Crash in tortls/cert_matches_key with openssl 1.0.2p
Our unit test, tortls/cert_matches_key
, does some questionable stuff that is not compatible with openssl 1.0.2p.
Namely, it calls EVP_PKEY_asn1_new(999, 0, NULL, NULL)
, which now returns NULL.
Looking at the test, I'm not sure what it's trying to do with this -- it's making a bogus public key method with a "compare" function that will always return "1". Later, it's using this thing to construct bogus PKEY objects.
This, like a lot of other tortls.c tests, is way too tightly coupled to openssl internals.