diff options
author | Tomas Mraz <tomas@openssl.org> | 2024-04-12 15:37:58 +0200 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2024-04-17 09:30:45 +0200 |
commit | f94e5fcc5d265d2d7b17a498943007a8b883818c (patch) | |
tree | b80ed34d8d27a39f8a4e0f6880dd752ca2d6b0cb | |
parent | a53e93469c16ecc247d4e123f6c19fd4a9b9e3b1 (diff) |
fuzz/decoder.c: Limit the EVP_PKEY_param_check on DHX keys as well
Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24126)
(cherry picked from commit 8d8a0144303374f69f73fc944dd55c68600d15e5)
-rw-r--r-- | fuzz/decoder.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/fuzz/decoder.c b/fuzz/decoder.c index c7b6d02f73..4888c5cd40 100644 --- a/fuzz/decoder.c +++ b/fuzz/decoder.c @@ -68,7 +68,8 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) * Param check will take too long time on large DH parameters. * Skip it. */ - if (!EVP_PKEY_is_a(pkey, "DH") || EVP_PKEY_get_bits(pkey) <= 8192) + if ((!EVP_PKEY_is_a(pkey, "DH") && !EVP_PKEY_is_a(pkey, "DHX")) + || EVP_PKEY_get_bits(pkey) <= 8192) EVP_PKEY_param_check(ctx); EVP_PKEY_public_check(ctx); |