Diffusion GnuPG d631c8198c25

tpm: Improve error handling and check returned lengths.
d631c8198c25
Actions

Tags

None

Subscribers

None

Description

tpm: Improve error handling and check returned lengths.

* tpm2d/command.c (cmd_pkdecrypt): Handle unknown algo.  Also slightly
rework error handling.
* tpm2d/tpm2.c (sexp_to_tpm2_public_ecc): Check length before checking
for 0x04.  Rework error handling.
(tpm2_ObjectPublic_GetName): Check the return value of
TSS_GetDigestSize before use.  Erro handling rework.
(tpm2_SensitiveToDuplicate): Ditto.
(tpm2_import_key): Ditto.
* tpm2d/intel-tss.h (TSS_Hash_Generate): Check passed length for
negative values.  Check return value of TSS_GetDigestSize.  Use
dedicated 16 bit length variable.

These are reworked and improved fixes as reported in

GnuPG-bug-id: T7129

Details

Provenance

Authored on May 28 2024, 12:45 PM

Parents

rG2e4b1f785055: tpm: Do not use fprintf for logging.

Branches

Unknown

Tags

Unknown

Tasks

T7129: Fix static reports by static analyser in gnugp

Event Timeline

• werner committed rGd631c8198c25: tpm: Improve error handling and check returned lengths. (authored by • werner).May 28 2024, 12:57 PM

• werner added a task: T7129: Fix static reports by static analyser in gnugp.May 28 2024, 1:32 PM

Jakuje mentioned this in T7186: Fix tpm2d key import after recent changes.Jul 4 2024, 2:05 PM

• gniibe mentioned this in rGcf3cec982d28: tpm2d: Fix key import..Jul 5 2024, 7:22 AM

Changes (3)

Path

Size

tpm2d/

rGd631c8198c25

tpm2d/command.c

Loading...

tpm2d/intel-tss.h

Loading...

tpm2d/tpm2.c

Loading...