Fix an out-of-bounds read for TLS <- 1.2 cipher strings that end in a "-"#19166
Closed
millert wants to merge 1 commit intoopenssl:masterfrom
Closed
Fix an out-of-bounds read for TLS <- 1.2 cipher strings that end in a "-"#19166millert wants to merge 1 commit intoopenssl:masterfrom
millert wants to merge 1 commit intoopenssl:masterfrom
Conversation
millert
changed the title
paulidale
approved these changes
Sep 7, 2022
paulidale
added
branch: master
t8m
approved these changes
Sep 8, 2022
t8m
approved these changes
Sep 8, 2022
t8m
added
the
approval: done
Contributor
|
Confirm trivial? I think it is but I added the label 😃 |
Member
|
I am OK with CLA: trivial for this. @paulidale should this go into 1.1.1 too? IMO yes, if it applies there. |
Contributor
|
Should this have a regression test? That test combined with ASan should provide regression coverage. |
davidben
reviewed
Sep 8, 2022
ssl/ssl_ciph.c
Outdated
| retval = found = 0; | ||
| l++; | ||
| if (ch != '\0') | ||
| l++; |
Contributor
There was a problem hiding this comment.
Actually, is this the right fix? This is an error condition, ERR_raise and all, and yet we're breaking out of just the inner loop. It seems we actually just want to break out of the outer loop.
Looking back, it seems we hit this with a fuzzer a while back, but our fix was to make the function immediately fail.
https://boringssl-review.googlesource.com/c/boringssl/+/11421/
Contributor
Author
There was a problem hiding this comment.
Returning early seems safer.
Contributor
There was a problem hiding this comment.
Yeah. It also seems the function will get confused otherwise. If I'm reading this right, I believe break exits to line 1220 ("Ok, we have the rule, now apply it"). That could try to execute CIPHER_SPECIAL or skip over something and then continue running. We may execute more rules, pile on more errors, before finally returning failure anyway because retval is cleared.
Contributor
Author
|
For some reason this can be hard to trigger with address sanitizer. The following reliably reproduces the problem for me with |
Collaborator
|
24 hours has passed since 'approval: done' was set, but as this PR has been updated in that time the label 'approval: ready to merge' is not being automatically set. Please review the updates and set the label manually. |
t8m
added
branch: 3.1
Member
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial
Contributor
Author
|
@t8m I updated the commit to just return early as discussed. |
t8m
added
the
approval: review pending
t8m
approved these changes
Oct 24, 2022
Member
|
@paulidale still OK? |
paulidale
approved these changes
Oct 25, 2022
paulidale
added
approval: done
openssl-machine
removed
the
approval: done
openssl-machine
added
the
approval: ready to merge
Collaborator
|
This pull request is ready to merge |
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19166)
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19166) (cherry picked from commit 428511c)
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19166) (cherry picked from commit 428511c)
Member
|
Merged to all branches (after fixing trivial conflict on 1.1.1 branch). Thank you for your contribution. |
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19166) (cherry picked from commit 428511c)
bernd-edlinger
pushed a commit
to bernd-edlinger/openssl
that referenced
this pull request
Nov 4, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#19166) (cherry picked from commit 428511c)
bernd-edlinger
pushed a commit
to bernd-edlinger/openssl
that referenced
this pull request
Nov 4, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#19166) (cherry picked from commit 428511c)
bernd-edlinger
pushed a commit
to bernd-edlinger/openssl
that referenced
this pull request
Nov 4, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#19166) (cherry picked from commit 428511c)
beldmit
pushed a commit
to beldmit/openssl
that referenced
this pull request
Dec 26, 2022
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#19166)
a-kromm-rogii
pushed a commit
to a-kromm-rogii/openssl
that referenced
this pull request
Mar 14, 2025
If rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. It is safest to just return early in this case since the condition occurs inside a nested loop. CLA: trivial Reviewed-by: Paul Dale <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from openssl#19166) (cherry picked from commit 428511c)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
In ssl_cipher_process_rulestr(), if rule_str ended in a "-", "l" was incremented one byte past the end of the buffer. This resulted in an out-of-bounds read when "l" is dereferenced at the end of the loop. The trivial fix is to only increment "l" if the last byte read is not a NUL.
CLA: trivial