tests: added test case with invalid openpgp cert

That triggers a heap buffer overflow: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=420 Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-02-20 11:01:07 +0100
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-02-20 11:25:40 +0100
commit: b1f9ab536fc17a7cae8960430b0e3d7a7401274c (patch)
tree: 9b0adb3d21633e0efcaa7d37f559cad49c80d311
parent: e941092bcaa9b86ef2f96cf436321827889f4117 (diff)
download: gnutls-b1f9ab536fc17a7cae8960430b0e3d7a7401274c.tar.gz
3 files changed, 4 insertions, 2 deletions
diff --git a/tests/cert-tests/Makefile.am b/tests/cert-tests/Makefile.am
index 4ea9af9806..c32c8fe1f5 100644
--- a/tests/cert-tests/Makefile.am
+++ b/tests/cert-tests/Makefile.am
@@ -62,7 +62,8 @@ EXTRA_DIST = data/ca-no-pathlen.pem data/no-ca-or-pathlen.pem data/aki-cert.pem
 	data/code-signing-ca.pem data/code-signing-cert.pem data/multi-value-dn.pem \
 	data/pkcs7-cat-ca.pem data/pkcs7-cat.p7 data/openssl.p7b data/openssl.p7b.out \
 	data/openssl-keyid.p7b data/openssl-keyid.p7b.out data/openssl.p12 \
-	data/openpgp-invalid1.pub data/openpgp-invalid2.pub data/openpgp-invalid3.pub
+	data/openpgp-invalid1.pub data/openpgp-invalid2.pub data/openpgp-invalid3.pub \
+	data/openpgp-invalid4.pub data/openpgp-invalid5.pub
 
 dist_check_SCRIPTS = pathlen aki certtool invalid-sig email \
 	pkcs7 pkcs7-broken-sigs privkey-import name-constraints certtool-long-cn crl provable-privkey \
diff --git a/tests/cert-tests/data/openpgp-invalid5.pub b/tests/cert-tests/data/openpgp-invalid5.pub
new file mode 100644
index 0000000000..a4b6f5ff56
--- /dev/null
+++ b/tests/cert-tests/data/openpgp-invalid5.pub
@@ -0,0 +1 @@
+�����������������������������������������������������������������������������������������������������������͠���������͠��������
+\ No newline at end of file
diff --git a/tests/cert-tests/openpgp-cert-parser b/tests/cert-tests/openpgp-cert-parser
index d5c30f23fd..e3d7d88179 100755
--- a/tests/cert-tests/openpgp-cert-parser
+++ b/tests/cert-tests/openpgp-cert-parser
@@ -41,7 +41,7 @@ fail() {
 echo "Checking OpenPGP certificate parsing"
 
 for i in "truncated.pub" "attribute-leak-1.pub" "subpkt-leak.pub" "openpgp-invalid1.pub" \
-	"openpgp-invalid2.pub" "openpgp-invalid3.pub" "openpgp-invalid4.pub";do
+	"openpgp-invalid2.pub" "openpgp-invalid3.pub" "openpgp-invalid4.pub" "openpgp-invalid5.pub";do
 	${VALGRIND} "${CERTTOOL}" --inraw --pgp-certificate-info --infile "${srcdir}/data/${i}"
 	rc=$?
 	if test $rc != 1;then
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-02-20 11:01:07 +0100
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-02-20 11:25:40 +0100
commit	b1f9ab536fc17a7cae8960430b0e3d7a7401274c (patch)
tree	9b0adb3d21633e0efcaa7d37f559cad49c80d311
parent	e941092bcaa9b86ef2f96cf436321827889f4117 (diff)
download	gnutls-b1f9ab536fc17a7cae8960430b0e3d7a7401274c.tar.gz