In asn1_d2i_read_bio, don't assume BIO_read will

return the requested number of bytes when reading content.

In asn1_d2i_read_bio, don't assume BIO_read will
return the requested number of bytes when reading content.
2053c43d · Dr. Stephen Henson · 1c3e4a36 · 2053c43d · 2053c43d
隐藏空白更改
内联并排

Showing with 15 addition and 5 deletion

CHANGES CHANGES +5 -0

crypto/asn1/a_d2i_fp.c crypto/asn1/a_d2i_fp.c +10 -5

未找到文件。
--- a/CHANGES
+++ b/CHANGES
@@ -335,6 +335,11 @@ TODO: bug: pad  x  with leading zeros if necessary
 Changes between 0.9.6h and 0.9.7  [XX xxx 2002]
+  *) In asn1_d2i_read_bio() repeatedly call BIO_read() until all content
+     octets have been read, EOF or an error occurs. Without this change
+     some truncated ASN1 structures will not produce an error.
+     [Steve Henson]
  *) Disable Heimdal support, since it hasn't been fully implemented.
     Still give the possibility to force the use of Heimdal, but with
     warnings and a request that patches get sent to openssl-dev.

--- a/crypto/asn1/a_d2i_fp.c
+++ b/crypto/asn1/a_d2i_fp.c
@@ -226,13 +226,18 @@ static int asn1_d2i_read_bio(BIO *in, BUF_MEM **pb)
 					ASN1err(ASN1_F_ASN1_D2I_BIO,ERR_R_MALLOC_FAILURE);
 					goto err;
 					}
-				i=BIO_read(in,&(b->data[len]),want);
+				while (want > 0)
-				if (i <= 0)
 					{
-					ASN1err(ASN1_F_ASN1_D2I_BIO,ASN1_R_NOT_ENOUGH_DATA);
+					i=BIO_read(in,&(b->data[len]),want);
-					goto err;
+					if (i <= 0)
+						{
+						ASN1err(ASN1_F_ASN1_D2I_BIO,
+						    ASN1_R_NOT_ENOUGH_DATA);
+						goto err;
+						}
+					len+=i;
+					want -= i;
 					}
-				len+=i;
 				}
 			off+=(int)c.slen;
 			if (eos <= 0)