Merge remote-tracking branch 'hanno/mpi_read_file_underflow_backport-1.3' into mbedtls-1.3

* hanno/mpi_read_file_underflow_backport-1.3: Fix potential stack underflow in mpi_read_file.
2025-02-03 23:40:59 +00:00 · 2017-06-08 19:54:29 +02:00 · 2017-06-08 19:54:29 +02:00 · ca3ff06cea
parent f1ab79079d 8c7698b62a
commit ca3ff06cea
3 changed files with 14 additions and 4 deletions
--- a/2
+++ b/2
@ -25,6 +25,8 @@ Bugfix
     Found by blaufish. Fixes #641.
   * Fix incorrect sign computation in modular exponentiation
     when dealing with negative MPI. Found by Guido Vranken.
+   * Fix potential stack underflow in mpi_read_file.
+     Found by Guido Vranken.

 Changes
   * Clarify ECDSA documentation and improve the sample code to avoid
--- a/include/polarssl/bignum.h
+++ b/include/polarssl/bignum.h
@ -377,7 +377,7 @@ int mpi_write_string( const mpi *X, int radix, char *s, size_t *slen );

 #if defined(POLARSSL_FS_IO)
 /**
- * \brief          Read X from an opened file
+ * \brief          Read MPI from a line in an opened file
 *
 * \param X        Destination MPI
 * \param radix    Input numeric base
@ -386,6 +386,14 @@ int mpi_write_string( const mpi *X, int radix, char *s, size_t *slen );
 * \return         0 if successful, POLARSSL_ERR_MPI_BUFFER_TOO_SMALL if
 *                 the file read buffer is too small or a
 *                 POLARSSL_ERR_MPI_XXX error code
+ *
+ * \note           On success, this function advances the file stream
+ *                 to the end of the current line or to EOF.
+ *
+ *                 The function returns 0 on an empty line.
+ *
+ *                 Leading whitespaces are ignored, as is a
+ *                 '0x' prefix for radix 16.
 */
 int mpi_read_file( mpi *X, int radix, FILE *fin );

--- a/library/bignum.c
+++ b/library/bignum.c
@ -620,11 +620,11 @@ int mpi_read_file( mpi *X, int radix, FILE *fin )
    if( slen == sizeof( s ) - 2 )
        return( POLARSSL_ERR_MPI_BUFFER_TOO_SMALL );

-    if( s[slen - 1] == '\n' ) { slen--; s[slen] = '\0'; }
-    if( s[slen - 1] == '\r' ) { slen--; s[slen] = '\0'; }
+    if( slen > 0 && s[slen - 1] == '\n' ) { slen--; s[slen] = '\0'; }
+    if( slen > 0 && s[slen - 1] == '\r' ) { slen--; s[slen] = '\0'; }

    p = s + slen;
-    while( --p >= s )
+    while( p-- > s )
        if( mpi_get_digit( &d, radix, *p ) != 0 )
            break;