summaryrefslogtreecommitdiff
path: root/regress
diff options
context:
space:
mode:
authorTheo Buehler <tb@cvs.openbsd.org>2022-03-10 04:39:50 +0000
committerTheo Buehler <tb@cvs.openbsd.org>2022-03-10 04:39:50 +0000
commitb3ec48db1642f5354f1421a6ccecf26438e391e3 (patch)
treeac043fb32b40c35a6d8ab8353316bcf87d0e792f /regress
parentb1303db3c6549b7ec9169377333021c35eaed233 (diff)
Simple regress for NULL deref reported by Guido Vranken and fixed in
bn_exp2.c r1.13.
Diffstat (limited to 'regress')
-rw-r--r--regress/lib/libcrypto/bn/general/Makefile7
-rw-r--r--regress/lib/libcrypto/bn/general/bn_mod_exp2_mont.c45
2 files changed, 51 insertions, 1 deletions
diff --git a/regress/lib/libcrypto/bn/general/Makefile b/regress/lib/libcrypto/bn/general/Makefile
index 6b7919eb532..fec9575d0ee 100644
--- a/regress/lib/libcrypto/bn/general/Makefile
+++ b/regress/lib/libcrypto/bn/general/Makefile
@@ -1,8 +1,9 @@
-# $OpenBSD: Makefile,v 1.7 2020/12/17 00:51:11 bluhm Exp $
+# $OpenBSD: Makefile,v 1.8 2022/03/10 04:39:49 tb Exp $
.include "../../Makefile.inc"
PROGS += bntest
+PROGS += bn_mod_exp2_mont
PROGS += bn_to_string
LDADD = ${CRYPTO_INT}
@@ -20,6 +21,10 @@ run-bc: bntest.out
bc < bntest.out | tee bc.out | grep -v '^0$$'
! grep -v '^test ' <bc.out | grep -v '^0$$'
+REGRESS_TARGETS += run-bn_mod_exp2_mont
+run-bn_mod_exp2_mont: bn_mod_exp2_mont
+ ./bn_mod_exp2_mont
+
REGRESS_TARGETS += run-bn_to_string
run-bn_to_string: bn_to_string
./bn_to_string
diff --git a/regress/lib/libcrypto/bn/general/bn_mod_exp2_mont.c b/regress/lib/libcrypto/bn/general/bn_mod_exp2_mont.c
new file mode 100644
index 00000000000..60bb010b629
--- /dev/null
+++ b/regress/lib/libcrypto/bn/general/bn_mod_exp2_mont.c
@@ -0,0 +1,45 @@
+/* $OpenBSD: bn_mod_exp2_mont.c,v 1.1 2022/03/10 04:39:49 tb Exp $ */
+/*
+ * Copyright (c) 2022 Theo Buehler <tb@openbsd.org>
+ *
+ * Permission to use, copy, modify, and distribute this software for any
+ * purpose with or without fee is hereby granted, provided that the above
+ * copyright notice and this permission notice appear in all copies.
+ *
+ * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+ * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+ * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+ * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+ * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+ * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+ * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+ */
+
+#include <err.h>
+
+#include <openssl/bn.h>
+
+/*
+ * Small test for a crash reported by Guido Vranken, fixed in bn_exp2.c r1.13.
+ * https://github.com/openssl/openssl/issues/17648
+ */
+
+int
+main(void)
+{
+ BIGNUM *m;
+
+ if ((m = BN_new()) == NULL)
+ errx(1, "BN_new");
+
+ BN_zero_ex(m);
+
+ if (BN_mod_exp2_mont(NULL, NULL, NULL, NULL, NULL, m, NULL, NULL))
+ errx(1, "BN_mod_exp2_mont succeeded");
+
+ BN_free(m);
+
+ printf("SUCCESS\n");
+
+ return 0;
+}