[openssh-commits] [openssh] branch master updated: fix bug in recently-added sntrup761 fuzzer

[git+noreply at mindrot.org]

This is an automated email from the git hooks/post-receive script.

djm pushed a commit to branch master
in repository openssh.

The following commit(s) were added to refs/heads/master by this push:
     new 5fb2b5ad fix bug in recently-added sntrup761 fuzzer
5fb2b5ad is described below

commit 5fb2b5ad0e748732a27fd8cc16a7ca3c21770806
Author: Damien Miller <djm at mindrot.org>
AuthorDate: Tue Sep 17 11:53:24 2024 +1000

    fix bug in recently-added sntrup761 fuzzer
    
    key values need to be static to persist across invocations;
    spotted by the Qualys Security Advisory team.
---
 regress/misc/fuzz-harness/sntrup761_dec_fuzz.cc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/regress/misc/fuzz-harness/sntrup761_dec_fuzz.cc b/regress/misc/fuzz-harness/sntrup761_dec_fuzz.cc
index e508cb15..9aecae0a 100644
--- a/regress/misc/fuzz-harness/sntrup761_dec_fuzz.cc
+++ b/regress/misc/fuzz-harness/sntrup761_dec_fuzz.cc
@@ -50,8 +50,8 @@ void privkeys(unsigned char *zero_sk, unsigned char *rnd_sk)
 int LLVMFuzzerTestOneInput(const uint8_t* input, size_t len)
 {
 	static bool once;
-	unsigned char zero_sk[crypto_kem_sntrup761_SECRETKEYBYTES];
-	unsigned char rnd_sk[crypto_kem_sntrup761_SECRETKEYBYTES];
+	static unsigned char zero_sk[crypto_kem_sntrup761_SECRETKEYBYTES];
+	static unsigned char rnd_sk[crypto_kem_sntrup761_SECRETKEYBYTES];
 	unsigned char ciphertext[crypto_kem_sntrup761_CIPHERTEXTBYTES];
 	unsigned char secret[crypto_kem_sntrup761_BYTES];
 

-- 
To stop receiving notification emails like this one, please contact
djm at mindrot.org.