* app-p15.c (micardo_mse): New.

(do_sign): Call it. * iso7816.c (iso7816_manage_security_env): Allow passing DATA as NULL to indicate an empty Lc. * tlv.c (find_tlv): Check that a found object fits into the buffer. (find_tlv_unchecked): New as replacement for the old non-checking variant. * app.c (select_application): Keep on using the non-checking variant. * app-openpgp.c (get_one_do, dump_all_do): Ditto.
2025-07-02 22:46:30 +02:00 · 2005-04-27 19:47:53 +00:00 · 2005-04-27 19:47:53 +00:00 · eb3f014b5d
commit eb3f014b5d
parent f2fe118bfb
7 changed files with 175 additions and 29 deletions
--- a/scd/app-openpgp.c
+++ b/scd/app-openpgp.c
@ -357,7 +357,7 @@ get_one_do (app_t app, int tag, unsigned char **result, size_t *nbytes,
        {
          const unsigned char *s;

-          s = find_tlv (buffer, buflen, tag, &valuelen);
+          s = find_tlv_unchecked (buffer, buflen, tag, &valuelen);
          if (!s)
            value = NULL; /* not found */
          else if (valuelen > buflen - (s - buffer))
@ -433,8 +433,8 @@ dump_all_do (int slot)
                  
                  if (j==i || data_objects[i].tag != data_objects[j].get_from)
                    continue;
-                  value = find_tlv (buffer, buflen,
-                                    data_objects[j].tag, &valuelen);
+                  value = find_tlv_unchecked (buffer, buflen,
+                                              data_objects[j].tag, &valuelen);
                  if (!value)
                    ; /* not found */
                  else if (valuelen > buflen - (value - buffer))