From: Trust-Worthy <jondeveloper0@gmail.com>
Date: Mon, 22 Apr 2024 18:59:31 +0000 (-0400)
Subject: evp_test: Added the special private key that triggers bug (CVE-2011-4354)
X-Git-Tag: openssl-3.4.0-alpha1~555
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=77a30b70ebe4dc8fbcb9ed718201d26114b86ebd;p=thirdparty%2Fopenssl.git

evp_test: Added the special private key that triggers bug (CVE-2011-4354)

The bug triggers in 32 bit linux distros running openssl 0.9.8g.

This adds a regression test case.

Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24235)
---

diff --git a/test/recipes/30-test_evp_data/evppkey_ecc.txt b/test/recipes/30-test_evp_data/evppkey_ecc.txt
index 9ac1a4eb9eb..6ea11db6683 100644
--- a/test/recipes/30-test_evp_data/evppkey_ecc.txt
+++ b/test/recipes/30-test_evp_data/evppkey_ecc.txt
@@ -3598,6 +3598,20 @@ Result = DERIVE_SET_PEER_ERROR
 
 Title=prime256v1 curve tests
 
+PrivateKey=ALICE_naf_prime256v1
+-----BEGIN PRIVATE KEY-----
+MEECAQAwEwYHKoZIzj0CAQYIKoZIzj0DAQcEJzAlAgEBBCCrgvdSKyu+zo6wERHP
++5gkQ5yoY1SIgHYyZXQXRr+O2A==
+-----END PRIVATE KEY-----
+
+PublicKey=ALICE_naf_prime256v1_PUB
+-----BEGIN PUBLIC KEY-----
+MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE5usNhOHMXYW1W8/E0TRbMhSvK4a0
+ipu5+xDoKbhz55WBgERHxLWAvZugiDpyoshYqVPseGubEPA4ZpGdieYajA==
+-----END PUBLIC KEY-----
+
+PrivPubKeyPair=ALICE_naf_prime256v1:ALICE_naf_prime256v1_PUB
+
 PrivateKey=ALICE_cf_prime256v1
 -----BEGIN PRIVATE KEY-----
 MEECAQAwEwYHKoZIzj0CAQYIKoZIzj0DAQcEJzAlAgEBBCDZE0NZiGAFJX6JQxumKTFRT+XFCQqJ