1 files changed, 22 insertions, 3 deletions

diff --git a/projects/libsodium/secretbox_easy_fuzzer.cc b/projects/libsodium/secretbox_easy_fuzzer.cc
index 4e25bcc7a..a37c88b6b 100644
--- a/projects/libsodium/secretbox_easy_fuzzer.cc
+++ b/projects/libsodium/secretbox_easy_fuzzer.cc
@@ -1,4 +1,19 @@
+// Copyright 2018 Google Inc.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
 #include <assert.h>
+#include <stdlib.h>
 #include <sodium.h>
 
 #include "fake_random.h"
@@ -17,12 +32,16 @@ extern "C" int LLVMFuzzerTestOneInput(const unsigned char *data, size_t size) {
   randombytes_buf(nonce, sizeof nonce);
 
   size_t ciphertext_len = crypto_secretbox_MACBYTES + size;
-  unsigned char ciphertext[ciphertext_len];
+  unsigned char *ciphertext = (unsigned char *) malloc(ciphertext_len);
 
   crypto_secretbox_easy(ciphertext, data, size, nonce, key);
 
-  unsigned char decrypted[size];
-  crypto_secretbox_open_easy(decrypted, ciphertext, ciphertext_len, nonce, key);
+  unsigned char *decrypted = (unsigned char *) malloc(size);
+  int err = crypto_secretbox_open_easy(decrypted, ciphertext, ciphertext_len, nonce, key);
+  assert(err == 0);
+
+  free((void *) ciphertext);
+  free((void *) decrypted);
 
   return 0;
 }