Fix remaining non-determinism in fuzzer transcripts.
Both the C and Go code were sampling the real clock. With this, two successive iterations of runner transcripts give the same output. Change-Id: I4d9e219e863881bf518c5ac199dce938a49cdfaa Reviewed-on: https://boringssl-review.googlesource.com/11222 Commit-Queue: David Benjamin <davidben@google.com> Commit-Queue: Adam Langley <agl@google.com> Reviewed-by: Adam Langley <agl@google.com> CQ-Verified: CQ bot account: commit-bot@chromium.org <commit-bot@chromium.org>
This commit is contained in:
parent
ac5e47f300
commit
01a905717c
@ -60,4 +60,6 @@ When `-DFUZZ=1` is passed into CMake, BoringSSL builds with `BORINGSSL_UNSAFE_FU
|
||||
|
||||
* Treat every cipher as the NULL cipher.
|
||||
|
||||
* Use a hard-coded time instead of the actual time.
|
||||
|
||||
This is to prevent the fuzzer from getting stuck at a cryptographic invariant in the protocol.
|
||||
|
@ -3013,7 +3013,10 @@ void ssl_get_current_time(const SSL *ssl, struct timeval *out_clock) {
|
||||
return;
|
||||
}
|
||||
|
||||
#if defined(OPENSSL_WINDOWS)
|
||||
#if defined(BORINGSSL_UNSAFE_FUZZER_MODE)
|
||||
out_clock->tv_sec = 1234;
|
||||
out_clock->tv_usec = 1234;
|
||||
#elif defined(OPENSSL_WINDOWS)
|
||||
struct _timeb time;
|
||||
_ftime(&time);
|
||||
out_clock->tv_sec = time.time;
|
||||
|
@ -234,6 +234,9 @@ SSL_SESSION *SSL_SESSION_dup(SSL_SESSION *session, int dup_flags) {
|
||||
memcpy(new_session->peer_sha256, session->peer_sha256, SHA256_DIGEST_LENGTH);
|
||||
new_session->peer_sha256_valid = session->peer_sha256_valid;
|
||||
|
||||
new_session->timeout = session->timeout;
|
||||
new_session->time = session->time;
|
||||
|
||||
/* Copy non-authentication connection properties. */
|
||||
if (dup_flags & SSL_SESSION_INCLUDE_NONAUTH) {
|
||||
new_session->session_id_length = session->session_id_length;
|
||||
@ -241,8 +244,6 @@ SSL_SESSION *SSL_SESSION_dup(SSL_SESSION *session, int dup_flags) {
|
||||
session->session_id_length);
|
||||
|
||||
new_session->key_exchange_info = session->key_exchange_info;
|
||||
new_session->timeout = session->timeout;
|
||||
new_session->time = session->time;
|
||||
|
||||
if (session->tlsext_hostname != NULL) {
|
||||
new_session->tlsext_hostname = BUF_strdup(session->tlsext_hostname);
|
||||
|
@ -442,6 +442,9 @@ func doExchange(test *testCase, config *Config, conn net.Conn, isResume bool) er
|
||||
if *fuzzer {
|
||||
config.Bugs.NullAllCiphers = true
|
||||
}
|
||||
if *deterministic {
|
||||
config.Time = func() time.Time { return time.Unix(1234, 1234) }
|
||||
}
|
||||
|
||||
conn = &timeoutConn{conn, *idleTimeout}
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user