xref: /openssl/fuzz/decoder.c (revision 8d8a0144) 
1 /*
2  * Copyright 2023 The OpenSSL Project Authors. All Rights Reserved.
3  *
4  * Licensed under the Apache License 2.0 (the "License");
5  * you may not use this file except in compliance with the License.
6  * You may obtain a copy of the License at
7  * https://www.openssl.org/source/license.html
8  * or in the file LICENSE in the source distribution.
9  */
10 
11 #include <openssl/decoder.h>
12 #include <openssl/err.h>
13 #include <openssl/rand.h>
14 #include "fuzzer.h"
15 
16 static ASN1_PCTX *pctx;
17 
FuzzerInitialize(int * argc,char *** argv)18 int FuzzerInitialize(int *argc, char ***argv)
19 {
20     FuzzerSetRand();
21 
22     OPENSSL_init_crypto(OPENSSL_INIT_LOAD_CRYPTO_STRINGS
23                         | OPENSSL_INIT_ADD_ALL_CIPHERS
24                         | OPENSSL_INIT_ADD_ALL_DIGESTS, NULL);
25 
26     pctx = ASN1_PCTX_new();
27     ASN1_PCTX_set_flags(pctx, ASN1_PCTX_FLAGS_SHOW_ABSENT
28                               | ASN1_PCTX_FLAGS_SHOW_SEQUENCE
29                               | ASN1_PCTX_FLAGS_SHOW_SSOF
30                               | ASN1_PCTX_FLAGS_SHOW_TYPE
31                               | ASN1_PCTX_FLAGS_SHOW_FIELD_STRUCT_NAME);
32     ASN1_PCTX_set_str_flags(pctx, ASN1_STRFLGS_UTF8_CONVERT
33                                   | ASN1_STRFLGS_SHOW_TYPE
34                                   | ASN1_STRFLGS_DUMP_ALL);
35 
36     ERR_clear_error();
37     CRYPTO_free_ex_index(0, -1);
38     return 1;
39 }
40 
FuzzerTestOneInput(const uint8_t * buf,size_t len)41 int FuzzerTestOneInput(const uint8_t *buf, size_t len)
42 {
43     OSSL_DECODER_CTX *dctx;
44     EVP_PKEY *pkey = NULL;
45     EVP_PKEY_CTX *ctx = NULL;
46     BIO *bio;
47 
48     bio = BIO_new(BIO_s_null());
49     dctx = OSSL_DECODER_CTX_new_for_pkey(&pkey, NULL, NULL, NULL, 0, NULL,
50                                                 NULL);
51     if (dctx == NULL) {
52         return 0;
53     }
54     if (OSSL_DECODER_from_data(dctx, &buf, &len)) {
55         EVP_PKEY *pkey2;
56 
57         EVP_PKEY_print_public(bio, pkey, 1, pctx);
58         EVP_PKEY_print_private(bio, pkey, 1, pctx);
59         EVP_PKEY_print_params(bio, pkey, 1, pctx);
60 
61         pkey2 = EVP_PKEY_dup(pkey);
62         OPENSSL_assert(pkey2 != NULL);
63         EVP_PKEY_eq(pkey, pkey2);
64         EVP_PKEY_free(pkey2);
65 
66         ctx = EVP_PKEY_CTX_new(pkey, NULL);
67         /*
68          * Param check will take too long time on large DH parameters.
69          * Skip it.
70          */
71         if ((!EVP_PKEY_is_a(pkey, "DH") && !EVP_PKEY_is_a(pkey, "DHX"))
72             || EVP_PKEY_get_bits(pkey) <= 8192)
73             EVP_PKEY_param_check(ctx);
74 
75         EVP_PKEY_public_check(ctx);
76         /* Private and pairwise checks are unbounded, skip for large keys. */
77         if (EVP_PKEY_get_bits(pkey) <= 16384) {
78             EVP_PKEY_private_check(ctx);
79             EVP_PKEY_pairwise_check(ctx);
80         }
81         OPENSSL_assert(ctx != NULL);
82         EVP_PKEY_CTX_free(ctx);
83         EVP_PKEY_free(pkey);
84     }
85     OSSL_DECODER_CTX_free(dctx);
86 
87     BIO_free(bio);
88     ERR_clear_error();
89     return 0;
90 }
91 
FuzzerCleanup(void)92 void FuzzerCleanup(void)
93 {
94     ASN1_PCTX_free(pctx);
95     FuzzerClearRand();
96 }
97