openssl: make Cipher#key= and #iv= reject too long values

* ext/openssl/ossl_cipher.c (ossl_cipher_set_key, ossl_cipher_set_iv): Reject too long values as well as too short ones. Currently they just truncate the input but this would hide bugs and lead to unexpected encryption/decryption results. * test/openssl/test_cipher.rb: Test that Cipher#key= and #iv= reject Strings with invalid length. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@55146 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2016-05-24 13:09:03 +0000
committer: rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2016-05-24 13:09:03 +0000
commit: 4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d (patch)
tree: efd24c2db86c786402247f7059fb7fa6af796f1c /ChangeLog
parent: 021a99498109ae7d94265b170b8ee9f86ab0616f (diff)
download: ruby-4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d.tar.gz
1 files changed, 10 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index c409003e89..54f67390e4 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,13 @@
+Tue May 24 22:04:15 2016  Kazuki Yamaguchi  <k@rhe.jp>
+
+	* ext/openssl/ossl_cipher.c (ossl_cipher_set_key, ossl_cipher_set_iv):
+	  Reject too long values as well as too short ones. Currently they
+	  just truncate the input but this would hide bugs and lead to
+	  unexpected encryption/decryption results.
+
+	* test/openssl/test_cipher.rb: Test that Cipher#key= and #iv= reject
+	  Strings with invalid length.
+
 Tue May 24 21:32:21 2016  Kazuki Yamaguchi  <k@rhe.jp>
 
 	* ext/openssl/ossl_x509ext.c (ossl_x509ext_set_value): Use
author	rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2016-05-24 13:09:03 +0000
committer	rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2016-05-24 13:09:03 +0000
commit	4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d (patch)
tree	efd24c2db86c786402247f7059fb7fa6af796f1c /ChangeLog
parent	021a99498109ae7d94265b170b8ee9f86ab0616f (diff)
download	ruby-4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d.tar.gz