Don't create an invalid CertificateRequest

author Matt Caswell <matt@openssl.org>

Mon, 2 Jul 2018 13:09:03 +0000 (14:09 +0100)

committer Matt Caswell <matt@openssl.org>

Tue, 3 Jul 2018 10:22:06 +0000 (11:22 +0100)
author Matt Caswell <matt@openssl.org>
Mon, 2 Jul 2018 13:09:03 +0000 (14:09 +0100)
committer Matt Caswell <matt@openssl.org>
Tue, 3 Jul 2018 10:22:06 +0000 (11:22 +0100)
diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h

index f5b03df5a387fa97458dfd77d7c7972e323f909e..374fa0e521be5bc439ba6bdb06aadc6966a501a7 100644 (file)
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h
@@ -164,6 +164,8 @@
                             (c)[1]=(unsigned char)(((l)>> 8)&0xff), \
                             (c)[2]=(unsigned char)(((l)    )&0xff)),(c)+=3)
  
+# define SSL_MAX_2_BYTE_LEN     (0xffff)
+
  /*
   * DTLS version numbers are strange because they're inverted. Except for
   * DTLS1_BAD_VER, which should be considered "lower" than the rest.
diff --git a/ssl/statem/statem_srvr.c b/ssl/statem/statem_srvr.c

index 10301f1643897e501fd55b393568898c7dffea52..378eae2993fa630399d9843731755a8108a22b21 100644 (file)
--- a/ssl/statem/statem_srvr.c
+++ b/ssl/statem/statem_srvr.c
@@ -2006,6 +2006,11 @@ int tls_construct_certificate_request(SSL *s)
          const unsigned char *psigs;
          unsigned char *etmp = p;
          nl = tls12_get_psigalgs(s, 1, &psigs);
+        if (nl > SSL_MAX_2_BYTE_LEN) {
+            SSLerr(SSL_F_TLS_CONSTRUCT_CERTIFICATE_REQUEST,
+                   SSL_R_LENGTH_TOO_LONG);
+            goto err;
+        }
          /* Skip over length for now */
          p += 2;
          nl = tls12_copy_sigalgs(s, p, psigs, nl);
@@ -2025,6 +2030,11 @@ int tls_construct_certificate_request(SSL *s)
          for (i = 0; i < sk_X509_NAME_num(sk); i++) {
              name = sk_X509_NAME_value(sk, i);
              j = i2d_X509_NAME(name, NULL);
+            if (j > SSL_MAX_2_BYTE_LEN) {
+                SSLerr(SSL_F_TLS_CONSTRUCT_CERTIFICATE_REQUEST,
+                       SSL_R_LENGTH_TOO_LONG);
+                goto err;
+            }
              if (!BUF_MEM_grow_clean(buf, SSL_HM_HEADER_LENGTH(s) + n + j + 2)) {
                  SSLerr(SSL_F_TLS_CONSTRUCT_CERTIFICATE_REQUEST, ERR_R_BUF_LIB);
                  goto err;
@@ -2034,6 +2044,11 @@ int tls_construct_certificate_request(SSL *s)
              i2d_X509_NAME(name, &p);
              n += 2 + j;
              nl += 2 + j;
+            if (nl > SSL_MAX_2_BYTE_LEN) {
+                SSLerr(SSL_F_TLS_CONSTRUCT_CERTIFICATE_REQUEST,
+                       SSL_R_LENGTH_TOO_LONG);
+                goto err;
+            }
          }
      }
      /* else no CA names */
author	Matt Caswell <matt@openssl.org>
	Mon, 2 Jul 2018 13:09:03 +0000 (14:09 +0100)
committer	Matt Caswell <matt@openssl.org>
	Tue, 3 Jul 2018 10:22:06 +0000 (11:22 +0100)
ssl/ssl_locl.h		patch \| blob \| history
ssl/statem/statem_srvr.c		patch \| blob \| history