fmtseq: privkey internals checking
Simple size checks that prevent some segfaults from working with mangled privkeys.
This commit is contained in:
parent
633be8c2cb
commit
fee6b431c2
|
|
@ -93,6 +93,45 @@ static void store_desired (privkey&priv, uint did,
|
||||||
priv.desired[did][i.pos + (1 << depth) - 2] = i.item;
|
priv.desired[did][i.pos + (1 << depth) - 2] = i.item;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
static bool check_privkey (privkey&priv, hash_func&hf)
|
||||||
|
{
|
||||||
|
size_t i, j;
|
||||||
|
uint ts = (1 << (priv.h + 1) ) - 2;
|
||||||
|
|
||||||
|
/*
|
||||||
|
* check the content of privkey caches to prevent reading/writing
|
||||||
|
* unallocated memory.
|
||||||
|
*/
|
||||||
|
|
||||||
|
//exist tree count is always L
|
||||||
|
if (priv.exist.size() != priv.l) return false;
|
||||||
|
|
||||||
|
//exist tree sizes
|
||||||
|
for (i = 0; i < priv.exist.size(); ++i) {
|
||||||
|
if (priv.exist[i].size() != ts) return false;
|
||||||
|
|
||||||
|
//exist tree hash sizes must be OK
|
||||||
|
for (j = 0; j < ts; ++j)
|
||||||
|
if (priv.exist[i][j].size()
|
||||||
|
!= hf.size() )
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
//check desired stuff
|
||||||
|
if (priv.desired_stack.size() < priv.desired.size() ) return false;
|
||||||
|
if (priv.desired_progress.size() < priv.desired.size() ) return false;
|
||||||
|
|
||||||
|
for (i = 0; i < priv.desired.size(); ++i) {
|
||||||
|
if (priv.desired[i].size() != ts) return false;
|
||||||
|
for (j = 0; j < ts; ++j)
|
||||||
|
if (priv.desired[i][j].size()
|
||||||
|
!= hf.size() )
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
|
||||||
static void update_privkey (privkey&priv, hash_func&hf)
|
static void update_privkey (privkey&priv, hash_func&hf)
|
||||||
{
|
{
|
||||||
uint i, j;
|
uint i, j;
|
||||||
|
|
@ -330,6 +369,11 @@ int privkey::sign (const bvector& hash, bvector& sig, hash_func& hf)
|
||||||
return 2;
|
return 2;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if (!check_privkey (*this, hf) ) {
|
||||||
|
err ("fmtseq: mangled privkey");
|
||||||
|
return 3;
|
||||||
|
}
|
||||||
|
|
||||||
uint commitments = fmtseq_commitments (hs);
|
uint commitments = fmtseq_commitments (hs);
|
||||||
|
|
||||||
bvector M2 = hash;
|
bvector M2 = hash;
|
||||||
|
|
|
||||||
|
|
@ -105,7 +105,6 @@ public:
|
||||||
return ( (H + fmtseq_commitments (hs) ) * hf.size() * 8) + H;
|
return ( (H + fmtseq_commitments (hs) ) * hf.size() * 8) + H;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
sencode* serialize();
|
sencode* serialize();
|
||||||
bool unserialize (sencode*);
|
bool unserialize (sencode*);
|
||||||
};
|
};
|
||||||
|
|
|
||||||
|
|
@ -552,7 +552,8 @@ bool fmtseq::privkey::unserialize (sencode*s)
|
||||||
desired_progress[i] = I->i;
|
desired_progress[i] = I->i;
|
||||||
}
|
}
|
||||||
|
|
||||||
//TODO check the sizes of everything
|
//checking the sizes and correctness of everything is a job of FMTSeq
|
||||||
|
//implementation that has some insight into how it works :]
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue