fuzz/decoder.c: Lower the limits on key checks

These checks still take too long time on clusterfuzz so they are longer than the timeout limit. Reviewed-by: Neil Horman <nhorman@openssl.org> Reviewed-by: Kurt Roeckx <kurt@roeckx.be> (Merged from https://github.com/openssl/openssl/pull/24781)
author: Tomas Mraz <tomas@openssl.org> 2024-07-02 15:36:03 +0200
committer: Neil Horman <nhorman@openssl.org> 2024-07-05 07:45:53 -0400
commit: 29696af689df734cae05181d85ee04470c3839d3 (patch)
tree: 147bed5238aec7785051fae09f680685050828b5
parent: 59c415a45f47cb34147427e46c78d945919b1da2 (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/fuzz/decoder.c b/fuzz/decoder.c
index 4888c5cd40..f8758d5e34 100644
--- a/fuzz/decoder.c
+++ b/fuzz/decoder.c
@@ -69,12 +69,12 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len)
          * Skip it.
          */
         if ((!EVP_PKEY_is_a(pkey, "DH") && !EVP_PKEY_is_a(pkey, "DHX"))
-            || EVP_PKEY_get_bits(pkey) <= 8192)
+            || EVP_PKEY_get_bits(pkey) <= 2048)
             EVP_PKEY_param_check(ctx);
 
         EVP_PKEY_public_check(ctx);
         /* Private and pairwise checks are unbounded, skip for large keys. */
-        if (EVP_PKEY_get_bits(pkey) <= 16384) {
+        if (EVP_PKEY_get_bits(pkey) <= 4096) {
             EVP_PKEY_private_check(ctx);
             EVP_PKEY_pairwise_check(ctx);
         }
author	Tomas Mraz <tomas@openssl.org>	2024-07-02 15:36:03 +0200
committer	Neil Horman <nhorman@openssl.org>	2024-07-05 07:45:53 -0400
commit	29696af689df734cae05181d85ee04470c3839d3 (patch)
tree	147bed5238aec7785051fae09f680685050828b5
parent	59c415a45f47cb34147427e46c78d945919b1da2 (diff)