aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorNick Mathewson <nickm@torproject.org>2016-03-21 11:21:31 -0400
committerNick Mathewson <nickm@torproject.org>2016-03-21 11:21:31 -0400
commitd567796946506672376ceda86789b2bcb0a25ad0 (patch)
tree923064ba9d0de7de1faed2fa9d4df794199e2e95
parent34d429f243658f5a7ac3dc8dafa454d75b02e67d (diff)
parenta874d66ea9ddb8c64189f33bb2a9ef05ee74f3fe (diff)
downloadtor-d567796946506672376ceda86789b2bcb0a25ad0.tar.gz
tor-d567796946506672376ceda86789b2bcb0a25ad0.zip
Merge remote-tracking branch 'public/bug17443_v2'
-rw-r--r--changes/bug174435
-rw-r--r--src/tools/tor-gencert.c9
2 files changed, 13 insertions, 1 deletions
diff --git a/changes/bug17443 b/changes/bug17443
new file mode 100644
index 0000000000..e4c040b96b
--- /dev/null
+++ b/changes/bug17443
@@ -0,0 +1,5 @@
+ o Minor bugfixes (tor-gencert):
+ - Correctly handle the case where an authority operator enters a
+ passphrase but sends an EOF before sending a newline.
+ Fixes bug 17443; bugfix on 0.2.0.20-rc. Found by "junglefowl".
+
diff --git a/src/tools/tor-gencert.c b/src/tools/tor-gencert.c
index e833aa9ef5..4e5e1dc590 100644
--- a/src/tools/tor-gencert.c
+++ b/src/tools/tor-gencert.c
@@ -96,14 +96,21 @@ load_passphrase(void)
{
char *cp;
char buf[1024]; /* "Ought to be enough for anybody." */
+ memset(buf, 0, sizeof(buf)); /* should be needless */
ssize_t n = read_all(passphrase_fd, buf, sizeof(buf), 0);
if (n < 0) {
log_err(LD_GENERAL, "Couldn't read from passphrase fd: %s",
strerror(errno));
return -1;
}
+ /* We'll take everything from the buffer except for optional terminating
+ * newline. */
cp = memchr(buf, '\n', n);
- passphrase_len = cp-buf;
+ if (cp == NULL) {
+ passphrase_len = n;
+ } else {
+ passphrase_len = cp-buf;
+ }
passphrase = tor_strndup(buf, passphrase_len);
memwipe(buf, 0, sizeof(buf));
return 0;