diff options
author | rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2016-05-24 13:09:03 +0000 |
---|---|---|
committer | rhe <rhe@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> | 2016-05-24 13:09:03 +0000 |
commit | 4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d (patch) | |
tree | efd24c2db86c786402247f7059fb7fa6af796f1c /ChangeLog | |
parent | 021a99498109ae7d94265b170b8ee9f86ab0616f (diff) | |
download | ruby-4a65e37a6a0625eab299dffcbaf99a0f7fa6f54d.tar.gz |
openssl: make Cipher#key= and #iv= reject too long values
* ext/openssl/ossl_cipher.c (ossl_cipher_set_key, ossl_cipher_set_iv):
Reject too long values as well as too short ones. Currently they
just truncate the input but this would hide bugs and lead to
unexpected encryption/decryption results.
* test/openssl/test_cipher.rb: Test that Cipher#key= and #iv= reject
Strings with invalid length.
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@55146 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -1,3 +1,13 @@ +Tue May 24 22:04:15 2016 Kazuki Yamaguchi <k@rhe.jp> + + * ext/openssl/ossl_cipher.c (ossl_cipher_set_key, ossl_cipher_set_iv): + Reject too long values as well as too short ones. Currently they + just truncate the input but this would hide bugs and lead to + unexpected encryption/decryption results. + + * test/openssl/test_cipher.rb: Test that Cipher#key= and #iv= reject + Strings with invalid length. + Tue May 24 21:32:21 2016 Kazuki Yamaguchi <k@rhe.jp> * ext/openssl/ossl_x509ext.c (ossl_x509ext_set_value): Use |