aljaz/lightning
1
0
Fork 0
mirror of https://github.com/aljazceru/lightning.git synced 2026-02-02 12:44:26 +01:00
Code Issues Packages Projects Releases Wiki Activity

fuzz: avoid buffer overflow in bech32 target

Browse Source 
If the fuzzer passes an empty data buffer, the fuzz target currently
attempts to read from it. We should short-circuit instead.
This commit is contained in:
Matt Morehouse
2023-03-15 13:26:23 -05:00
committed by Rusty Russell
parent df085a8a87
commit 07527d9fbb
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
tests/fuzz/fuzz-bech32.c
View File

@@ -19,6 +19,9 @@ void run(const uint8_t *data, size_t size)
int wit_version;
bech32_encoding benc;
if (size < 1)
return;
/* Buffer size is defined in each function's doc comment. */
bech32_str = malloc(size + strlen(hrp_inv) + 8);
benc = data[0] ? BECH32_ENCODING_BECH32 : BECH32_ENCODING_BECH32M;