fix: Limit maximum BER packet length in FuzzParseDN to 65536 bytes (g…

…o-ldap#466) Parallel and large amount of fuzzing data can create large amounts of allocated data and cause restricted fuzzing environments to crash (see go-ldap#460)
gustavoluvizotto · Sep 15, 2023 · 80095a3 · 80095a3
1 parent 16bdf0b
commit 80095a3
Showing 1 changed file with 7 additions and 1 deletion.
diff --git a/fuzz_test.go b/fuzz_test.go
@@ -3,9 +3,15 @@
 
 package ldap
 
-import "testing"
+import (
+	ber "github.com/go-asn1-ber/asn1-ber"
+	"testing"
+)
 
 func FuzzParseDN(f *testing.F) {
+	// See https://github.com/go-asn1-ber/asn1-ber/blob/04301b4b1c5ff66221f8f8a394f814a9917d678a/fuzz_test.go#L33-L37
+	// for why this limitation is necessary
+	ber.MaxPacketLengthBytes = 65536
 
 	f.Add("*")
 	f.Add("cn=Jim\\0Test")