提交 9d7ce8d4 编写于 作者: R Richard Levitte 提交者: Matt Caswell

Fix no-cms (CVE-2016-7053)

Reviewed-by: NMatt Caswell <matt@openssl.org>
上级 70d8b304
......@@ -12,6 +12,7 @@ use warnings;
use File::Spec;
use OpenSSL::Test qw/:DEFAULT srctop_file/;
use OpenSSL::Test::Utils;
setup("test_d2i");
......@@ -80,9 +81,13 @@ ok(run(test(["d2i_test", "ASN1_INTEGER", "decode",
srctop_file('test','d2i-tests','bad-int-padminus1.der')])),
"Running d2i_test bad-int-padminus1.der INTEGER");
# Invalid CMS structure with decode error in CHOICE value.
# Test for CVE-2016-7053
SKIP: {
skip "No CMS support in this configuration", 1 if disabled("cms");
ok(run(test(["d2i_test", "CMS_ContentInfo", "decode",
srctop_file('test','d2i-tests','bad-cms.der')])),
"Running d2i_test bad-cms.der CMS ContentInfo");
# Invalid CMS structure with decode error in CHOICE value.
# Test for CVE-2016-7053
ok(run(test(["d2i_test", "CMS_ContentInfo", "decode",
srctop_file('test','d2i-tests','bad-cms.der')])),
"Running d2i_test bad-cms.der CMS ContentInfo");
}
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册