Google Git
Sign in
boringssl/boringssl/ddedf6d455e33d6a0b3bc40581700f3d252029d7^!/.
commit
ddedf6d455e33d6a0b3bc40581700f3d252029d7
[log]
author
David Benjamin <davidben@google.com>
Fri Aug 10 08:42:41 2018 -0500
committer
Adam Langley <agl@google.com>
Fri Aug 10 14:44:43 2018 +0000
tree
046ae8505a06ea167625c054f9222be84fa8ed2c
parent
17dc94e87466ac8928096c4f45954989d585cfe5 [diff]
Fix SSL_CTX_set1_sigalgs_list fuzzer.

SSL_CTX_set1_sigalgs_list wants a NUL-terminated string, so we need to use
GetString to give it one.

Bug: oss-fuzz:9808
Change-Id: Id7f676aa514c36de9dea900763db3cbbf5c79a4c
Reviewed-on: https://boringssl-review.googlesource.com/30804
Reviewed-by: Adam Langley <agl@google.com>

diff --git a/fuzz/ssl_ctx_api.cc b/fuzz/ssl_ctx_api.cc
index c050770..4b47734 100644
--- a/fuzz/ssl_ctx_api.cc
+++ b/fuzz/ssl_ctx_api.cc

@@ -479,7 +479,11 @@
         SSL_CTX_set1_sigalgs(ctx, (const int *)CBS_data(cbs), CBS_len(cbs) / 2);
       },
       [](SSL_CTX *ctx, CBS *cbs) {
-        SSL_CTX_set1_sigalgs_list(ctx, (const char *) CBS_data(cbs));
+        std::string sigalgs;
+        if (!GetString(&sigalgs, cbs)) {
+          return;
+        }
+        SSL_CTX_set1_sigalgs_list(ctx, sigalgs.c_str());
       },
   };