Fix BIO_f_cipher flushing and other BIO related fixes by mattcaswell · Pull Request #19918 · openssl/openssl

mattcaswell · 2022-12-15T16:29:19Z

If an error occurs during a flush on a BIO_f_cipher() then in some cases
we could get into an infinite loop. We add a check to make sure we are
making progress during flush and exit if not.

This issue was reported by Octavio Galland who also demonstrated an
infinite loop in CMS encryption as a result of this bug.

The security team has assessed this issue as not a CVE. This occurs on
encryption only which is typically processing trusted data. We are not
aware of a way to trigger this with untrusted data.

mattcaswell · 2022-12-15T16:47:29Z

I am confused by the test failures....

test/recipes/80-test_cms.t

If an error occurs during a flush on a BIO_f_cipher() then in some cases we could get into an infinite loop. We add a check to make sure we are making progress during flush and exit if not. This issue was reported by Octavio Galland who also demonstrated an infinite loop in CMS encryption as a result of this bug. The security team has assessed this issue as not a CVE. This occurs on *encryption* only which is typically processing trusted data. We are not aware of a way to trigger this with untrusted data.

If the BIO unexpectedly fails to flush then SMIME_crlf_copy() was not correctly reporting the error. We modify it to properly propagate the error condition.

Some things that may go wrong in asn1_bio_write() are serious errors that should be reported as -1, rather than 0 (which just means "we wrote no data").

If the cipher being used in ossl_cms_EncryptedContent_init_bio() has no associated OID then we should report an error rather than continuing on regardless. Continuing on still ends up failing - but later on and with a more cryptic error message.

mattcaswell · 2022-12-15T17:30:44Z

I am confused by the test failures....

Interesting. This seems to be due to a bad interaction with #19652 which was merged after my local branch containing this fix was created. Github Actions automatically merge a PR with the master branch during the CI run and there were no conflicts but having both in the tree at the same time causes a test failure because of a bad plan (17 tests were run when it expected 16). Rebasing my local branch reproduced the issue. Fixup pushed.

slontis · 2022-12-15T21:44:54Z

crypto/asn1/asn_mime.c

        }
    }
-    (void)BIO_flush(out);
+    ret = BIO_flush(out);


I dont know if it matters but there are quite a few other (void)BIO_flush calls related to cms/pkcs7

openssl-machine · 2022-12-17T10:00:16Z

24 hours has passed since 'approval: done' was set, but this PR has failing CI tests. Once the tests pass it will get moved to 'approval: ready to merge' automatically, alternatively please review and set the label manually.

openssl-machine · 2022-12-19T15:00:15Z

This pull request is ready to merge

t8m · 2022-12-22T10:04:11Z

Merged to master branch. Thank you.

If an error occurs during a flush on a BIO_f_cipher() then in some cases we could get into an infinite loop. We add a check to make sure we are making progress during flush and exit if not. This issue was reported by Octavio Galland who also demonstrated an infinite loop in CMS encryption as a result of this bug. The security team has assessed this issue as not a CVE. This occurs on *encryption* only which is typically processing trusted data. We are not aware of a way to trigger this with untrusted data. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

If the BIO unexpectedly fails to flush then SMIME_crlf_copy() was not correctly reporting the error. We modify it to properly propagate the error condition. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

Some things that may go wrong in asn1_bio_write() are serious errors that should be reported as -1, rather than 0 (which just means "we wrote no data"). Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

If the cipher being used in ossl_cms_EncryptedContent_init_bio() has no associated OID then we should report an error rather than continuing on regardless. Continuing on still ends up failing - but later on and with a more cryptic error message. Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

mattcaswell added branch: master Applies to master branch approval: review pending This pull request needs review by a committer approval: otc review pending labels Dec 15, 2022

This was referenced Dec 15, 2022

Fix BIO_f_cipher flushing and other BIO related fixes (3.1/3.0) #19919

Closed

Fix BIO_f_cipher flushing and other BIO related fixes (1.1.1) #19920

Closed

bernd-edlinger reviewed Dec 15, 2022

View reviewed changes

test/recipes/80-test_cms.t Show resolved Hide resolved

mattcaswell added 6 commits December 15, 2022 17:25

Fix SMIME_crlf_copy() to properly report an error

53db92c

If the BIO unexpectedly fails to flush then SMIME_crlf_copy() was not correctly reporting the error. We modify it to properly propagate the error condition.

Fix BIO_f_asn1() to properly report some errors

596b629

Some things that may go wrong in asn1_bio_write() are serious errors that should be reported as -1, rather than 0 (which just means "we wrote no data").

Add a CMS test for a bad encryption algorithm

c784d5c

fixup! Add a CMS test for a bad encryption algorithm

754d694

mattcaswell force-pushed the fix-bio-handling branch from 89754cd to 754d694 Compare December 15, 2022 17:27

slontis reviewed Dec 15, 2022

View reviewed changes

t8m added triaged: bug The issue/pr is/fixes a bug tests: present The PR has suitable tests present labels Dec 16, 2022

t8m approved these changes Dec 16, 2022

View reviewed changes

t8m removed the approval: otc review pending label Dec 16, 2022

hlandau approved these changes Dec 16, 2022

View reviewed changes

hlandau added approval: done This pull request has the required number of approvals and removed approval: review pending This pull request needs review by a committer labels Dec 16, 2022

openssl-machine added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels Dec 19, 2022

t8m closed this Dec 22, 2022

openssl-machine pushed a commit that referenced this pull request Dec 22, 2022

Add a CMS test for a bad encryption algorithm

5a8fcd2

Reviewed-by: Hugo Landau <[email protected]> Reviewed-by: Tomas Mraz <[email protected]> (Merged from #19918)

DDvO mentioned this pull request May 24, 2023

[REGRESSION] CMS_Final() fails when modifying CMS #21026

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Comments

Fix BIO_f_cipher flushing and other BIO related fixes#19918

Fix BIO_f_cipher flushing and other BIO related fixes#19918
mattcaswell wants to merge 6 commits intoopenssl:masterfrom
mattcaswell:fix-bio-handling

mattcaswell commented Dec 15, 2022

Uh oh!

mattcaswell commented Dec 15, 2022

Uh oh!

Uh oh!

mattcaswell commented Dec 15, 2022

Uh oh!

slontis Dec 15, 2022

Uh oh!

openssl-machine commented Dec 17, 2022

Uh oh!

openssl-machine commented Dec 19, 2022

Uh oh!

t8m commented Dec 22, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

Uh oh!

Comments

Conversation

mattcaswell commented Dec 15, 2022

Uh oh!

mattcaswell commented Dec 15, 2022

Uh oh!

Uh oh!

mattcaswell commented Dec 15, 2022

Uh oh!

slontis Dec 15, 2022

Choose a reason for hiding this comment

Uh oh!

openssl-machine commented Dec 17, 2022

Uh oh!

openssl-machine commented Dec 19, 2022

Uh oh!

t8m commented Dec 22, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants