[38881] in Kerberos
Re: Sanity checking asn.1_encode patch
daemon@ATHENA.MIT.EDU (Greg Hudson)
Thu Mar 18 20:08:21 2021
To: Tony Rodriguez <unixpro1970@gmail.com>, <kerberos@mit.edu>
From: Greg Hudson <ghudson@mit.edu>
Message-ID: <84a424e9-2bda-ef0d-52e1-89a423279d53@mit.edu>
Date: Thu, 18 Mar 2021 20:05:38 -0400
MIME-Version: 1.0
In-Reply-To: <44535de3-b88f-68f8-c7a0-fd9c1d31855d@gmail.com>
Content-Type: multipart/mixed; boundary="------------51ABAE2A8CE999D19FE32EB5"
Content-Language: en-US
Errors-To: kerberos-bounces@mit.edu
--------------51ABAE2A8CE999D19FE32EB5
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
On 3/18/21 4:53 PM, Tony Rodriguez wrote:
> I am new to kerberos. How can I sanity test that recursion within
> asn.1_encode stops after 31? Does kerberos have any command line
> utilities to test asn.1_encode? If so, what are they and which
> parameters must I pass? If not, does someone have example code that I
> can compile to test the recursion level logic works as expected?
I've attached the test program I wrote to verify the problem. Run it
with a numeric buffer size argument. With the unpatched code I was able
to produce a stack overflow with a buffer size of 90000.
--------------51ABAE2A8CE999D19FE32EB5
Content-Type: text/plain; charset=UTF-8;
name="asn1test.txt"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="asn1test.txt"
I2luY2x1ZGUgPGtyYjUuaD4KI2luY2x1ZGUgPGFzc2VydC5oPgojaW5jbHVkZSA8c3RkbGli
Lmg+CgprcmI1X2Vycm9yX2NvZGUKZGVjb2RlX2tyYjVfYXBfcmVxKGNvbnN0IGtyYjVfZGF0
YSAqb3V0cHV0LCBrcmI1X2FwX3JlcSAqKnJlcCk7CgppbnQgbWFpbihpbnQgYXJnYywgY2hh
ciAqKmFyZ3YpCnsKICAgIGNoYXIgKmJ1ZjsKICAgIHNpemVfdCBpLCBsZW4gPSBhdG9pKGFy
Z3ZbMV0pOwogICAga3JiNV9kYXRhIGQ7CgogICAgYXNzZXJ0KGxlbiAlIDIgPT0gMCk7CiAg
ICBidWYgPSBtYWxsb2MobGVuKTsKICAgIGZvciAoaSA9IDA7IGkgPCBsZW47IGkgKz0gMikg
ewoJYnVmW2ldID0gMHg2ZTsKCWJ1ZltpICsgMV0gPSAweDgwOyAvKiBpbmRlZmluaXRlIGxl
bmd0aCAqLwogICAgfQogICAgZC5kYXRhID0gYnVmOwogICAgZC5sZW5ndGggPSBsZW47CiNp
ZmRlZiBIRUlNREFMCiAgICBrcmI1X2FwX3JlcSByOwogICAga3JiNV9kZWNvZGVfYXBfcmVx
KE5VTEwsICZkLCAmcik7CiNlbHNlCiAgICBrcmI1X2FwX3JlcSAqcjsKICAgIGRlY29kZV9r
cmI1X2FwX3JlcSgmZCwgJnIpOwojZW5kaWYKICAgIHJldHVybiAwOwp9Cgo=
--------------51ABAE2A8CE999D19FE32EB5
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
--------------51ABAE2A8CE999D19FE32EB5--
