mirror of
https://github.com/opnsense/src.git
synced 2026-05-28 04:12:45 -04:00
c94886749e
* Fixed PKCS12 Decoding crashes ([CVE-2024-0727])
* Fixed Excessive time spent checking invalid RSA public keys
([CVE-2023-6237])
* Fixed POLY1305 MAC implementation corrupting vector registers on
PowerPC CPUs which support PowerISA 2.07 ([CVE-2023-6129])
* Fix excessive time spent in DH check / generation with large Q
parameter value ([CVE-2023-5678])
Release notes can be found at
https://www.openssl.org/news/openssl-3.0-notes.html.
Approved by: emaste
Merge commit '9dd13e84fa8eca8f3462bd55485aa3da8c37f54a'
(cherry picked from commit e0c4386e7e71d93b0edc0c8fa156263fc4a8b0b6)
51 lines
1.2 KiB
C
51 lines
1.2 KiB
C
/*
|
|
* Copyright 2016 The OpenSSL Project Authors. All Rights Reserved.
|
|
*
|
|
* Licensed under the Apache License 2.0 (the "License");
|
|
* you may not use this file except in compliance with the License.
|
|
* You may obtain a copy of the License at
|
|
* https://www.openssl.org/source/license.html
|
|
* or in the file LICENSE in the source distribution.
|
|
*/
|
|
|
|
/*
|
|
* Fuzz the SCT parser.
|
|
*/
|
|
|
|
#include <stdio.h>
|
|
#include <openssl/ct.h>
|
|
#include <openssl/err.h>
|
|
#include "fuzzer.h"
|
|
|
|
int FuzzerInitialize(int *argc, char ***argv)
|
|
{
|
|
OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CRYPTO_STRINGS, NULL);
|
|
CRYPTO_free_ex_index(0, -1);
|
|
ERR_clear_error();
|
|
return 1;
|
|
}
|
|
|
|
int FuzzerTestOneInput(const uint8_t *buf, size_t len)
|
|
{
|
|
const uint8_t **pp = &buf;
|
|
unsigned char *der = NULL;
|
|
STACK_OF(SCT) *scts = d2i_SCT_LIST(NULL, pp, len);
|
|
if (scts != NULL) {
|
|
BIO *bio = BIO_new(BIO_s_null());
|
|
SCT_LIST_print(scts, bio, 4, "\n", NULL);
|
|
BIO_free(bio);
|
|
|
|
if (i2d_SCT_LIST(scts, &der)) {
|
|
/* Silence unused result warning */
|
|
}
|
|
OPENSSL_free(der);
|
|
|
|
SCT_LIST_free(scts);
|
|
}
|
|
ERR_clear_error();
|
|
return 0;
|
|
}
|
|
|
|
void FuzzerCleanup(void)
|
|
{
|
|
}
|