Mercurial > dropbear
diff fuzzer-kexecdh.c @ 1606:98d2b125eb89
kexhashbuf was much to small in kex fuzzers
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Thu, 08 Mar 2018 23:23:19 +0800 |
| parents | 4fe7cc9e45eb |
| children | a57822db3eac |
line wrap: on
line diff
--- a/fuzzer-kexecdh.c Thu Mar 08 23:22:53 2018 +0800 +++ b/fuzzer-kexecdh.c Thu Mar 08 23:23:19 2018 +0800 @@ -60,8 +60,7 @@ buffer * ecdh_qs = buf_getstringbuf(fuzz.input); - ses.kexhashbuf = buf_new(4); - buf_putint(ses.kexhashbuf, 12345); + ses.kexhashbuf = buf_new(KEXHASHBUF_MAX_INTS); kexecdh_comb_key(ecdh_param, ecdh_qs, svr_opts.hostkey); /* kexhashbuf is freed in kexdh_comb_key */