check length sanity before correcting in EVP_CTRL_AEAD_TLS1_AAD

[oweals/openssl.git] / fuzz / cms.c

diff --git a/fuzz/cms.c b/fuzz/cms.c
index f97173add354f77fda7953f257523dd02b4c919a..94390e7c91c5d4f936d223044c27f2458a120d2e 100644 (file)
--- a/fuzz/cms.c
+++ b/fuzz/cms.c
@@ -22,8 +22,12 @@ int FuzzerInitialize(int *argc, char ***argv) {
 
 int FuzzerTestOneInput(const uint8_t *buf, size_t len) {
     CMS_ContentInfo *i;
-    BIO *in = BIO_new(BIO_s_mem());
+    BIO *in;
+    if (!len) {
+        return 0;
+    }
 
+    in = BIO_new(BIO_s_mem());
     OPENSSL_assert((size_t)BIO_write(in, buf, len) == len);
     i = d2i_CMS_bio(in, NULL);
     CMS_ContentInfo_free(i);