[openssl.org #1140] openssl pkcs12 sefaults on invalid input

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view
|

[openssl.org #1140] openssl pkcs12 sefaults on invalid input

Rich Salz via RT

the attached file is corrupted. Still it might be better
to handle that than to segfault. Tested on linux 2.6.*/
debian sarge with openssl 0.9.8-beta6.
 
the file password is "password".
 
(gdb) r pkcs12 -in /home/aj/test-trunk.p12 -noout -info
Starting
program: /home/aj/opentest/src/openssl-0.9.8-beta6/apps/openssl pkcs12  
-in /home/aj/test-trunk.p12 -noout -info
Enter Import Password:
MAC Iteration 2048
 
Program received signal SIGSEGV, Segmentation fault.
0xb7ed03a6 in SHA1_Update ()
from /home/aj/opentest/lib/libcrypto.so.0.9.8
(gdb) bt
#0  0xb7ed03a6 in SHA1_Update ()
from /home/aj/opentest/lib/libcrypto.so.0.9.8
(gdb)  
 
 
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       [hidden email]
Automated List Manager                           [hidden email]