diff options
author | Tomas Mraz <tomas@openssl.org> | 2024-04-12 15:37:58 +0200 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2024-04-17 09:30:39 +0200 |
commit | 20c6924d5e3f2615f9132bf730e7e2fd9206a336 (patch) | |
tree | 68ec42dec15e70b41523df654c2ef12d3c645268 | |
parent | 1c95d96411de59379a043fa4e60f15f7862433d3 (diff) |
fuzz/decoder.c: Limit the EVP_PKEY_param_check on DHX keys as well
Reviewed-by: Neil Horman <nhorman@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24126)
(cherry picked from commit 8d8a0144303374f69f73fc944dd55c68600d15e5)
-rw-r--r-- | fuzz/decoder.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/fuzz/decoder.c b/fuzz/decoder.c index c7b6d02f73..4888c5cd40 100644 --- a/fuzz/decoder.c +++ b/fuzz/decoder.c @@ -68,7 +68,8 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) * Param check will take too long time on large DH parameters. * Skip it. */ - if (!EVP_PKEY_is_a(pkey, "DH") || EVP_PKEY_get_bits(pkey) <= 8192) + if ((!EVP_PKEY_is_a(pkey, "DH") && !EVP_PKEY_is_a(pkey, "DHX")) + || EVP_PKEY_get_bits(pkey) <= 8192) EVP_PKEY_param_check(ctx); EVP_PKEY_public_check(ctx); |