1
0
mirror of https://git.tartarus.org/simon/putty.git synced 2025-01-25 01:02:24 +00:00

Utility function strbuf_dup.

If you already have a string (of potentially-binary data) in the form
of a ptrlen reference to somewhere else, and you want to keep a copy
somewhere, it's useful to copy it into a strbuf. But it takes a couple
of lines of faff to do that, and it's nicer to wrap that up into a
tiny helper function.

This commit adds that helper function strbuf_dup, and its non-movable
sibling strbuf_dup_nm for secret data. Also, gone through the existing
code and found a bunch of cases where this makes things less verbose.
This commit is contained in:
Simon Tatham 2022-04-19 10:53:44 +01:00
parent de47ec2f5f
commit e7d51505c7
7 changed files with 40 additions and 46 deletions

4
misc.h
View File

@ -52,6 +52,10 @@ struct strbuf {
strbuf *strbuf_new(void); strbuf *strbuf_new(void);
strbuf *strbuf_new_nm(void); strbuf *strbuf_new_nm(void);
/* Helpers to allocate a strbuf containing an existing string */
strbuf *strbuf_dup(ptrlen string);
strbuf *strbuf_dup_nm(ptrlen string);
void strbuf_free(strbuf *buf); void strbuf_free(strbuf *buf);
void *strbuf_append(strbuf *buf, size_t len); void *strbuf_append(strbuf *buf, size_t len);
void strbuf_shrink_to(strbuf *buf, size_t new_len); void strbuf_shrink_to(strbuf *buf, size_t new_len);

View File

@ -518,11 +518,8 @@ void pageant_passphrase_request_success(PageantClientDialogId *dlgid,
BinarySource_BARE_INIT_PL(src, ptrlen_from_strbuf( BinarySource_BARE_INIT_PL(src, ptrlen_from_strbuf(
pk->encrypted_key_file)); pk->encrypted_key_file));
strbuf *ppsb = strbuf_new_nm(); strbuf *ppsb = strbuf_dup_nm(passphrase);
put_datapl(ppsb, passphrase);
pk->skey = ppk_load_s(src, ppsb->s, &error); pk->skey = ppk_load_s(src, ppsb->s, &error);
strbuf_free(ppsb); strbuf_free(ppsb);
if (!pk->skey) { if (!pk->skey) {
@ -840,8 +837,7 @@ static PageantAsyncOp *pageant_make_op(
so->pao.reqid = reqid; so->pao.reqid = reqid;
so->pk = pk; so->pk = pk;
so->pkr.prev = so->pkr.next = NULL; so->pkr.prev = so->pkr.next = NULL;
so->data_to_sign = strbuf_new(); so->data_to_sign = strbuf_dup(sigdata);
put_datapl(so->data_to_sign, sigdata);
so->flags = flags; so->flags = flags;
so->failure_type = failure_type; so->failure_type = failure_type;
so->crLine = 0; so->crLine = 0;
@ -1180,8 +1176,7 @@ static PageantAsyncOp *pageant_make_op(
* existing record, if it doesn't have one already. * existing record, if it doesn't have one already.
*/ */
if (!pk->encrypted_key_file) { if (!pk->encrypted_key_file) {
pk->encrypted_key_file = strbuf_new_nm(); pk->encrypted_key_file = strbuf_dup_nm(keyfile);
put_datapl(pk->encrypted_key_file, keyfile);
keylist_update(); keylist_update();
put_byte(sb, SSH_AGENT_SUCCESS); put_byte(sb, SSH_AGENT_SUCCESS);
@ -1205,8 +1200,7 @@ static PageantAsyncOp *pageant_make_op(
public_blob = NULL; public_blob = NULL;
pk->sort.public_blob = ptrlen_from_strbuf(pk->public_blob); pk->sort.public_blob = ptrlen_from_strbuf(pk->public_blob);
pk->comment = dupstr(comment); pk->comment = dupstr(comment);
pk->encrypted_key_file = strbuf_new_nm(); pk->encrypted_key_file = strbuf_dup_nm(keyfile);
put_datapl(pk->encrypted_key_file, keyfile);
PageantKey *added = add234(keytree, pk); PageantKey *added = add234(keytree, pk);
assert(added == pk); (void)added; assert(added == pk); (void)added;
@ -2233,8 +2227,7 @@ int pageant_enum_keys(pageant_key_enum_fn_t callback, void *callback_ctx,
if (kl1) { if (kl1) {
for (size_t i = 0; i < kl1->nkeys; i++) { for (size_t i = 0; i < kl1->nkeys; i++) {
cbkey.blob = strbuf_new(); cbkey.blob = strbuf_dup(kl1->keys[i].blob);
put_datapl(cbkey.blob, kl1->keys[i].blob);
cbkey.comment = mkstr(kl1->keys[i].comment); cbkey.comment = mkstr(kl1->keys[i].comment);
cbkey.ssh_version = 1; cbkey.ssh_version = 1;
@ -2265,8 +2258,7 @@ int pageant_enum_keys(pageant_key_enum_fn_t callback, void *callback_ctx,
if (kl2) { if (kl2) {
for (size_t i = 0; i < kl2->nkeys; i++) { for (size_t i = 0; i < kl2->nkeys; i++) {
cbkey.blob = strbuf_new(); cbkey.blob = strbuf_dup(kl2->keys[i].blob);
put_datapl(cbkey.blob, kl2->keys[i].blob);
cbkey.comment = mkstr(kl2->keys[i].comment); cbkey.comment = mkstr(kl2->keys[i].comment);
cbkey.ssh_version = 2; cbkey.ssh_version = 2;

View File

@ -521,8 +521,7 @@ static void ssh1_login_process_queue(PacketProtocolLayer *ppl)
RSA_SSH1_EXPONENT_FIRST); RSA_SSH1_EXPONENT_FIRST);
const char *blobend = get_ptr(s->asrc); const char *blobend = get_ptr(s->asrc);
s->agent_keys[i].comment = strbuf_new(); s->agent_keys[i].comment = strbuf_dup(get_string(s->asrc));
put_datapl(s->agent_keys[i].comment, get_string(s->asrc));
s->agent_keys[i].blob = make_ptrlen( s->agent_keys[i].blob = make_ptrlen(
blobstart, blobend - blobstart); blobstart, blobend - blobstart);

View File

@ -348,10 +348,8 @@ static void ssh2_userauth_process_queue(PacketProtocolLayer *ppl)
s->agent_keys_len = nkeys; s->agent_keys_len = nkeys;
s->agent_keys = snewn(s->agent_keys_len, agent_key); s->agent_keys = snewn(s->agent_keys_len, agent_key);
for (size_t i = 0; i < nkeys; i++) { for (size_t i = 0; i < nkeys; i++) {
s->agent_keys[i].blob = strbuf_new(); s->agent_keys[i].blob = strbuf_dup(get_string(s->asrc));
put_datapl(s->agent_keys[i].blob, get_string(s->asrc)); s->agent_keys[i].comment = strbuf_dup(get_string(s->asrc));
s->agent_keys[i].comment = strbuf_new();
put_datapl(s->agent_keys[i].comment, get_string(s->asrc));
/* Also, extract the algorithm string from the start /* Also, extract the algorithm string from the start
* of the public-key blob. */ * of the public-key blob. */

View File

@ -199,8 +199,7 @@ static int rsa1_load_s_internal(BinarySource *src, RSAKey *key, bool pub_only,
if (enclen & 7) if (enclen & 7)
goto end; goto end;
buf = strbuf_new_nm(); buf = strbuf_dup_nm(get_data(src, enclen));
put_datapl(buf, get_data(src, enclen));
unsigned char keybuf[16]; unsigned char keybuf[16];
hash_simple(&ssh_md5, ptrlen_from_asciz(passphrase), keybuf); hash_simple(&ssh_md5, ptrlen_from_asciz(passphrase), keybuf);

View File

@ -763,8 +763,7 @@ strbuf *ssh_cipher_encrypt_wrapper(ssh_cipher *c, ptrlen input)
if (input.len % ssh_cipher_alg(c)->blksize) if (input.len % ssh_cipher_alg(c)->blksize)
fatal_error("ssh_cipher_encrypt: needs a multiple of %d bytes", fatal_error("ssh_cipher_encrypt: needs a multiple of %d bytes",
ssh_cipher_alg(c)->blksize); ssh_cipher_alg(c)->blksize);
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(input);
put_datapl(sb, input);
ssh_cipher_encrypt(c, sb->u, sb->len); ssh_cipher_encrypt(c, sb->u, sb->len);
return sb; return sb;
} }
@ -774,8 +773,7 @@ strbuf *ssh_cipher_decrypt_wrapper(ssh_cipher *c, ptrlen input)
if (input.len % ssh_cipher_alg(c)->blksize) if (input.len % ssh_cipher_alg(c)->blksize)
fatal_error("ssh_cipher_decrypt: needs a multiple of %d bytes", fatal_error("ssh_cipher_decrypt: needs a multiple of %d bytes",
ssh_cipher_alg(c)->blksize); ssh_cipher_alg(c)->blksize);
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(input);
put_datapl(sb, input);
ssh_cipher_decrypt(c, sb->u, sb->len); ssh_cipher_decrypt(c, sb->u, sb->len);
return sb; return sb;
} }
@ -785,8 +783,7 @@ strbuf *ssh_cipher_encrypt_length_wrapper(ssh_cipher *c, ptrlen input,
{ {
if (input.len != 4) if (input.len != 4)
fatal_error("ssh_cipher_encrypt_length: needs exactly 4 bytes"); fatal_error("ssh_cipher_encrypt_length: needs exactly 4 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(input);
put_datapl(sb, input);
ssh_cipher_encrypt_length(c, sb->u, sb->len, seq); ssh_cipher_encrypt_length(c, sb->u, sb->len, seq);
return sb; return sb;
} }
@ -796,8 +793,7 @@ strbuf *ssh_cipher_decrypt_length_wrapper(ssh_cipher *c, ptrlen input,
{ {
if (input.len % ssh_cipher_alg(c)->blksize) if (input.len % ssh_cipher_alg(c)->blksize)
fatal_error("ssh_cipher_decrypt_length: needs exactly 4 bytes"); fatal_error("ssh_cipher_decrypt_length: needs exactly 4 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(input);
put_datapl(sb, input);
ssh_cipher_decrypt_length(c, sb->u, sb->len, seq); ssh_cipher_decrypt_length(c, sb->u, sb->len, seq);
return sb; return sb;
} }
@ -997,8 +993,7 @@ strbuf *des_encrypt_xdmauth_wrapper(ptrlen key, ptrlen data)
fatal_error("des_encrypt_xdmauth: key must be 7 bytes long"); fatal_error("des_encrypt_xdmauth: key must be 7 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des_encrypt_xdmauth: data must be a multiple of 8 bytes"); fatal_error("des_encrypt_xdmauth: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des_encrypt_xdmauth(key.ptr, sb->u, sb->len); des_encrypt_xdmauth(key.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1009,8 +1004,7 @@ strbuf *des_decrypt_xdmauth_wrapper(ptrlen key, ptrlen data)
fatal_error("des_decrypt_xdmauth: key must be 7 bytes long"); fatal_error("des_decrypt_xdmauth: key must be 7 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des_decrypt_xdmauth: data must be a multiple of 8 bytes"); fatal_error("des_decrypt_xdmauth: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des_decrypt_xdmauth(key.ptr, sb->u, sb->len); des_decrypt_xdmauth(key.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1021,8 +1015,7 @@ strbuf *des3_encrypt_pubkey_wrapper(ptrlen key, ptrlen data)
fatal_error("des3_encrypt_pubkey: key must be 16 bytes long"); fatal_error("des3_encrypt_pubkey: key must be 16 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des3_encrypt_pubkey: data must be a multiple of 8 bytes"); fatal_error("des3_encrypt_pubkey: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des3_encrypt_pubkey(key.ptr, sb->u, sb->len); des3_encrypt_pubkey(key.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1033,8 +1026,7 @@ strbuf *des3_decrypt_pubkey_wrapper(ptrlen key, ptrlen data)
fatal_error("des3_decrypt_pubkey: key must be 16 bytes long"); fatal_error("des3_decrypt_pubkey: key must be 16 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des3_decrypt_pubkey: data must be a multiple of 8 bytes"); fatal_error("des3_decrypt_pubkey: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des3_decrypt_pubkey(key.ptr, sb->u, sb->len); des3_decrypt_pubkey(key.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1047,8 +1039,7 @@ strbuf *des3_encrypt_pubkey_ossh_wrapper(ptrlen key, ptrlen iv, ptrlen data)
fatal_error("des3_encrypt_pubkey_ossh: iv must be 8 bytes long"); fatal_error("des3_encrypt_pubkey_ossh: iv must be 8 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des3_encrypt_pubkey_ossh: data must be a multiple of 8 bytes"); fatal_error("des3_encrypt_pubkey_ossh: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des3_encrypt_pubkey_ossh(key.ptr, iv.ptr, sb->u, sb->len); des3_encrypt_pubkey_ossh(key.ptr, iv.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1061,8 +1052,7 @@ strbuf *des3_decrypt_pubkey_ossh_wrapper(ptrlen key, ptrlen iv, ptrlen data)
fatal_error("des3_encrypt_pubkey_ossh: iv must be 8 bytes long"); fatal_error("des3_encrypt_pubkey_ossh: iv must be 8 bytes long");
if (data.len % 8 != 0) if (data.len % 8 != 0)
fatal_error("des3_decrypt_pubkey_ossh: data must be a multiple of 8 bytes"); fatal_error("des3_decrypt_pubkey_ossh: data must be a multiple of 8 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
des3_decrypt_pubkey_ossh(key.ptr, iv.ptr, sb->u, sb->len); des3_decrypt_pubkey_ossh(key.ptr, iv.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1075,8 +1065,7 @@ strbuf *aes256_encrypt_pubkey_wrapper(ptrlen key, ptrlen iv, ptrlen data)
fatal_error("aes256_encrypt_pubkey: iv must be 16 bytes long"); fatal_error("aes256_encrypt_pubkey: iv must be 16 bytes long");
if (data.len % 16 != 0) if (data.len % 16 != 0)
fatal_error("aes256_encrypt_pubkey: data must be a multiple of 16 bytes"); fatal_error("aes256_encrypt_pubkey: data must be a multiple of 16 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
aes256_encrypt_pubkey(key.ptr, iv.ptr, sb->u, sb->len); aes256_encrypt_pubkey(key.ptr, iv.ptr, sb->u, sb->len);
return sb; return sb;
} }
@ -1089,8 +1078,7 @@ strbuf *aes256_decrypt_pubkey_wrapper(ptrlen key, ptrlen iv, ptrlen data)
fatal_error("aes256_encrypt_pubkey: iv must be 16 bytes long"); fatal_error("aes256_encrypt_pubkey: iv must be 16 bytes long");
if (data.len % 16 != 0) if (data.len % 16 != 0)
fatal_error("aes256_decrypt_pubkey: data must be a multiple of 16 bytes"); fatal_error("aes256_decrypt_pubkey: data must be a multiple of 16 bytes");
strbuf *sb = strbuf_new(); strbuf *sb = strbuf_dup(data);
put_datapl(sb, data);
aes256_decrypt_pubkey(key.ptr, iv.ptr, sb->u, sb->len); aes256_decrypt_pubkey(key.ptr, iv.ptr, sb->u, sb->len);
return sb; return sb;
} }

View File

@ -112,3 +112,17 @@ void strbuf_finalise_agent_query(strbuf *buf_o)
assert(buf->visible.len >= 5); assert(buf->visible.len >= 5);
PUT_32BIT_MSB_FIRST(buf->visible.u, buf->visible.len - 4); PUT_32BIT_MSB_FIRST(buf->visible.u, buf->visible.len - 4);
} }
strbuf *strbuf_dup(ptrlen string)
{
strbuf *buf = strbuf_new();
put_datapl(buf, string);
return buf;
}
strbuf *strbuf_dup_nm(ptrlen string)
{
strbuf *buf = strbuf_new_nm();
put_datapl(buf, string);
return buf;
}