Put retry/realloc logic into pem_read()

Signed-off-by: Steffen Jaeckel <[email protected]>

Author: sjaeckel

src/headers/tomcrypt_private.h

@@ -383,18 +383,39 @@ struct bufp {
 
 #define SET_BUFP(n, d, l) n.start = (char*)d, n.work = (char*)d, n.end = (char*)d + l + 1
 
-struct get_char {
+struct get_char;
+struct get_char_api {
    int (*get)(struct get_char*);
+   int (*reset)(struct get_char*);
+   unsigned long (*len)(struct get_char*);
+};
+
+struct get_char {
+   struct get_char_api api;
    union {
 #ifndef LTC_NO_FILE
-      FILE *f;
+      struct {
+         FILE *f;
+         long original_pos;
+      } f;
 #endif /* LTC_NO_FILE */
       struct bufp buf;
    } data;
    struct str unget_buf;
    char unget_buf_[LTC_PEM_DECODE_BUFSZ];
    int prev_get;
 };
+
+#define pem_get_char_init(b, l)   { \
+   .api = get_char_buffer_api, \
+   SET_BUFP(.data.buf, (b), (l)) \
+}
+
+#define pem_get_char_init_filehandle(fi)    { \
+   .api = get_char_filehandle_api, \
+   .data.f.f = (fi), \
+   .data.f.original_pos = ftell(fi) \
+}
 #endif
 
 /* others */
@@ -417,10 +438,10 @@ int pem_decrypt(unsigned char *data, unsigned long *datalen,
                 const struct blockcipher_info *info,
                 enum padding_type padding);
 #ifndef LTC_NO_FILE
-int pem_get_char_from_file(struct get_char *g);
+extern const struct get_char_api get_char_filehandle_api;
 #endif /* LTC_NO_FILE */
-int pem_get_char_from_buf(struct get_char *g);
-int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr, struct get_char *g);
+extern const struct get_char_api get_char_buffer_api;
+int pem_read(void **dest, unsigned long *len, struct pem_headers *hdr, struct get_char *g);
 #endif
 
 /* tomcrypt_pk.h */
@@ -708,7 +729,7 @@ int x509_decode_subject_public_key_info(const unsigned char *in, unsigned long i
 
 int x509_get_pka(const ltc_asn1_list *pub, enum ltc_pka_id *pka);
 int x509_get_sig_alg(const ltc_asn1_list *pub, ltc_x509_signature_algorithm *sig_alg);
-int x509_import_spki(const unsigned char *asn1_cert, unsigned long asn1_len, ltc_pka_key *k, ltc_asn1_list **root);
+int x509_import_spki(const unsigned char *buf, unsigned long len, ltc_pka_key *k, ltc_asn1_list **root);
 int x509_get_extensions(const ltc_asn1_list *seq, ltc_x509_extensions *extensions);
 void x509_free_extensions(const ltc_x509_extensions *extensions);
 int x509_get_serial(const ltc_asn1_list *asn1, ltc_x509_string *serial);

src/misc/pem/pem_pkcs.c

@@ -127,21 +127,16 @@ static const import_fn s_import_openssl_fns[LTC_PKA_NUM] = {
 static int s_decode(struct get_char *g, ltc_pka_key *k, const password_ctx *pw_ctx)
 {
    unsigned char *asn1_cert = NULL;
-   unsigned long w, asn1_len, n;
+   unsigned long w = 0, asn1_len, n;
    int err = CRYPT_ERROR;
    struct pem_headers hdr = { 0 };
    struct password pw = { 0 };
    enum ltc_pka_id pka;
    XMEMSET(k, 0, sizeof(*k));
-   w = LTC_PEM_READ_BUFSIZE * 2;
-retry:
-   asn1_cert = XREALLOC(asn1_cert, w);
    for (n = 0; n < pem_std_headers_num; ++n) {
       hdr.id = &pem_std_headers[n];
-      err = pem_read(asn1_cert, &w, &hdr, g);
-      if (err == CRYPT_BUFFER_OVERFLOW) {
-         goto retry;
-      } else if (err == CRYPT_OK) {
+      err = pem_read((void**)&asn1_cert, &w, &hdr, g);
+      if (err == CRYPT_OK) {
          break;
       } else if (err != CRYPT_UNKNOWN_PEM) {
          goto cleanup;
@@ -204,7 +199,7 @@ int pem_decode_pkcs_filehandle(FILE *f, ltc_pka_key *k, const password_ctx *pw_c
    LTC_ARGCHK(f != NULL);
    LTC_ARGCHK(k != NULL);
    {
-      struct get_char g = { .get = pem_get_char_from_file, .data.f = f };
+      struct get_char g = pem_get_char_init_filehandle(f);
       return s_decode(&g, k, pw_ctx);
    }
 }
@@ -216,7 +211,7 @@ int pem_decode_pkcs(const void *buf, unsigned long len, ltc_pka_key *k, const pa
    LTC_ARGCHK(len != 0);
    LTC_ARGCHK(k != NULL);
    {
-      struct get_char g = { .get = pem_get_char_from_buf, SET_BUFP(.data.buf, buf, len) };
+      struct get_char g = pem_get_char_init(buf, len);
       return s_decode(&g, k, pw_ctx);
    }
 }

src/misc/pem/pem_read.c

@@ -18,13 +18,39 @@ extern const struct blockcipher_info pem_dek_infos[];
 extern const unsigned long pem_dek_infos_num;
 
 #ifndef LTC_NO_FILE
-int pem_get_char_from_file(struct get_char *g)
+static int s_pem_get_char_from_file(struct get_char *g)
 {
-   return getc(g->data.f);
+   return getc(g->data.f.f);
 }
+
+static int s_pem_get_char_reset_file(struct get_char *g)
+{
+   if (g->data.f.original_pos == -1)
+      return -1;
+   return fseek(g->data.f.f, g->data.f.original_pos, SEEK_SET);
+}
+
+static unsigned long s_pem_get_char_len_file(struct get_char *g)
+{
+   FILE *f = g->data.f.f;
+   long len, cur_pos = ftell(f);
+   if (cur_pos != -1) {
+      fseek(f, 0, SEEK_END);
+      len = ftell(f);
+      fseek(f, cur_pos, SEEK_SET);
+      return len - cur_pos;
+   }
+   return LTC_PEM_READ_BUFSIZE * 2;
+}
+
+const struct get_char_api get_char_filehandle_api = {
+                                                     .get = s_pem_get_char_from_file,
+                                                     .reset = s_pem_get_char_reset_file,
+                                                     .len = s_pem_get_char_len_file,
+};
 #endif /* LTC_NO_FILE */
 
-int pem_get_char_from_buf(struct get_char *g)
+static int s_pem_get_char_from_buf(struct get_char *g)
 {
    int ret;
    if (g->data.buf.work == g->data.buf.end) {
@@ -35,6 +61,23 @@ int pem_get_char_from_buf(struct get_char *g)
    return ret;
 }
 
+static int s_pem_get_char_reset(struct get_char *g)
+{
+   g->data.buf.work = g->data.buf.start;
+   return 0;
+}
+
+static unsigned long s_pem_get_char_len(struct get_char *g)
+{
+   return g->data.buf.end - g->data.buf.start - 1;
+}
+
+const struct get_char_api get_char_buffer_api = {
+                                                     .get = s_pem_get_char_from_buf,
+                                                     .reset = s_pem_get_char_reset,
+                                                     .len = s_pem_get_char_len,
+};
+
 static void s_unget_line(char *buf, unsigned long buflen, struct get_char *g)
 {
    if (buflen > sizeof(g->unget_buf_))
@@ -81,7 +124,7 @@ static char* s_get_line_i(char *buf, unsigned long *buflen, struct get_char *g,
    while(blen < *buflen || search_for_start) {
       wr = blen < *buflen ? blen : *buflen - 1;
       c_ = g->prev_get;
-      g->prev_get = g->get(g);
+      g->prev_get = g->api.get(g);
       if (g->prev_get == '\n') {
          buf[wr] = '\0';
          if (c_ == '\r') {
@@ -190,11 +233,11 @@ static int s_pem_decode_headers(struct pem_headers *hdr, struct get_char *g)
    return CRYPT_OK;
 }
 
-int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr, struct get_char *g)
+static int s_pem_read(void *buf, unsigned long *len, struct pem_headers *hdr, struct get_char *g)
 {
-   char buf[LTC_PEM_DECODE_BUFSZ];
-   char *wpem = asn1_cert;
-   char *end = wpem + *asn1_len;
+   char line[LTC_PEM_DECODE_BUFSZ];
+   char *wpem = buf;
+   char *end = wpem + *len;
    const char pem_start[] = "----";
    unsigned long slen, linelen;
    int err, hdr_ok = 0;
@@ -203,18 +246,18 @@ int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr,
 
    g->prev_get = 0;
    do {
-      linelen = sizeof(buf);
-      if (s_get_first_line(buf, &linelen, g) == NULL) {
+      linelen = sizeof(line);
+      if (s_get_first_line(line, &linelen, g) == NULL) {
          if (g->prev_get == -1)
             return CRYPT_NOP;
          else
             return CRYPT_INVALID_PACKET;
       }
       if (linelen < sizeof(pem_start) - 1)
          continue;
-   } while(XMEMCMP(buf, pem_start, sizeof(pem_start) - 1) != 0);
-   if (hdr->id->start.len != linelen || XMEMCMP(buf, hdr->id->start.p, hdr->id->start.len)) {
-      s_unget_line(buf, linelen, g);
+   } while(XMEMCMP(line, pem_start, sizeof(pem_start) - 1) != 0);
+   if (hdr->id->start.len != linelen || XMEMCMP(line, hdr->id->start.p, hdr->id->start.len)) {
+      s_unget_line(line, linelen, g);
       return CRYPT_UNKNOWN_PEM;
    }
 
@@ -223,9 +266,9 @@ int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr,
       return err;
 
    /* Read the base64 encoded part of the PEM */
-   slen = sizeof(buf);
-   while (s_get_line(buf, &slen, g)) {
-      if (slen == hdr->id->end.len && !XMEMCMP(buf, hdr->id->end.p, slen)) {
+   slen = sizeof(line);
+   while (s_get_line(line, &slen, g)) {
+      if (slen == hdr->id->end.len && !XMEMCMP(line, hdr->id->end.p, slen)) {
          hdr_ok = 1;
          break;
       }
@@ -235,12 +278,12 @@ int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr,
          empty_lines++;
       }
       if (!would_overflow && s_fits_buf(wpem, slen, end)) {
-         XMEMCPY(wpem, buf, slen);
+         XMEMCPY(wpem, line, slen);
       } else {
          would_overflow = 1;
       }
       wpem += slen;
-      slen = sizeof(buf);
+      slen = sizeof(line);
    }
    if (!hdr_ok)
       return CRYPT_INVALID_PACKET;
@@ -249,19 +292,47 @@ int pem_read(void *asn1_cert, unsigned long *asn1_len, struct pem_headers *hdr,
       /* NUL termination */
       wpem++;
       /* prevent a wrap-around */
-      if (wpem < (char*)asn1_cert)
+      if (wpem < (char*)buf)
          return CRYPT_OVERFLOW;
-      *asn1_len = wpem - (char*)asn1_cert;
+      *len = wpem - (char*)buf;
       return CRYPT_BUFFER_OVERFLOW;
    }
 
-   *asn1_len = wpem - (char*)asn1_cert;
+   *len = wpem - (char*)buf;
    *wpem++ = '\0';
 
-   if ((err = base64_strict_decode(asn1_cert, *asn1_len, asn1_cert, asn1_len)) != CRYPT_OK) {
+   if ((err = base64_strict_decode(buf, *len, buf, len)) != CRYPT_OK) {
       return err;
    }
    return CRYPT_OK;
 }
 
+int pem_read(void **dest, unsigned long *len, struct pem_headers *hdr, struct get_char *g)
+{
+   int err, once = 0;
+   void *work = NULL, *work_;
+   unsigned long work_len = g->api.len(g);
+retry:
+   work_ = XREALLOC(work, work_len);
+   if (work_ == NULL) {
+      goto error_out;
+   }
+   work = work_;
+   once++;
+   if ((err = s_pem_read(work, &work_len, hdr, g)) == CRYPT_BUFFER_OVERFLOW
+         && once == 1) {
+      if (g->api.reset(g) != -1) {
+         goto retry;
+      }
+   }
+   if (err != CRYPT_OK) {
+error_out:
+      XFREE(work);
+      work = NULL;
+   }
+   *dest = work;
+   *len = work_len;
+   return err;
+}
+
 #endif /* LTC_PEM */

src/misc/pem/pem_ssh.c

@@ -712,20 +712,15 @@ static const unsigned long pem_openssh_num = LTC_ARRAY_SIZE(pem_openssh);
 static int s_decode_openssh(struct get_char *g, ltc_pka_key *k, const password_ctx *pw_ctx)
 {
    unsigned char *pem = NULL, *p, *privkey = NULL, *tag;
-   unsigned long n, w, l, privkey_len, taglen;
+   unsigned long n, w = 0, l, privkey_len, taglen;
    int err;
    struct pem_headers hdr;
    struct kdf_options opts = { 0 };
    XMEMSET(k, 0, sizeof(*k));
-   w = LTC_PEM_READ_BUFSIZE * 2;
-retry:
-   pem = XREALLOC(pem, w);
    for (n = 0; n < pem_openssh_num; ++n) {
       hdr.id = &pem_openssh[n];
-      err = pem_read(pem, &w, &hdr, g);
-      if (err == CRYPT_BUFFER_OVERFLOW) {
-         goto retry;
-      } else if (err == CRYPT_OK) {
+      err = pem_read((void**)&pem, &w, &hdr, g);
+      if (err == CRYPT_OK) {
          break;
       } else if (err != CRYPT_UNKNOWN_PEM) {
          goto cleanup;
@@ -791,7 +786,9 @@ static int s_decode_openssh(struct get_char *g, ltc_pka_key *k, const password_c
       zeromem(privkey, privkey_len);
       XFREE(privkey);
    }
-   XFREE(pem);
+   if (pem) {
+      XFREE(pem);
+   }
    return err;
 }
 
@@ -801,7 +798,7 @@ int pem_decode_openssh_filehandle(FILE *f, ltc_pka_key *k, const password_ctx *p
    LTC_ARGCHK(f != NULL);
    LTC_ARGCHK(k != NULL);
    {
-      struct get_char g = { .get = pem_get_char_from_file, .data.f = f };
+      struct get_char g = pem_get_char_init_filehandle(f);
       return s_decode_openssh(&g, k, pw_ctx);
    }
 }
@@ -841,7 +838,7 @@ int pem_decode_openssh(const void *buf, unsigned long len, ltc_pka_key *k, const
    LTC_ARGCHK(len != 0);
    LTC_ARGCHK(k != NULL);
    {
-      struct get_char g = { .get = pem_get_char_from_buf, SET_BUFP(.data.buf, buf, len) };
+      struct get_char g = pem_get_char_init(buf, len);
       return s_decode_openssh(&g, k, pw_ctx);
    }
 }