DandelionNStuff/dkimpy-smtputf8
4
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Catch nacl.exceptions.ValueError and raise KeyFormatError, similar to how RSA key errors are treated (LP: #2018021)

Browse Source
This commit is contained in:
Scott Kitterman
2023-04-29 00:09:14 -04:00
parent 339bf1fb63
commit 2fc00b0218
2 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ChangeLog
+2
View File
@@ -1,4 +1,6 @@
Version 1.1.3 Version 1.1.3
- Catch nacl.exceptions.ValueError and raise KeyFormatError, similar to how
RSA key errors are treated (LP: #2018021)
2023-04-09 Version 1.1.2 2023-04-09 Version 1.1.2
- Verify correct AMS header is used for ARC seal verification (André Cruz) - Verify correct AMS header is used for ARC seal verification (André Cruz)
dkim/__init__.py
+4 -2
View File
@@ -468,6 +468,8 @@ def evaluate_pk(name, s):
pk = nacl.signing.VerifyKey(pub[b'p'], encoder=nacl.encoding.Base64Encoder) pk = nacl.signing.VerifyKey(pub[b'p'], encoder=nacl.encoding.Base64Encoder)
except NameError: except NameError:
raise NaClNotFoundError('pynacl module required for ed25519 signing, see README.md') raise NaClNotFoundError('pynacl module required for ed25519 signing, see README.md')
except nacl.exceptions.ValueError as e:
raise KeyFormatError("could not parse ed25519 public key (%s): %s" % (pub[b'p'],e))
keysize = 256 keysize = 256
ktag = b'ed25519' ktag = b'ed25519'
except KeyError: except KeyError:
@@ -477,9 +479,9 @@ def evaluate_pk(name, s):
pk = parse_public_key(base64.b64decode(pub[b'p'])) pk = parse_public_key(base64.b64decode(pub[b'p']))
keysize = bitsize(pk['modulus']) keysize = bitsize(pk['modulus'])
except KeyError: except KeyError:
raise KeyFormatError("incomplete public key: %s" % s) raise KeyFormatError("incomplete RSA public key: %s" % s)
except (TypeError,UnparsableKeyError) as e: except (TypeError,UnparsableKeyError) as e:
raise KeyFormatError("could not parse public key (%s): %s" % (pub[b'p'],e)) raise KeyFormatError("could not parse RSA public key (%s): %s" % (pub[b'p'],e))
ktag = b'rsa' ktag = b'rsa'
if pub[b'k'] != b'rsa' and pub[b'k'] != b'ed25519': if pub[b'k'] != b'rsa' and pub[b'k'] != b'ed25519':
raise KeyFormatError('unknown algorithm in k= tag: {0}'.format(pub[b'k'])) raise KeyFormatError('unknown algorithm in k= tag: {0}'.format(pub[b'k']))