mirror of
git://git.gnupg.org/gnupg.git
synced 2024-07-03 02:58:57 +02:00
![]() * sm/minip12.c (struct tlv_ctx_s): Add origbuffer and origbufsize. Remove pop_count. Rename offset to length. (dump_tag_info, _dump_tag_info): Rewrite. (dump_tlv_ctx, _dump_tlv_ctx): Rewrite. (tlv_new): Init origbuffer. (_tlv_peek): Add arg ti. (tlv_peek): New. (tlv_peek_null): New. (_tlv_push): Rewrite. (_tlv_pop): Rewrite. (tlv_next): New macro. Move old code to ... (_tlv_next): this. Add arg lno. Pop remaining end tags. (tlv_popped): Remove. (tlv_expect_object): Handle ndef. (tlv_expect_octet_string): Ditto. (parse_bag_encrypted_data): Use nesting level to control the inner loop. (parse_shrouded_key_bag): Likewise. (parse_bag_data): Handle surplus octet strings. (p12_parse): Ditto. * sm/minip12.c (decrypt_block): Strip the padding. (tlv_expect_top_sequence): Remove. Replace callers by tlv_expect_sequence. * tests/samplekeys/t6752-ov-user-ff.p12: New sample key. * tests/samplekeys/Description-p12: Add its description -- This patch improves the BER parser by simplifying it. Now tlv_next pops off and thus closes all containers regardless on whether they are length bounded or ndef. tlv_set_pending is now always used to undo the effect of a tlv_next in a loop condition which was terminated by a nesting level change. Instead of using the length as seen in the decrypted container we now remove the padding and let the BER parser do its work. This might have a negative effect on pkcs#12 objects which are not correctly padded but we don't have any example of such broken objects. GnuPG-bug-id: 6752 |
||
---|---|---|
.. | ||
call-agent.c | ||
call-dirmngr.c | ||
certchain.c | ||
certcheck.c | ||
certdump.c | ||
certlist.c | ||
certreqgen-ui.c | ||
certreqgen.c | ||
ChangeLog-2011 | ||
decrypt.c | ||
delete.c | ||
encrypt.c | ||
export.c | ||
fingerprint.c | ||
gpgsm-w32info.rc | ||
gpgsm.c | ||
gpgsm.h | ||
gpgsm.w32-manifest.in | ||
import.c | ||
keydb.c | ||
keydb.h | ||
keylist.c | ||
Makefile.am | ||
minip12.c | ||
minip12.h | ||
misc.c | ||
passphrase.c | ||
passphrase.h | ||
qualified.c | ||
server.c | ||
sign.c | ||
t-minip12.c | ||
verify.c |