2003-08-18 Timo Schulz <twoaday@freakmail.de>

* encode.c (encode_sesskey): Checked the code and removed
        the warning since all compatibility checks with PGP succeeded.
        * mainproc.c (symkey_decrypt_sesskey): Better check for the
        algorithm and check the return values of some functions.

g10/ChangeLog

@@ -1,3 +1,10 @@
+2003-08-18  Timo Schulz  <twoaday@freakmail.de>
+
+	* encode.c (encode_sesskey): Checked the code and removed
+	the warning since all compatibility checks with PGP succeeded.
+	* mainproc.c (symkey_decrypt_sesskey): Better check for the
+	algorithm and check the return values of some functions.
+	
 2003-08-07  Werner Koch  <wk@gnupg.org>
 
 	* pkglue.c (pk_sign): Fix last change.

g10/encode.c

@@ -80,7 +80,6 @@ encode_store( const char *filename )
 static void
 encode_sesskey (DEK * dek, DEK ** ret_dek, byte * enckey)
 {
-#warning This functions needs a review.
   CIPHER_HANDLE hd;
   DEK * c;
   byte buf[33];
@@ -93,12 +92,16 @@ encode_sesskey( DEK *dek, DEK **ret_dek, byte *enckey )
   make_session_key (c);
   /*log_hexdump ("thekey", c->key, c->keylen);*/
 
+  /* the encrypted session key is prefixed with a one-octet algorithm id */
   buf[0] = c->algo;
   memcpy (buf + 1, c->key, c->keylen);
     
-
-    gcry_cipher_open (&hd, dek->algo, GCRY_CIPHER_MODE_CFB, 1 );
-    gcry_cipher_setkey( hd, dek->key, dek->keylen );
+  /* due to the fact that we use only checked values, consider each
+     failure as fatal. */
+  if (gcry_cipher_open (&hd, dek->algo, GCRY_CIPHER_MODE_CFB, 1))
+    BUG();
+  if (gcry_cipher_setkey (hd, dek->key, dek->keylen))
+    BUG();
   gcry_cipher_setiv (hd, NULL, 0);
   gcry_cipher_encrypt (hd, buf, c->keylen + 1, NULL, 0);
   gcry_cipher_close (hd);

g10/mainproc.c

@@ -244,18 +244,23 @@ symkey_decrypt_sesskey( DEK *dek, byte *sesskey, size_t slen )
   CIPHER_HANDLE hd;
   int n;
 
-    if ( slen < 17 || slen > 33 ) {
+  if (slen < 17 || slen > 33)
+    {
       log_error ( _("weird size for an encrypted session key (%d)\n"),
                   (int)slen);
       return;
     }
-    gcry_cipher_open ( &hd, dek->algo, GCRY_CIPHER_MODE_CFB, 1 );
-    gcry_cipher_setkey( hd, dek->key, dek->keylen );
+  /* we checked the DEK values before, so consider all errors as fatal */
+  if (gcry_cipher_open (&hd, dek->algo, GCRY_CIPHER_MODE_CFB, 1))
+      BUG();
+  if (gcry_cipher_setkey (hd, dek->key, dek->keylen))
+      BUG();
   gcry_cipher_setiv (hd, NULL, 0);
   gcry_cipher_decrypt (hd, sesskey, slen, NULL, 0);
   gcry_cipher_close (hd);
   /* check first byte (the cipher algo) */
-    if ( sesskey[0] > 10 ) {
+  if (openpgp_cipher_test_algo (sesskey[0]))
+    {
       log_error (_("invalid symkey algorithm detected (%d)\n"),
                   sesskey[0]);
       return;
@@ -265,7 +270,7 @@ symkey_decrypt_sesskey( DEK *dek, byte *sesskey, size_t slen )
     BUG ();
   /* now we replace the dek components with the real session key
      to decrypt the contents of the sequencing packet. */
-    dek->keylen = gcry_cipher_get_algo_keylen (sesskey[0]);
+  dek->keylen = n;
   dek->algo = sesskey[0];
   memcpy (dek->key, sesskey + 1, dek->keylen);
   /*log_hexdump ("thekey", dek->key, dek->keylen);*/