diff options
-rw-r--r-- | src/crypto/crypto_keygen.h | 11 | ||||
-rw-r--r-- | src/crypto/crypto_keys.cc | 14 | ||||
-rw-r--r-- | src/crypto/crypto_util.h | 23 | ||||
-rw-r--r-- | test/parallel/test-crypto-keygen.js | 31 |
4 files changed, 69 insertions, 10 deletions
diff --git a/src/crypto/crypto_keygen.h b/src/crypto/crypto_keygen.h index e96d850cee..59e7e2ce7c 100644 --- a/src/crypto/crypto_keygen.h +++ b/src/crypto/crypto_keygen.h @@ -96,10 +96,13 @@ class KeyGenJob final : public CryptoJob<KeyGenTraits> { Environment* env = AsyncWrap::env(); CryptoErrorStore* errors = CryptoJob<KeyGenTraits>::errors(); AdditionalParams* params = CryptoJob<KeyGenTraits>::params(); - if (status_ == KeyGenJobStatus::OK && - LIKELY(!KeyGenTraits::EncodeKey(env, params, result).IsNothing())) { - *err = Undefined(env->isolate()); - return v8::Just(true); + + if (status_ == KeyGenJobStatus::OK) { + v8::Maybe<bool> ret = KeyGenTraits::EncodeKey(env, params, result); + if (ret.IsJust() && ret.FromJust()) { + *err = Undefined(env->isolate()); + } + return ret; } if (errors->Empty()) diff --git a/src/crypto/crypto_keys.cc b/src/crypto/crypto_keys.cc index f72ca8322d..4e8408086e 100644 --- a/src/crypto/crypto_keys.cc +++ b/src/crypto/crypto_keys.cc @@ -602,6 +602,11 @@ size_t ManagedEVPPKey::size_of_public_key() const { pkey_.get(), nullptr, &len) == 1) ? len : 0; } +// This maps true to Just<bool>(true) and false to Nothing<bool>(). +static inline Maybe<bool> Tristate(bool b) { + return b ? Just(true) : Nothing<bool>(); +} + Maybe<bool> ManagedEVPPKey::ToEncodedPublicKey( Environment* env, ManagedEVPPKey key, @@ -613,9 +618,10 @@ Maybe<bool> ManagedEVPPKey::ToEncodedPublicKey( // private key. std::shared_ptr<KeyObjectData> data = KeyObjectData::CreateAsymmetric(kKeyTypePublic, std::move(key)); - return Just(KeyObjectHandle::Create(env, data).ToLocal(out)); + return Tristate(KeyObjectHandle::Create(env, data).ToLocal(out)); } - return Just(WritePublicKey(env, key.get(), config).ToLocal(out)); + + return Tristate(WritePublicKey(env, key.get(), config).ToLocal(out)); } Maybe<bool> ManagedEVPPKey::ToEncodedPrivateKey( @@ -627,10 +633,10 @@ Maybe<bool> ManagedEVPPKey::ToEncodedPrivateKey( if (config.output_key_object_) { std::shared_ptr<KeyObjectData> data = KeyObjectData::CreateAsymmetric(kKeyTypePrivate, std::move(key)); - return Just(KeyObjectHandle::Create(env, data).ToLocal(out)); + return Tristate(KeyObjectHandle::Create(env, data).ToLocal(out)); } - return Just(WritePrivateKey(env, key.get(), config).ToLocal(out)); + return Tristate(WritePrivateKey(env, key.get(), config).ToLocal(out)); } NonCopyableMaybe<PrivateKeyEncodingConfig> diff --git a/src/crypto/crypto_util.h b/src/crypto/crypto_util.h index 928c0cd389..27bb6310b8 100644 --- a/src/crypto/crypto_util.h +++ b/src/crypto/crypto_util.h @@ -349,9 +349,27 @@ class CryptoJob : public AsyncWrap, public ThreadPoolWork { if (status == UV_ECANCELED) return; v8::HandleScope handle_scope(env->isolate()); v8::Context::Scope context_scope(env->context()); + + // TODO(tniessen): Remove the exception handling logic here as soon as we + // can verify that no code path in ToResult will ever throw an exception. + v8::Local<v8::Value> exception; v8::Local<v8::Value> args[2]; - if (ptr->ToResult(&args[0], &args[1]).FromJust()) + { + node::errors::TryCatchScope try_catch(env); + v8::Maybe<bool> ret = ptr->ToResult(&args[0], &args[1]); + if (!ret.IsJust()) { + CHECK(try_catch.HasCaught()); + exception = try_catch.Exception(); + } else if (!ret.FromJust()) { + return; + } + } + + if (exception.IsEmpty()) { ptr->MakeCallback(env->ondone_string(), arraysize(args), args); + } else { + ptr->MakeCallback(env->ondone_string(), 1, &exception); + } } virtual v8::Maybe<bool> ToResult( @@ -384,7 +402,8 @@ class CryptoJob : public AsyncWrap, public ThreadPoolWork { v8::Local<v8::Value> ret[2]; env->PrintSyncTrace(); job->DoThreadPoolWork(); - if (job->ToResult(&ret[0], &ret[1]).FromJust()) { + v8::Maybe<bool> result = job->ToResult(&ret[0], &ret[1]); + if (result.IsJust() && result.FromJust()) { args.GetReturnValue().Set( v8::Array::New(env->isolate(), ret, arraysize(ret))); } diff --git a/test/parallel/test-crypto-keygen.js b/test/parallel/test-crypto-keygen.js index e5c8a107ba..8f37277713 100644 --- a/test/parallel/test-crypto-keygen.js +++ b/test/parallel/test-crypto-keygen.js @@ -12,6 +12,7 @@ const { createVerify, generateKeyPair, generateKeyPairSync, + getCurves, publicEncrypt, privateDecrypt, sign, @@ -1314,3 +1315,33 @@ if (!common.hasOpenSSL3) { ); } } + +{ + // This test creates EC key pairs on curves without associated OIDs. + // Specifying a key encoding should not crash. + + if (process.versions.openssl >= '1.1.1i') { + for (const namedCurve of ['Oakley-EC2N-3', 'Oakley-EC2N-4']) { + if (!getCurves().includes(namedCurve)) + continue; + + const params = { + namedCurve, + publicKeyEncoding: { + format: 'der', + type: 'spki' + } + }; + + assert.throws(() => { + generateKeyPairSync('ec', params); + }, { + code: 'ERR_OSSL_EC_MISSING_OID' + }); + + generateKeyPair('ec', params, common.mustCall((err) => { + assert.strictEqual(err.code, 'ERR_OSSL_EC_MISSING_OID'); + })); + } + } +} |