nihilist/tor
1
0
Fork 0
mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-11-10 13:13:44 +01:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'bug33032_041' into bug33032_042

Browse Source
This commit is contained in:
Nick Mathewson 2020-03-11 10:35:47 -04:00
commit 554b805093
3 changed files with 43 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
changes/bug33032 Normal file
View File

@ -0,0 +1,6 @@
o Minor bugfixes (key portability):
- When reading PEM-encoded key data, tolerate CRLF line-endings even if
we are not running on Windows. Previously, non-Windows hosts
would reject these line-endings in certain positions, making
certain key files hard to move from one host to another.
Fixes bug 33032; bugfix on 0.3.5.1-alpha.

8
src/lib/encoding/pem.c
View File

@ -85,13 +85,19 @@ pem_decode(uint8_t *dest, size_t destlen, const char *src, size_t srclen,
src = eat_whitespace_eos(src, eos); src = eat_whitespace_eos(src, eos);
char *tag = NULL; char *tag = NULL;
tor_asprintf(&tag, "-----BEGIN %s-----\n", objtype); tor_asprintf(&tag, "-----BEGIN %s-----", objtype);
if ((size_t)(eos-src) < strlen(tag) || fast_memneq(src, tag, strlen(tag))) { if ((size_t)(eos-src) < strlen(tag) || fast_memneq(src, tag, strlen(tag))) {
tor_free(tag); tor_free(tag);
return -1; return -1;
} }
src += strlen(tag); src += strlen(tag);
tor_free(tag); tor_free(tag);
/* At this point we insist on spaces (including CR), then an LF. */
src = eat_whitespace_eos_no_nl(src, eos);
if (src == eos || *src != '\n') {
/* Extra junk at end of line: this isn't valid. */
return -1;
}
// NOTE lack of trailing \n. We do not enforce its presence. // NOTE lack of trailing \n. We do not enforce its presence.
tor_asprintf(&tag, "\n-----END %s-----", objtype); tor_asprintf(&tag, "\n-----END %s-----", objtype);

30
src/test/test_pem.c
View File

@ -115,8 +115,38 @@ test_crypto_pem_decode(void *arg)
; ;
} }
static void
test_crypto_pem_decode_crlf(void *arg)
{
(void)arg;
char crlf_version[4096];
uint8_t buf[4096];
/* Convert 'expected' to a version with CRLF instead of LF. */
const char *inp = expected;
char *outp = crlf_version;
while (*inp) {
if (*inp == '\n') {
*outp++ = '\r';
}
*outp++ = *inp++;
}
*outp = 0;
/* Decoding should succeed (or else we have bug 33032 again) */
int n = pem_decode(buf, sizeof(buf),
crlf_version, strlen(crlf_version),
"WOMBAT QUOTE");
tt_int_op(n, OP_EQ, strlen(example_pre));
tt_mem_op(buf, OP_EQ, example_pre, n);
done:
;
}
struct testcase_t pem_tests[] = { struct testcase_t pem_tests[] = {
{ "encode", test_crypto_pem_encode, 0, NULL, NULL }, { "encode", test_crypto_pem_encode, 0, NULL, NULL },
{ "decode", test_crypto_pem_decode, 0, NULL, NULL }, { "decode", test_crypto_pem_decode, 0, NULL, NULL },
{ "decode_crlf", test_crypto_pem_decode_crlf, 0, NULL, NULL },
END_OF_TESTCASES END_OF_TESTCASES
}; };