tests: added reproducer for private key import leak

Issue found using oss-fuzz:
  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=561

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>

diff --git a/tests/key-tests/Makefile.am b/tests/key-tests/Makefile.am
index 9184233da13bd96da1a1d04cbbfba380095eadbc..90c8f5472e7d8719f9c4609c58f5687a1e1e0bf0 100644 (file)
--- a/tests/key-tests/Makefile.am
+++ b/tests/key-tests/Makefile.am
@@ -30,7 +30,7 @@ EXTRA_DIST = data/key-ca.pem data/key-user.pem \
        data/dsa.1024.pem data/dsa.2048.pem data/dsa.3072.pem data/dsa-pubkey-1018.pem \
        data/bad-key.pem data/p8key-illegal.pem data/key-illegal.pem data/pkcs8-pbes2-sha256.pem \
        data/pkcs8-pbes1-des-md5.pem data/pkcs8-invalid8.der data/key-invalid1.der \
-       data/key-invalid4.der data/key-invalid5.der \
+       data/key-invalid4.der data/key-invalid5.der data/key-invalid6.der \
        data data/pkcs8-invalid9.der data/key-invalid2.der data/pkcs8-invalid10.der \
        data/key-invalid3.der data/pkcs8-eddsa.pem data/pkcs8-eddsa.pem.txt
 

diff --git a/tests/key-tests/data/key-invalid6.der b/tests/key-tests/data/key-invalid6.der
new file mode 100644 (file)
index 0000000..d4efbcb
Binary files /dev/null and b/tests/key-tests/data/key-invalid6.der differ

diff --git a/tests/key-tests/key-invalid b/tests/key-tests/key-invalid
index b0e6d52c77f7da1a148d769d290ea8b637428556..eeb94ee976e41ec3fe8f49a66d5825d74db14b82 100755 (executable)
--- a/tests/key-tests/key-invalid
+++ b/tests/key-tests/key-invalid
@@ -35,12 +35,11 @@ if ! test -z "${VALGRIND}"; then
 fi
 
 ret=0
-for p8 in "key-invalid1.der" "key-invalid2.der" "key-invalid3.der" "key-invalid4.der" \
-"key-invalid5.der";do
+for p8 in ${srcdir}/data/key-invalid*.der;do
        set -- ${p8}
        file="$1"
        ${VALGRIND} "${CERTTOOL}" --inder --key-info \
-               --infile "${srcdir}/data/${file}"
+               --infile "${file}"
        rc=$?
        if test ${rc} != 1; then
                echo "FATAL ${p8} - errno ${rc}"