* parse-packet.c (parse): Disallow old style partial length for

all key material packets to avoid possible corruption of keyrings.
2003-06-10 09:05:38 +00:00 · 2003-06-10 09:05:38 +00:00 · 66a7843c94
parent 1c24b139e7
commit 66a7843c94
2 changed files with 27 additions and 2 deletions
--- a/g10/ChangeLog
+++ b/g10/ChangeLog
@ -1,3 +1,8 @@
+2003-06-10  Werner Koch  <wk@gnupg.org>
+
+	* parse-packet.c (parse): Disallow old style partial length for
+	all key material packets to avoid possible corruption of keyrings.
+
 2003-06-08  Werner Koch  <wk@gnupg.org>

 	* import.c (import_keys_internal): Invalidate the cache so that
--- a/g10/parse-packet.c
+++ b/g10/parse-packet.c
@ -367,8 +367,28 @@ parse( IOBUF inp, PACKET *pkt, int onlykeypkts, off_t *retpos,
 	lenbytes = ((ctb&3)==3)? 0 : (1<<(ctb & 3));
 	if( !lenbytes ) {
 	    pktlen = 0; /* don't know the value */
-	    if( pkttype != PKT_COMPRESSED )
-		iobuf_set_block_mode(inp, 1);
+            switch (pkttype) {
+              case PKT_ENCRYPTED:
+              case PKT_PLAINTEXT:
+                /* These partial length encodings are from an very
+		   early GnuPG release and deprecated.  However we
+		   still support them read-wise.  Note, that we should
+		   not allow them for any key related packets, because
+		   this might render a keyring unusable if an errenous
+		   packet indicated this mode but not complying to it
+		   gets imported. */
+                iobuf_set_block_mode(inp, 1);
+		break;
+
+              case PKT_COMPRESSED:
+                break; /* the orginal pgp 2 way. */
+
+              default:
+                log_error ("%s: old style partial length "
+                           "for invalid packet type\n", iobuf_where(inp) );
+                rc = G10ERR_INVALID_PACKET;
+                goto leave;
+            }
 	}
 	else {
 	    for( ; lenbytes; lenbytes-- ) {