..0379df6 100644
--- a/libass/ass_utils.h
+++ b/libass/ass_utils.h
@@ -185,6 +185,9 @@ static inline int double_to_d22(double x)
 
 static inline uint32_t fnv_32a_buf(const void *buf, size_t len, uint32_t hval)
 {
+    if (!len)
+        return hval;
+
     const uint8_t *bp = buf;
     size_t n = (len + 3) / 4;
 
-- 
cgit v1.2.3