validate the parsed RSA private key

author: Sree Harsha Totakura <totakura@in.tum.de> 2015-05-27 07:42:45 +0000
committer: Sree Harsha Totakura <totakura@in.tum.de> 2015-05-27 07:42:45 +0000
commit: 9469cd334f29ca9437e13eb951b53b7690f10be9 (patch)
tree: ea5bd88f9b566355bd39f2063ee697b0774c0165 /src/util/crypto_rsa.c
parent: fd40063b16d12f18145a583ef10b925feb8d57df (diff)
download: gnunet-9469cd334f29ca9437e13eb951b53b7690f10be9.tar.gz
gnunet-9469cd334f29ca9437e13eb951b53b7690f10be9.zip
1 files changed, 9 insertions, 3 deletions
diff --git a/src/util/crypto_rsa.c b/src/util/crypto_rsa.c
index 9896d8dce..2aadf2fc4 100644
--- a/src/util/crypto_rsa.c
+++ b/src/util/crypto_rsa.c
@@ -222,7 +222,6 @@ GNUNET_CRYPTO_rsa_private_key_decode (const char *buf,
                              size_t len)
 {
  struct GNUNET_CRYPTO_rsa_PrivateKey *key;
  key = GNUNET_new (struct GNUNET_CRYPTO_rsa_PrivateKey);
  if (0 !=
      gcry_sexp_new (&key->sexp,
@@ -230,11 +229,18 @@ GNUNET_CRYPTO_rsa_private_key_decode (const char *buf,
                     len,
                     0))
  {
-    GNUNET_break_op (0);
+    LOG (GNUNET_ERROR_TYPE_WARNING,
+         "Decoded private key is not valid\n");
    GNUNET_free (key);
    return NULL;
  }
-  /* FIXME: verify that this is an RSA private key */
+  if (0 != gcry_pk_testkey (key->sexp))
+  {
+    LOG (GNUNET_ERROR_TYPE_WARNING,
+         "Decoded private key is not valid\n");
+    GNUNET_CRYPTO_rsa_private_key_free (key);
+    return NULL;
+  }
  return key;
 }
author	Sree Harsha Totakura <totakura@in.tum.de>	2015-05-27 07:42:45 +0000
committer	Sree Harsha Totakura <totakura@in.tum.de>	2015-05-27 07:42:45 +0000
commit	9469cd334f29ca9437e13eb951b53b7690f10be9 (patch)
tree	ea5bd88f9b566355bd39f2063ee697b0774c0165 /src/util/crypto_rsa.c
parent	fd40063b16d12f18145a583ef10b925feb8d57df (diff)
download	gnunet-9469cd334f29ca9437e13eb951b53b7690f10be9.tar.gz gnunet-9469cd334f29ca9437e13eb951b53b7690f10be9.zip