Raise an error if legacy key file has trailing data

2025-12-05 20:40:05 -08:00 · 2014-09-06 14:59:16 -07:00
parent f50feec2dd
commit 10622f6dcc
1 changed files with 7 additions and 0 deletions
--- a/key.cpp
+++ b/key.cpp
@@ -117,6 +117,13 @@ void		Key_file::Entry::load_legacy (uint32_t arg_version, std::istream& in)
 	if (in.gcount() != HMAC_KEY_LEN) {
 		throw Malformed();
 	}
+
+	if (in.peek() != -1) {
+		// Trailing data is a good indication that we are not actually reading a
+		// legacy key file.  (This is important to check since legacy key files
+		// did not have any sort of file header.)
+		throw Malformed();
+	}
 }

 void		Key_file::Entry::store (std::ostream& out) const