[openssl/openssl] 629856: Prevent a fuzzing timeout in the conf fuzzer

Matt Caswell noreply at github.com
Mon May 8 09:44:45 UTC 2023


  Branch: refs/heads/openssl-3.0
  Home:   https://github.com/openssl/openssl
  Commit: 62985679e825f16c3e846099b94a76cdc3dfd591
      https://github.com/openssl/openssl/commit/62985679e825f16c3e846099b94a76cdc3dfd591
  Author: Matt Caswell <matt at openssl.org>
  Date:   2023-05-08 (Mon, 08 May 2023)

  Changed paths:
    M crypto/conf/conf_def.c

  Log Message:
  -----------
  Prevent a fuzzing timeout in the conf fuzzer

The fuzzer was creating a config file with large numbers of includes
which are expensive to process. However this should not cause a security
issue, and should never happen in normal operation so we can ignore it.

Fixes ossfuzz issue 57718.

Reviewed-by: Paul Dale <pauli at openssl.org>
Reviewed-by: Tim Hudson <tjh at openssl.org>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20839)

(cherry picked from commit 5f3adf396b06ee3b81938468995e69cff4ca64d1)




More information about the openssl-commits mailing list