From 61389f0981b4e30247f2cb9828e4a0e0fc55f7a6 Mon Sep 17 00:00:00 2001 From: gbrl Date: Tue, 8 Aug 2017 15:17:01 +0200 Subject: [PATCH] bndiv fuzzer: limit the size of the input to avoid timeout MIME-Version: 1.0 Content-Type: text/plain; charset=utf8 Content-Transfer-Encoding: 8bit CLA: trivial Reviewed-by: Emilia Käsper Reviewed-by: Rich Salz (Merged from https://github.com/openssl/openssl/pull/4119) --- fuzz/bndiv.c | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/fuzz/bndiv.c b/fuzz/bndiv.c index 30d84482a6..e9c70bbd4c 100644 --- a/fuzz/bndiv.c +++ b/fuzz/bndiv.c @@ -18,6 +18,9 @@ #include #include "fuzzer.h" +/* 256 kB */ +#define MAX_LEN (256 * 1000) + static BN_CTX *ctx; static BIGNUM *b1; static BIGNUM *b2; @@ -47,6 +50,10 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) /* s1 and s2 will be the signs for b1 and b2. */ int s1 = 0, s2 = 0; + /* limit the size of the input to avoid timeout */ + if (len > MAX_LEN) + len = MAX_LEN; + /* We are going to split the buffer in two, sizes l1 and l2, giving b1 and * b2. */ -- 2.25.1