Fix unpacking time (unsigned int) from octets for large values #1836

vanitasvitae · 2024-09-14T09:11:25Z

Time, as well as offsets (e.g. expiration) in OpenPGP are stored as seconds in unsigned Integers.

I noticed, that 8385a2c broke some tests in PGPainless that dealt with large expiration time intervals.

Turns out, the changed code accidentally converted the values to signed ints, which break for large (but legal) intervals.

The patch converts back to an unsigned value.

vanitasvitae · 2024-09-14T09:14:11Z

I wonder if more places in the code are affected by this, e.g. key creation time...

vanitasvitae · 2024-09-14T09:45:14Z

PublicKeyPacket and SignaturePacket were also affected by this.

I also discovered a discrepancy between StreamUtils.writeTime() (expecting seconds) and StreamUtils.readTime() (returning millis).

I fixed this by changing writeTime() to expect millis and introducing writeSeconds() and readSeconds() dealing with seconds.

vanitasvitae · 2024-09-14T10:16:02Z

Okay, now I wonder, if large values are handled properly in general (e.g. large lengths) :D

vanitasvitae force-pushed the fixUnpackUnsignedTime branch from 95ca87a to f4f8638 Compare September 14, 2024 09:41

vanitasvitae force-pushed the fixUnpackUnsignedTime branch from f4f8638 to e50ddc6 Compare September 14, 2024 09:47

Fix unpacking time (unsigned int) from octets for large values

df4cc22

vanitasvitae force-pushed the fixUnpackUnsignedTime branch from e50ddc6 to df4cc22 Compare September 14, 2024 09:51

ligefeiBouncycastle self-requested a review October 22, 2024 04:23

Provide feedback