]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 041962b) | patch
Add some tests for various PKCS12 files with NULL ContentInfo
authorMatt Caswell <matt@openssl.org>
Fri, 19 Jan 2024 14:32:18 +0000 (14:32 +0000)
committerMatt Caswell <matt@openssl.org>
Thu, 25 Jan 2024 15:27:43 +0000 (15:27 +0000)
commit8a85df7c60ba1372ee98acc5982e902d75f52130
treefe3ce17b3cf60a9f484309c6ab9751581ac1ae55tree | snapshot
parent041962b429ebe748c8b6b7922980dfb6decfef26commit | diff
Add some tests for various PKCS12 files with NULL ContentInfo

PKCS7 ContentInfo fields held within a PKCS12 file can be NULL, even if the
type has been set to a valid value. CVE-2024-0727 is a result of OpenSSL
attempting to dereference the NULL pointer as a result of this.

We add test for various instances of this problem.

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Hugo Landau <hlandau@openssl.org>
Reviewed-by: Neil Horman <nhorman@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23361)
test/recipes/80-test_pkcs12.t diff | blob | blame | history
test/recipes/80-test_pkcs12_data/bad1.p12 [new file with mode: 0644] blob
test/recipes/80-test_pkcs12_data/bad2.p12 [new file with mode: 0644] blob
test/recipes/80-test_pkcs12_data/bad3.p12 [new file with mode: 0644] blob
Mirror of https://github.com/openssl/openssl.git