Closed Bug 1921728 Opened 9 days ago Closed 6 days ago

Binary OpenPGP keys ending with whitespace cannot be imported

Categories

(MailNews Core :: Security: OpenPGP, defect)

Product:
MailNews Core
Component:
Security: OpenPGP
Version:
Thunderbird 128
Type:
defect

Tracking

(thunderbird_esr128 affected, thunderbird132 fixed)

Status:
RESOLVED FIXED
Milestone:
133 Branch
Tracking Flags:
Tracking Status
thunderbird_esr128 --- affected
thunderbird132 --- fixed

People

(Reporter: aras.ergus, Assigned: mkmelin)

References

(Regression)

Details

(Keywords: regression)

Attachments

(3 files, 1 obsolete file)

Go program that generates an OpenPGP key ending with a whitespace byte
1.44 KB, text/x-go
Details
DC1A523730F62AE8-pub-does_not_expire-ends_with_whitespace.pgp
1.22 KB, application/pgp-encrypted
Details
Bug 1921728 - Handle binary OpenPGP keys ending with whitespace. r=kaie
48 bytes, text/x-phabricator-request
corey
: approval-comm-beta+
mkmelin
: approval-comm-esr128?
Details | Review

Steps to reproduce:

In the OpenPGP key manager, attempted to import an OpenPGP public key file in binary format (i.e. not ASCII-armored) that ends with a whitespace (more precisely: any character that is removed by the "trim" method of the JavaScript string type, see attached file for an example).

Actual results:

An alert popup with "Importing the keys failed" was shown and a warning "rnp_import_keys FAILED; rv=285212673" was logged.

Expected results:

The key should have been imported. (The example file can be imported with other OpenPGP tools such as rnpkeys and GPG.)

This happens because in "RNP.sys.mjs", the trim function is called on the input string before passing it to RNP independent of whether it is ASCII-armored or not -- see the statement

const trimmed = keyBlockStr.replace(/^Comment:.*(\r?\n|\r)/gm, "").trim();

in mail/extensions/openpgp/content/modules/RNP.sys.mjs in the comm-central repository 1.

The issue seems to be introduced in the changeset b615fc82fe5c19ba59b07e23f35aecf686827d03 2 when fixing the bug 1883855 3. The RNP issue 4 opened in the context of the aforementioned Bugzilla ticket appears to have been fixed in RNP 0.17.1, so the changes made in "RNP.sys.mjs" could probably be reverted to fix this problem.

Assignee: nobody → mkmelin+mozilla
Status: UNCONFIRMED → NEW
status-thunderbird132: --- → affected
status-thunderbird_esr128: --- → affected
Component: Security → Security: OpenPGP
Ever confirmed: true
Keywords: regression
Product: Thunderbird → MailNews Core
Regressed by: 1883855

Aras, thanks for the test case.
What commands did you use to create the test key? Can you attach a test case that hasn't expired?

61FB8C42F9F5892D-pub-ends_with_whitespace.pgp is expired, so I can't use it in my test. Or well, the primary key is expired, but the encryption isn't. RNP.findKeyByEmail can't find such keys. I'm not sure that's correct, but...

Thanks for the prompt reply.

I wrote a small Go program to "brute force" test cases, which I will attach in a moment. Originally it created keys that expired 1 second after creation to exclude the possibility of the test keys being unintentionally used for actual communication.

I have created a test key that doesn't expire, which I will also upload.

Attachment #9428034 - Attachment is obsolete: true

JFYI: This key artifact includes subpacket 39 (v6 preferred AEAD ciphersuites), which support is defined only in RFC 9580.

Status: NEW → ASSIGNED
Target Milestone: --- → 133 Branch

(In reply to Nickolay Olshevsky from comment #5)

JFYI: This key artifact includes subpacket 39 (v6 preferred AEAD ciphersuites), which support is defined only in RFC 9580.

Nickolay, thanks for highlighting that.

As I understand it, the subpacket is in the unhashed area, and is NOT marked critical.
According to RFC 4880, section 5.2.3.1:
"An implementation SHOULD ignore any subpacket of a type that it does not recognize."

I understand that RNP v 0.17.1 currently ignores this subpacket, which matches the recommendation of the RFC.

Can we expect that RNP will continue to ignore such subpackets?

If yes, it might be acceptable to use this example key for this text.

Flags: needinfo?(mkmelin+mozilla)

Hi Kai,
This subpacket is actually in hashed area, but, correct, it's not critical so RNP just ignores it. And, yeah, we do not plan to change this behaviour.

Flags: needinfo?(mkmelin+mozilla)
Keywords: checkin-needed-tb

Pushed by mkmelin@iki.fi:
https://hg.mozilla.org/comm-central/rev/1ffe45a6b0a9
Handle binary OpenPGP keys ending with whitespace. r=kaie

Status: ASSIGNED → RESOLVED
Closed: 6 days ago
Keywords: checkin-needed-tb
Resolution: --- → FIXED

Comment on attachment 9428224 [details]
Bug 1921728 - Handle binary OpenPGP keys ending with whitespace. r=kaie

[Approval Request Comment]
Regression caused by (bug #): bug 1883855
User impact if declined: can't import keys that happen to binary-end with whitespace
Testing completed (on c-c, etc.): c-c
Risk to taking this patch (and alternatives if risky): safe

Attachment #9428224 - Flags: approval-comm-esr128?
Attachment #9428224 - Flags: approval-comm-beta?

Comment on attachment 9428224 [details]
Bug 1921728 - Handle binary OpenPGP keys ending with whitespace. r=kaie

[Triage Comment]
Approved for beta

Attachment #9428224 - Flags: approval-comm-beta? → approval-comm-beta+

Thunderbird 132.0b2:
https://hg.mozilla.org/releases/comm-beta/rev/89eb23984b51

status-thunderbird132: affectedfixed
Whiteboard: Thunderbird 132.0b2:
Whiteboard: Thunderbird 132.0b2:
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: