Commit 07fc8d52 authored by Kurt Roeckx's avatar Kurt Roeckx
Browse files

Enable all protocols and ciphers in the fuzzer 



The config file can override it.
In case of the server, it needs to be set on the ctx or some of the
other functions on the ctx might file.

Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
DH: #6718
parent 01ad66f8

fuzz/client.c

+1 −0
Original line number Diff line number Diff line
@@ -73,6 +73,7 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) 
    ctx = SSL_CTX_new(SSLv23_method());



    client = SSL_new(ctx);

    OPENSSL_assert(SSL_set_min_proto_version(client, 0) == 1);

    OPENSSL_assert(SSL_set_cipher_list(client, "ALL:eNULL:@SECLEVEL=0") == 1);

    SSL_set_tlsext_host_name(client, "localhost");

    in = BIO_new(BIO_s_mem());

fuzz/server.c

+5 −2
Original line number Diff line number Diff line
@@ -534,6 +534,11 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) 
    /* This only fuzzes the initial flow from the client so far. */

    ctx = SSL_CTX_new(SSLv23_method());



    ret = SSL_CTX_set_min_proto_version(ctx, 0);

    OPENSSL_assert(ret == 1);

    ret = SSL_CTX_set_cipher_list(ctx, "ALL:eNULL:@SECLEVEL=0");

    OPENSSL_assert(ret == 1);



    /* RSA */

    bufp = kRSAPrivateKeyDER;

    privkey = d2i_RSAPrivateKey(NULL, &bufp, sizeof(kRSAPrivateKeyDER));
@@ -602,8 +607,6 @@ int FuzzerTestOneInput(const uint8_t *buf, size_t len) 
    /* TODO: Set up support for SRP and PSK */



    server = SSL_new(ctx);

    ret = SSL_set_cipher_list(server, "ALL:eNULL:@SECLEVEL=0");

    OPENSSL_assert(ret == 1);

    in = BIO_new(BIO_s_mem());

    out = BIO_new(BIO_s_mem());

    SSL_set_bio(server, in, out);