Skip to content

Commit

Permalink
gpg_signing: handle early termination of gpg command in verify path
Browse files Browse the repository at this point in the history
Also fixes missing wait() on I/O error. We have the same problem in several
places. I'll fix them in another batch.
  • Loading branch information
yuja committed Mar 3, 2024
1 parent 53ba6ba commit 462af6f
Show file tree
Hide file tree
Showing 2 changed files with 18 additions and 4 deletions.
12 changes: 9 additions & 3 deletions lib/src/gpg_signing.rs
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,7 @@ use std::ffi::OsString;
use std::fmt::Debug;
use std::io::Write;
use std::process::{Command, ExitStatus, Stdio};
use std::str;
use std::{io, str};

use thiserror::Error;

Expand Down Expand Up @@ -82,9 +82,15 @@ fn run_sign_command(command: &mut Command, input: &[u8]) -> Result<Vec<u8>, GpgE

fn run_verify_command(command: &mut Command, input: &[u8]) -> Result<Vec<u8>, GpgError> {
let process = command.stderr(Stdio::null()).spawn()?;
process.stdin.as_ref().unwrap().write_all(input)?;
let write_result = process.stdin.as_ref().unwrap().write_all(input);
let output = process.wait_with_output()?;
Ok(output.stdout)
match write_result {
Ok(()) => Ok(output.stdout),
// If the signature format is invalid, gpg will terminate early. Writing
// more input data will fail in that case.
Err(err) if err.kind() == io::ErrorKind::BrokenPipe => Ok(vec![]),
Err(err) => Err(err.into()),
}
}

#[derive(Debug)]
Expand Down
10 changes: 9 additions & 1 deletion lib/tests/test_gpg.rs
Original file line number Diff line number Diff line change
Expand Up @@ -200,8 +200,16 @@ fn invalid_signature() {
super duper invalid
-----END PGP SIGNATURE-----";

// Small data: gpg command will exit late.
assert_matches!(
backend.verify(b"a", signature),
Err(SignError::InvalidSignatureFormat)
);

// Large data: gpg command will exit early because the signature is invalid.
assert_matches!(
backend.verify(b"hello world", signature),
backend.verify(&b"a".repeat(100 * 1024), signature),
Err(SignError::InvalidSignatureFormat)
);
}

0 comments on commit 462af6f

Please sign in to comment.