Closed Bug 1350332 Opened 9 years ago Closed 9 years ago

pk12util mishandles invalid cipher names

Tracking

(Not tracked)

Status:

RESOLVED FIXED

Milestone:

3.31

People

(Reporter: ueno, Unassigned)

Details

Attachments

(1 file)

nss-pk12util-invalid.patch 9 years ago Daiki Ueno [:ueno] 5.36 KB, patch	KaiE : review+	Details \| Diff \| Splinter Review

Daiki Ueno [:ueno]

Reporter

Description

•

9 years ago

Attached patch nss-pk12util-invalid.patch — Details — Splinter Review

When an invalid cipher name is used with -C, pk12util silently produces output without encryption. According to the code, it is supposed to abort on that case: https://dxr.mozilla.org/mozilla-central/source/security/nss/cmd/pk12util/pk12util.c#1061 but the check below is irrelevant: it should check the just obtained certCipher instead of cipher. Also, the tools.sh test uses "null", meaning no encryption, while pk12util expects "none". I am attaching a patch to fix those.

Daiki Ueno [:ueno]

Reporter

Updated

•

9 years ago

Attachment #8850944 - Flags: review?(kaie)

Kai Engert [:KaiE:]

Comment 1

•

9 years ago

Comment on attachment 8850944 [details] [diff] [review] nss-pk12util-invalid.patch r=kaie

Attachment #8850944 - Flags: review?(kaie) → review+

Kai Engert [:KaiE:]

Comment 2

•

9 years ago

https://hg.mozilla.org/projects/nss/rev/9a79b408169f3b1fcbcf1dee9e596397e5661bbb

Status: NEW → RESOLVED

Closed: 9 years ago

Resolution: --- → FIXED

Target Milestone: --- → 3.31

You need to log in before you can comment on or make changes to this bug.

Bugzilla

pk12util mishandles invalid cipher names

Categories

(NSS :: Tools, enhancement)

Tracking

(Not tracked)

People

(Reporter: ueno, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Comment 1

Comment 2

Attachment

General

Description

File Name

Content Type