ssl_lib: added pointer SSL_CONNECTION check to NULL before dereferencing it in ossl_ctrl_internal() #22470
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…ing it in ossl_ctrl_internal()
t8m
previously approved these changes
Oct 23, 2023
t8m
added
branch: master
nhorman
reviewed
Oct 23, 2023
| @@ -2908,6 +2908,9 @@ long ossl_ctrl_internal(SSL *s, int cmd, long larg, void *parg, int no_quic) | |||
| long l; | |||
| SSL_CONNECTION *sc = SSL_CONNECTION_FROM_SSL(s); | |||
|
|
|||
| if (sc == NULL) | |||
| return 0; | |||
|
|
|||
There was a problem hiding this comment.
There are a few reasons SSL_CONNECTION_FROM_SSL might resolve to NULL. Clearly if s is NULL it will. But it will also return NULL if:
OPENSSL_NO_QUIC is not defined and the ssl type is neither SSL_TYPE_SSL_CONNECTION nor SSL_TYPE_QUIC_CONNECTION
or
if OPENSSL_NO_QUICK is defined and the ssl type is not SSL_TYPE_SSL_CONNECTION
Is it worth detecting that rasing an error based on those condtions? Otherwise users will get a 0 return code and no error when what otherwise appears to be a valid ssl object is passed in
There was a problem hiding this comment.
I corrected the code so that pointer SSL is checked first. If it is equal to NULL, then returned 0, since pointer SSL_CONNECTION will also be NULL.
Next comes checking SSL_CONNECTION for NULL only by ssl type. Pointer SSL_CONNECTION needs to be checked, since it will be dereferenced next.
There was a problem hiding this comment.
Please revert this to the original fix. In other cases we do not raise error for these failures and IMO there is no point doing that here anyway as these errors can happen only with severe application bugs.
added 2 commits
October 24, 2023 12:30
…referencing it in ossl_ctrl_internal()
…referencing it in ossl_ctrl_internal()
t8m
removed
the
approval: review pending
github-actions
bot
added
the
severity: fips change
…ing it in ossl_ctrl_internal()
t8m
approved these changes
Oct 24, 2023
t8m
added
the
approval: review pending
github-actions
bot
removed
the
severity: fips change
paulidale
approved these changes
Oct 25, 2023
paulidale
added
approval: done
openssl-machine
added
approval: ready to merge
|
This pull request is ready to merge |
|
This is also applicable to 3.2. |
|
Merged to 3.2 and master. Thank you. |
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2023
…ing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from #22470)
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2023
…referencing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from #22470)
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2023
…referencing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from #22470)
openssl-machine
pushed a commit
that referenced
this pull request
Oct 26, 2023
…ing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from #22470)
wanghao75
pushed a commit
to openeuler-mirror/openssl
that referenced
this pull request
Nov 4, 2023
…ing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from openssl/openssl#22470) Signed-off-by: fly2x <fly2x@hitls.org>
wanghao75
pushed a commit
to openeuler-mirror/openssl
that referenced
this pull request
Nov 4, 2023
…referencing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from openssl/openssl#22470) Signed-off-by: fly2x <fly2x@hitls.org>
wanghao75
pushed a commit
to openeuler-mirror/openssl
that referenced
this pull request
Nov 4, 2023
…referencing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from openssl/openssl#22470) Signed-off-by: fly2x <fly2x@hitls.org>
wanghao75
pushed a commit
to openeuler-mirror/openssl
that referenced
this pull request
Nov 4, 2023
…ing it in ossl_ctrl_internal() Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Hugo Landau <hlandau@openssl.org> (Merged from openssl/openssl#22470) Signed-off-by: fly2x <fly2x@hitls.org>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes: #22466
In ssl_lib.c added pointer SSL_CONNECTION check to NULL before dereferencing it in ossl_ctrl_internal()