mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-05 14:35:35 +00:00
Add tests for overreads in pem_read_buffer()
This commit is contained in:
parent
703990b839
commit
9c94b6951c
|
@ -4,7 +4,7 @@ mbed TLS ChangeLog (Sorted per branch, date)
|
||||||
|
|
||||||
Bugfix
|
Bugfix
|
||||||
* Fixed multiple buffer overreads in mbedtls_pem_read_buffer() when parsing
|
* Fixed multiple buffer overreads in mbedtls_pem_read_buffer() when parsing
|
||||||
the input string in pem format to extract the different components. Found
|
the input string in PEM format to extract the different components. Found
|
||||||
by Eyal Itkin.
|
by Eyal Itkin.
|
||||||
|
|
||||||
= mbed TLS 2.4.0 branch released 2016-10-17
|
= mbed TLS 2.4.0 branch released 2016-10-17
|
||||||
|
|
|
@ -15,3 +15,12 @@ mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102
|
||||||
|
|
||||||
PEM write (exactly two lines + 1)
|
PEM write (exactly two lines + 1)
|
||||||
mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F00":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAA==\n-----END TEST-----\n"
|
mbedtls_pem_write_buffer:"-----START TEST-----\n":"-----END TEST-----\n":"000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F000102030405060708090A0B0C0D0E0F00":"-----START TEST-----\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAAECAwQFBgcICQoLDA0ODwABAgMEBQYHCAkKCwwNDg8AAQIDBAUGBwgJCgsMDQ4P\nAA==\n-----END TEST-----\n"
|
||||||
|
|
||||||
|
PEM read (DES-EDE3-CBC + invalid iv)
|
||||||
|
mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-EDE3-CBC,00$":-4608
|
||||||
|
|
||||||
|
PEM read (DES-CBC + invalid iv)
|
||||||
|
mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: DES-CBC,00$":-4608
|
||||||
|
|
||||||
|
PEM read (unknown encryption algorithm)
|
||||||
|
mbedtls_pem_read_buffer:"^":"$":"^\nProc-Type\: 4,ENCRYPTED\nDEK-Info\: AES-,00$":-4736
|
||||||
|
|
|
@ -3,12 +3,7 @@
|
||||||
#include "mbedtls/pem.h"
|
#include "mbedtls/pem.h"
|
||||||
/* END_HEADER */
|
/* END_HEADER */
|
||||||
|
|
||||||
/* BEGIN_DEPENDENCIES
|
/* BEGIN_CASE depends_on:MBEDTLS_PEM_WRITE_C */
|
||||||
* depends_on:MBEDTLS_PEM_WRITE_C
|
|
||||||
* END_DEPENDENCIES
|
|
||||||
*/
|
|
||||||
|
|
||||||
/* BEGIN_CASE */
|
|
||||||
void mbedtls_pem_write_buffer( char *start, char *end, char *buf_str, char *result_str )
|
void mbedtls_pem_write_buffer( char *start, char *end, char *buf_str, char *result_str )
|
||||||
{
|
{
|
||||||
unsigned char buf[5000];
|
unsigned char buf[5000];
|
||||||
|
@ -38,3 +33,20 @@ exit:
|
||||||
mbedtls_free( check_buf );
|
mbedtls_free( check_buf );
|
||||||
}
|
}
|
||||||
/* END_CASE */
|
/* END_CASE */
|
||||||
|
|
||||||
|
/* BEGIN_CASE depends_on:MBEDTLS_PEM_PARSE_C:MBEDTLS_AES_C:MBEDTLS_DES_C:MBEDTLS_MD5_C:MBEDTLS_CIPHER_MODE_CBC */
|
||||||
|
void mbedtls_pem_read_buffer( char *header, char *footer, char *data, int ret )
|
||||||
|
{
|
||||||
|
mbedtls_pem_context ctx;
|
||||||
|
size_t use_len = 0;
|
||||||
|
|
||||||
|
mbedtls_pem_init( &ctx );
|
||||||
|
|
||||||
|
TEST_ASSERT( mbedtls_pem_read_buffer( &ctx, header, footer,
|
||||||
|
(const unsigned char *)data, NULL, 0,
|
||||||
|
&use_len ) == ret );
|
||||||
|
|
||||||
|
exit:
|
||||||
|
mbedtls_pem_free( &ctx );
|
||||||
|
}
|
||||||
|
/* END_CASE */
|
||||||
|
|
Loading…
Reference in a new issue