diff options
| author | Werner Koch <wk@gnupg.org> | 2002-08-09 23:01:03 +0200 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2002-08-09 23:01:03 +0200 |
| commit | dc8f3ee42c4bd873ddce57098c23ca5dbd445fff (patch) | |
| tree | 2da4a9277e8331ac4ad28591e7f49d5c5b4bec7d /sm | |
| parent | Tweaked the build system so that make distcheck finanly said Well (diff) | |
| download | gnupg2-dc8f3ee42c4bd873ddce57098c23ca5dbd445fff.tar.xz gnupg2-dc8f3ee42c4bd873ddce57098c23ca5dbd445fff.zip | |
* decrypt.c (prepare_decryption): Hack to detected already
unpkcsedone keys.
Diffstat (limited to 'sm')
| -rw-r--r-- | sm/ChangeLog | 3 | ||||
| -rw-r--r-- | sm/decrypt.c | 58 |
2 files changed, 36 insertions, 25 deletions
diff --git a/sm/ChangeLog b/sm/ChangeLog index 6e9dc0acb..cf05842f8 100644 --- a/sm/ChangeLog +++ b/sm/ChangeLog @@ -1,5 +1,8 @@ 2002-08-09 Werner Koch <wk@gnupg.org> + * decrypt.c (prepare_decryption): Hack to detected already + unpkcsedone keys. + * gpgsm.c (emergency_cleanup): New. (main): Initialize the signal handler. diff --git a/sm/decrypt.c b/sm/decrypt.c index a793bbbef..44cb54416 100644 --- a/sm/decrypt.c +++ b/sm/decrypt.c @@ -73,35 +73,43 @@ prepare_decryption (const char *hexkeygrip, KsbaConstSexp enc_val, log_printhex ("pkcs1 encoded session key:", seskey, seskeylen); n=0; - if (n + 7 > seskeylen ) + if (seskeylen == 24) { - rc = seterr (Invalid_Session_Key); - goto leave; + /* Smells like a 3-des key. This might happen because a SC has + already done the unpacking. fixme! */ } - - /* FIXME: Actually the leading zero is required but due to the way - we encode the output in libgcrypt as an MPI we are not able to - encode that leading zero. However, when using a Smartcard we are - doing it the rightway and therefore we have to skip the zero. This - should be fixed in gpg-agent of course. */ - if (!seskey[n]) - n++; - - if (seskey[n] != 2 ) /* wrong block type version */ - { - rc = seterr (Invalid_Session_Key); - goto leave; + else + { + if (n + 7 > seskeylen ) + { + rc = seterr (Invalid_Session_Key); + goto leave; + } + + /* FIXME: Actually the leading zero is required but due to the way + we encode the output in libgcrypt as an MPI we are not able to + encode that leading zero. However, when using a Smartcard we are + doing it the rightway and therefore we have to skip the zero. This + should be fixed in gpg-agent of course. */ + if (!seskey[n]) + n++; + + if (seskey[n] != 2 ) /* wrong block type version */ + { + rc = seterr (Invalid_Session_Key); + goto leave; + } + + for (n++; n < seskeylen && seskey[n]; n++) /* skip the random bytes */ + ; + n++; /* and the zero byte */ + if (n >= seskeylen ) + { + rc = seterr (Invalid_Session_Key); + goto leave; + } } - for (n++; n < seskeylen && seskey[n]; n++) /* skip the random bytes */ - ; - n++; /* and the zero byte */ - if (n >= seskeylen ) - { - rc = seterr (Invalid_Session_Key); - goto leave; - } - if (DBG_CRYPTO) log_printhex ("session key:", seskey+n, seskeylen-n); |