From 23919b6726d618624dc2f0370ed8f7bef97aa24a Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@redhat.com>
Date: Wed, 9 Aug 2017 10:21:06 +0200
Subject: tests: added reproducers for private key import leak

Issue found using oss-fuzz:
  https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=561

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
---
 tests/key-tests/Makefile.am           |   3 ++-
 tests/key-tests/data/key-invalid6.der | Bin 0 -> 633 bytes
 tests/key-tests/data/key-invalid7.der | Bin 0 -> 1304 bytes
 tests/key-tests/key-invalid           |   5 ++---
 4 files changed, 4 insertions(+), 4 deletions(-)
 create mode 100644 tests/key-tests/data/key-invalid6.der
 create mode 100644 tests/key-tests/data/key-invalid7.der

diff --git a/tests/key-tests/Makefile.am b/tests/key-tests/Makefile.am
index 9184233da1..93a4a33326 100644
--- a/tests/key-tests/Makefile.am
+++ b/tests/key-tests/Makefile.am
@@ -30,7 +30,8 @@ EXTRA_DIST = data/key-ca.pem data/key-user.pem \
 	data/dsa.1024.pem data/dsa.2048.pem data/dsa.3072.pem data/dsa-pubkey-1018.pem \
 	data/bad-key.pem data/p8key-illegal.pem data/key-illegal.pem data/pkcs8-pbes2-sha256.pem \
 	data/pkcs8-pbes1-des-md5.pem data/pkcs8-invalid8.der data/key-invalid1.der \
-	data/key-invalid4.der data/key-invalid5.der \
+	data/key-invalid4.der data/key-invalid5.der data/key-invalid6.der \
+	data/key-invalid7.der \
 	data data/pkcs8-invalid9.der data/key-invalid2.der data/pkcs8-invalid10.der \
 	data/key-invalid3.der data/pkcs8-eddsa.pem data/pkcs8-eddsa.pem.txt
 
diff --git a/tests/key-tests/data/key-invalid6.der b/tests/key-tests/data/key-invalid6.der
new file mode 100644
index 0000000000..d4efbcb1ca
Binary files /dev/null and b/tests/key-tests/data/key-invalid6.der differ
diff --git a/tests/key-tests/data/key-invalid7.der b/tests/key-tests/data/key-invalid7.der
new file mode 100644
index 0000000000..610b7653f6
Binary files /dev/null and b/tests/key-tests/data/key-invalid7.der differ
diff --git a/tests/key-tests/key-invalid b/tests/key-tests/key-invalid
index b0e6d52c77..eeb94ee976 100755
--- a/tests/key-tests/key-invalid
+++ b/tests/key-tests/key-invalid
@@ -35,12 +35,11 @@ if ! test -z "${VALGRIND}"; then
 fi
 
 ret=0
-for p8 in "key-invalid1.der" "key-invalid2.der" "key-invalid3.der" "key-invalid4.der" \
-"key-invalid5.der";do
+for p8 in ${srcdir}/data/key-invalid*.der;do
 	set -- ${p8}
 	file="$1"
 	${VALGRIND} "${CERTTOOL}" --inder --key-info \
-		--infile "${srcdir}/data/${file}"
+		--infile "${file}"
 	rc=$?
 	if test ${rc} != 1; then
 		echo "FATAL ${p8} - errno ${rc}"
-- 
cgit v1.2.1