diff options
author | Dmitry Baryshkov <dbaryshkov@gmail.com> | 2020-03-10 12:12:36 +0300 |
---|---|---|
committer | Dmitry Baryshkov <dbaryshkov@gmail.com> | 2020-03-10 23:31:41 +0300 |
commit | e04f45d0283a80c990a9e1d7537ab871b769fdaf (patch) | |
tree | 75c49ac77fb8325ad41b7ea22d17e76a8e494a7d /fuzz | |
parent | 145ac5ff22db107b484454367f6dc037db2b9ac5 (diff) | |
download | gnutls-e04f45d0283a80c990a9e1d7537ab871b769fdaf.tar.gz |
x509: drop endless loop in print_extensions
If crq is malformed in extensions part, print_extensions() might loop
endlessly because gnutls_x509_crq_get_extension_info would return
unhandled GNUTLS_ASN1_DER_ERROR looping over extension index, rather
than bailing out. Fix this by handling this error code properly. Found
thanks to oss-fuzz.
Signed-off-by: Dmitry Baryshkov <dbaryshkov@gmail.com>
Diffstat (limited to 'fuzz')
-rw-r--r-- | fuzz/gnutls_x509_crq_parser_fuzzer.repro/609921afff38ec5b52feb7e17aa3035bdce0e0d3 | bin | 0 -> 830 bytes |
1 files changed, 0 insertions, 0 deletions
diff --git a/fuzz/gnutls_x509_crq_parser_fuzzer.repro/609921afff38ec5b52feb7e17aa3035bdce0e0d3 b/fuzz/gnutls_x509_crq_parser_fuzzer.repro/609921afff38ec5b52feb7e17aa3035bdce0e0d3 Binary files differnew file mode 100644 index 0000000000..4fe047d3c3 --- /dev/null +++ b/fuzz/gnutls_x509_crq_parser_fuzzer.repro/609921afff38ec5b52feb7e17aa3035bdce0e0d3 |