suzanne.soy/fork-openpgpjs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Throw on unarmored messages with garbage data appended

Browse Source
This commit is contained in:
Daniel Huigens 2020-02-26 16:22:57 +01:00
parent 76a8f11780
commit 3817cca3c6
3 changed files with 25 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
src/openpgp.js
View File

@ -369,7 +369,7 @@ export function decrypt({ message, privateKeys, passwords, sessionKeys, publicKe
result.signatures = signature ? await decrypted.verifyDetached(signature, publicKeys, date, streaming) : await decrypted.verify(publicKeys, date, streaming); result.signatures = signature ? await decrypted.verifyDetached(signature, publicKeys, date, streaming) : await decrypted.verify(publicKeys, date, streaming);
result.data = format === 'binary' ? decrypted.getLiteralData() : decrypted.getText(); result.data = format === 'binary' ? decrypted.getLiteralData() : decrypted.getText();
result.filename = decrypted.getFilename(); result.filename = decrypted.getFilename();
if (streaming) linkStreams(result, message); linkStreams(result, message);
result.data = await convertStream(result.data, streaming, format); result.data = await convertStream(result.data, streaming, format);
if (!streaming) await prepareSignatures(result.signatures); if (!streaming) await prepareSignatures(result.signatures);
return result; return result;
@ -635,13 +635,24 @@ async function convertStream(data, streaming, encoding = 'utf8') {
/** /**
* Link result.data to the message stream for cancellation. * Link result.data to the message stream for cancellation.
* Also, forward errors in the message to result.data.
* @param {Object} result the data to convert * @param {Object} result the data to convert
* @param {Message} message message object * @param {Message} message message object
* @returns {Object} * @returns {Object}
*/ */
function linkStreams(result, message) { function linkStreams(result, message) {
result.data = stream.transformPair(message.packets.stream, async (readable, writable) => { result.data = stream.transformPair(message.packets.stream, async (readable, writable) => {
await stream.pipe(result.data, writable); await stream.pipe(result.data, writable, {
preventClose: true
});
const writer = stream.getWriter(writable);
try {
// Forward errors in the message stream to result.data.
await stream.readToEnd(readable, _ => _);
await writer.close();
} catch (e) {
await writer.abort(e);
}
}); });
} }

10
src/packet/packet.js
View File

@ -249,13 +249,9 @@ export default {
// entire remainder of the stream, in order to forward errors in the // entire remainder of the stream, in order to forward errors in the
// remainder of the stream to the packet data. (Note that this means we // remainder of the stream to the packet data. (Note that this means we
// read/peek at all signature packets before closing the literal data // read/peek at all signature packets before closing the literal data
// packet, for example.) This forwards armor checksum errors to the // packet, for example.) This forwards MDC errors to the literal data
// encrypted data stream, for example, so that they don't get lost / // stream, for example, so that they don't get lost / forgotten on
// forgotten on encryptedMessage.packets.stream, which we never look at. // decryptedMessage.packets.stream, which we never look at.
//
// Note that subsequent packet parsing errors could still end up there if
// `config.tolerant` is set to false, or on malformed messages with
// multiple data packets, but usually it shouldn't happen.
// //
// An example of what we do when stream-parsing a message containing // An example of what we do when stream-parsing a message containing
// [ one-pass signature packet, literal data packet, signature packet ]: // [ one-pass signature packet, literal data packet, signature packet ]:

9
test/general/openpgp.js
View File

@ -1700,6 +1700,15 @@ describe('OpenPGP.js public api tests', function() {
})); }));
} }
}); });
it('should fail to decrypt unarmored message with garbage data appended', async function() {
const { key } = await openpgp.generateKey({ userIds: {} });
const message = await openpgp.encrypt({ message: openpgp.message.fromText('test'), publicKeys: key, privateKeys: key, armor: false });
const encrypted = openpgp.util.concat([message, new Uint8Array([11])]);
await expect(
openpgp.decrypt({ message: await openpgp.message.read(encrypted), privateKeys: key, publicKeys: key })
).to.be.rejectedWith('Error during parsing. This message / key probably does not conform to a valid OpenPGP format.');
});
}); });
describe('ELG / DSA encrypt, decrypt, sign, verify', function() { describe('ELG / DSA encrypt, decrypt, sign, verify', function() {