[openssl/openssl] 9e4418: Update X509 fuzzer to verify a chain
Kurt Roeckx
noreply at github.com
Fri Sep 1 09:17:14 UTC 2023
Branch: refs/heads/openssl-3.0
Home: https://github.com/openssl/openssl
Commit: 9e4418f7eddba63c9c5a882d1273edd7dc0fc466
https://github.com/openssl/openssl/commit/9e4418f7eddba63c9c5a882d1273edd7dc0fc466
Author: Kurt Roeckx <kurt at roeckx.be>
Date: 2023-09-01 (Fri, 01 Sep 2023)
Changed paths:
M fuzz/build.info
M fuzz/x509.c
M test/recipes/99-test_fuzz_x509.t
Log Message:
-----------
Update X509 fuzzer to verify a chain
It add supports for verifying that it's been signed by a CA, and
checks the CRL and OCSP status
Can find CVE-2022-4203 and CVE-2023-0286
Reviewed-by: Bernd Edlinger <bernd.edlinger at hotmail.de>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
Reviewed-by: Dmitry Belyavskiy <beldmit at gmail.com>
Reviewed-by: Hugo Landau <hlandau at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20243)
(cherry picked from commit 399c2da08ab9c6a382f8e9950742a022e847fec0)
(cherry picked from commit 869d95b00e22b68897a541abf3bcee3589d2d519)
More information about the openssl-commits
mailing list