mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-01-30 14:01:55 +08:00
Code Issues Packages Projects Releases Wiki Activity
32,298 Commits 34 Branches 385 Tags 448 MiB
dd1f28427b
Commit Graph

13 Commits

Author SHA1 Message Date
Tavis Ormandy
415e6ac804 increase x509 code coverage metrics 
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/16651)
 2021-09-23 14:04:43 +02:00
Matt Caswell
4b8a8bb752 Fix the error handling in i2v_AUTHORITY_KEYID 
Previously if an error path is entered a leak could result.

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: David Benjamin <davidben@google.com>
 2021-08-24 14:22:07 +01:00
Matt Caswell
55869f594f Test that X509_issuer_and_serial_hash doesn't crash 
Provide a certificate with a bad issuer and check that
X509_issuer_and_serial_hash doesn't crash.

Reviewed-by: Richard Levitte <levitte@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
 2021-02-16 11:32:32 +00:00
Matt Caswell
aec9667bd1 Don't assume the type we read was the type we expected 
i2v_GENERAL_NAME and GENERAL_NAME_print were assuming that the type of
of a GENERAL_NAME (OTHERNAME) that we read in was the type we expected
it to be. If its something else then this can cause unexpected
behaviour. In the added fuzz test case an OOB read was occurring.

This issue was recently added by commit 4baee2d.

Credit to OSSFuzz for finding this issue.

Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com>
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10300)
 2019-11-04 12:49:19 +00:00
Kurt Roeckx
0b89db6b2a Update fuzz corpora 
Reviewed-by: Tim Hudson <tjh@openssl.org>
GH: #7033
 2018-08-23 22:08:08 +02:00
Kurt Roeckx
ba24968dd1 Update asn1 and x509 corpora 
Reviewed-by: Richard Levitte <levitte@openssl.org>
GH: #4653
 2017-11-03 10:58:09 +01:00
Kurt Roeckx
515b124b8b Update fuzz corpora 
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #3829
 2017-07-02 18:21:19 +02:00
Kurt Roeckx
9dd4ac8cf1 Update client, server and x509 fuzz corpus 
Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2682
 2017-02-21 18:53:07 +01:00
Kurt Roeckx
3b72dcd5fb Update fuzz corpora 
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2182
 2017-01-06 18:27:17 +01:00
Kurt Roeckx
141ecc4e55 Fuzz corpora update 
Reviewed-by: Rich Salz <rsalz@openssl.org>
GH: #2041
 2016-12-08 19:06:19 +01:00
Kurt Roeckx
c22d64845a Update fuzz corpora 
New minimal fuzz corpora set

Reviewed-by: Andy Polyakov <appro@openssl.org>

GH: #1910
 2016-11-12 16:54:51 +01:00
Kurt Roeckx
2b687397fd Update fuzz corpora 
New minimal fuzz corpora for asn1, asn1parse, bndiv, crl and x509

Reviewed-by: Andy Polyakov <appro@openssl.org>

GH: #1678
 2016-10-10 19:31:38 +02:00
Kurt Roeckx
5579eab9ef Update fuzz corpora 
This is a new minimal corpus with the following changes:
- asn1: files: 1135 (+474), tuples: 27236 (+7496)
- asn1parse: files: 305 (-3), tuples: 8758 (+11)
- bignum: files: 370 (-1), tuples: 9547 (+10)
- bndiv: files: 160 (+0), tuples: 2416 (+6)
- cms: files: 155 (-1), tuples: 3408 (+0)
- conf: files: 231 (-11), tuples: 4668 (+3)
- crl: files: 905 (+188), tuples: 22876 (+4096)
- ct: files: 117 (+35), tuples: 3557 (+908)
- x509: files: 920, tuples: 28334

Note that tuple count depends on the binary and is random.

Reviewed-by: Emilia Käsper <emilia@openssl.org>
Reviewed-by: Richard Levitte <levitte@openssl.org>
 2016-08-23 20:01:54 +01:00