[openssl/openssl] 5f3adf: Prevent a fuzzing timeout in the conf fuzzer
Matt Caswell
noreply at github.com
Mon May 8 09:44:45 UTC 2023
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: 5f3adf396b06ee3b81938468995e69cff4ca64d1
https://github.com/openssl/openssl/commit/5f3adf396b06ee3b81938468995e69cff4ca64d1
Author: Matt Caswell <matt at openssl.org>
Date: 2023-05-08 (Mon, 08 May 2023)
Changed paths:
M crypto/conf/conf_def.c
Log Message:
-----------
Prevent a fuzzing timeout in the conf fuzzer
The fuzzer was creating a config file with large numbers of includes
which are expensive to process. However this should not cause a security
issue, and should never happen in normal operation so we can ignore it.
Fixes ossfuzz issue 57718.
Reviewed-by: Paul Dale <pauli at openssl.org>
Reviewed-by: Tim Hudson <tjh at openssl.org>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20839)
Commit: 3868807d2fe5a72aa897ce5f7f7ba7e9cc3c09cb
https://github.com/openssl/openssl/commit/3868807d2fe5a72aa897ce5f7f7ba7e9cc3c09cb
Author: Matt Caswell <matt at openssl.org>
Date: 2023-05-08 (Mon, 08 May 2023)
Changed paths:
M fuzz/corpora
Log Message:
-----------
Update the corpora submodule
We update the corpora submodule to include a fuzz testcase for the conf
timeout.
Reviewed-by: Paul Dale <pauli at openssl.org>
Reviewed-by: Tim Hudson <tjh at openssl.org>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20839)
Compare: https://github.com/openssl/openssl/compare/d98f4212b778...3868807d2fe5
More information about the openssl-commits
mailing list