replace atoi(3) usage with strtonum(3); ok/tweaks tb@

author: op <> 2024-08-26 22:01:28 +0000
committer: op <> 2024-08-26 22:01:28 +0000
commit: ecaaddb84944c0b5282670c1e6dfd04f3cf35c10 (patch)
tree: b4380f19ddfae3ecff8a6134f17a46a472cdd415 /src/lib/libcrypto/rsa/rsa_pmeth.c
parent: 60298806bf99f206c5f6cfe260a00f54b00e0583 (diff)
download: openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.tar.gz
openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.tar.bz2
openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.zip
1 files changed, 25 insertions, 5 deletions
diff --git a/src/lib/libcrypto/rsa/rsa_pmeth.c b/src/lib/libcrypto/rsa/rsa_pmeth.c
index 9be9079613..a1bdeb3b36 100644
--- a/src/lib/libcrypto/rsa/rsa_pmeth.c
+++ b/src/lib/libcrypto/rsa/rsa_pmeth.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: rsa_pmeth.c,v 1.40 2023/12/28 21:59:07 tb Exp $ */
+/* $OpenBSD: rsa_pmeth.c,v 1.41 2024/08/26 22:01:28 op Exp $ */
 /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
 * project 2006.
 */
@@ -58,6 +58,7 @@
 #include <limits.h>
 #include <stdio.h>
+#include <stdlib.h>
 #include <string.h>
 #include <openssl/opensslconf.h>
@@ -630,6 +631,8 @@ pkey_rsa_ctrl(EVP_PKEY_CTX *ctx, int type, int p1, void *p2)
 static int
 pkey_rsa_ctrl_str(EVP_PKEY_CTX *ctx, const char *type, const char *value)
 {
+        const char *errstr;
        if (!value) {
                RSAerror(RSA_R_VALUE_MISSING);
                return 0;
@@ -664,13 +667,24 @@ pkey_rsa_ctrl_str(EVP_PKEY_CTX *ctx, const char *type, const char *value)
                        saltlen = RSA_PSS_SALTLEN_MAX;
                else if (!strcmp(value, "auto"))
                        saltlen = RSA_PSS_SALTLEN_AUTO;
-                else
+                else {
-                        saltlen = atoi(value);
+                        saltlen = strtonum(value, 0, INT_MAX, &errstr);
+                        if (errstr != NULL) {
+                                RSAerror(RSA_R_INVALID_PSS_SALTLEN);
+                                return -2;
+                        }
+                }
                return EVP_PKEY_CTX_set_rsa_pss_saltlen(ctx, saltlen);
        }
        if (strcmp(type, "rsa_keygen_bits") == 0) {
-                int nbits = atoi(value);
+                int nbits;
+                nbits = strtonum(value, 0, INT_MAX, &errstr);
+                if (errstr != NULL) {
+                        RSAerror(RSA_R_INVALID_KEYBITS);
+                        return -2;
+                }
                return EVP_PKEY_CTX_set_rsa_keygen_bits(ctx, nbits);
        }
@@ -702,7 +716,13 @@ pkey_rsa_ctrl_str(EVP_PKEY_CTX *ctx, const char *type, const char *value)
                            EVP_PKEY_CTRL_MD, value);
                if (strcmp(type, "rsa_pss_keygen_saltlen") == 0) {
-                        int saltlen = atoi(value);
+                        int saltlen;
+                        saltlen = strtonum(value, 0, INT_MAX, &errstr);
+                        if (errstr != NULL) {
+                                RSAerror(RSA_R_INVALID_PSS_SALTLEN);
+                                return -2;
+                        }
                        return EVP_PKEY_CTX_set_rsa_pss_keygen_saltlen(ctx, saltlen);
                }
author	op <>	2024-08-26 22:01:28 +0000
committer	op <>	2024-08-26 22:01:28 +0000
commit	ecaaddb84944c0b5282670c1e6dfd04f3cf35c10 (patch)
tree	b4380f19ddfae3ecff8a6134f17a46a472cdd415 /src/lib/libcrypto/rsa/rsa_pmeth.c
parent	60298806bf99f206c5f6cfe260a00f54b00e0583 (diff)
download	openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.tar.gz openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.tar.bz2 openbsd-ecaaddb84944c0b5282670c1e6dfd04f3cf35c10.zip