Received: by 10.223.185.116 with SMTP id b49csp4185036wrg; Mon, 26 Feb 2018 12:46:28 -0800 (PST) X-Google-Smtp-Source: AH8x224U1T7rtPSswrHDuLdQASSQTOsl3YZDCqLvSssPGHWBot9K/tesM1NpVciKCH/doctttuzi X-Received: by 10.101.68.193 with SMTP id g1mr9252886pgs.302.1519677987946; Mon, 26 Feb 2018 12:46:27 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1519677987; cv=none; d=google.com; s=arc-20160816; b=vKJfSym3c6bluUeJsKowSBD/RpOJ+Kh0RVxJHglvTCcl/PcwHt7K141lo4PVyF9VZS yaD2BYwzg16U142HMp4SgFBlQ3qx7ZDo5k4ft6wc2pXhWNSiX9qdi0hngMHBgkLpXRLg rjJTQ/flwalB3+ZY+mF+gUao2+s5zQDooT59ayRX1oTlwcZl0p7QZ0/mWahFpST6K66s 1hwWObuTx97Ks+IxvdgH3lkBoVy51iR0fZNJPHEdZxy/cj5wQ//Ph2R91+ov5YkKjdwM 5iIM97/cKsieUzibBLUKyADujjk/8z9uiFE9o1518QPm9RTdGMcwQ0dDzCKitBbWjUOI L10Q== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :in-reply-to:message-id:date:subject:cc:to:from :arc-authentication-results; bh=uNuZywYrIPPO8CTp5u6/NrRpkoREHyqEHLoFKUXJ+uc=; b=ALxOX8KVacrk9+piLD5rTxlPEsu/BLcCNwSQznDTsWW6/Hw2SHM6QRzwLAi1D4oRvJ I+WKqfNdM+KcRBdTDJdGFgQCXTNCW5+u1VQRh3DmaD28n13MVP6D+WZHnaOUgqwTDHd2 LZfh8wnj1KpwPjX+pXCjks3rY/aRCHr/MbpxCSMCuj7WZhOT67mWAL9nEbVYyT4mZ30q RTe72RK7KAuLGIbsTonoou+9czg5mJ1cKsDZdlsAZMQyTaP915nhQb8KYQVoGqsPN5AQ q1ENe19WHFjfDHGixoEcjfZEuEvRXMSSiKhHxUsOch9E1VUzUTWg/unTVoCJkkSZiXWN wgxw== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id o6-v6si7179710plh.287.2018.02.26.12.46.11; Mon, 26 Feb 2018 12:46:27 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753333AbeBZU0N (ORCPT + 99 others); Mon, 26 Feb 2018 15:26:13 -0500 Received: from mail.linuxfoundation.org ([140.211.169.12]:35658 "EHLO mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752815AbeBZU0L (ORCPT ); Mon, 26 Feb 2018 15:26:11 -0500 Received: from localhost (clnet-b04-243.ikbnet.co.at [83.175.124.243]) by mail.linuxfoundation.org (Postfix) with ESMTPSA id 0FFA7FFC; Mon, 26 Feb 2018 20:26:09 +0000 (UTC) From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Paolo Valente , Eric Biggers , David Howells Subject: [PATCH 4.15 11/64] X.509: fix BUG_ON() when hash algorithm is unsupported Date: Mon, 26 Feb 2018 21:21:48 +0100 Message-Id: <20180226202153.911083651@linuxfoundation.org> X-Mailer: git-send-email 2.16.2 In-Reply-To: <20180226202153.453363333@linuxfoundation.org> References: <20180226202153.453363333@linuxfoundation.org> User-Agent: quilt/0.65 X-stable: review MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org 4.15-stable review patch. If anyone has any objections, please let me know. ------------------ From: Eric Biggers commit 437499eea4291ae9621e8763a41df027c110a1ef upstream. The X.509 parser mishandles the case where the certificate's signature's hash algorithm is not available in the crypto API. In this case, x509_get_sig_params() doesn't allocate the cert->sig->digest buffer; this part seems to be intentional. However, public_key_verify_signature() is still called via x509_check_for_self_signed(), which triggers the 'BUG_ON(!sig->digest)'. Fix this by making public_key_verify_signature() return -ENOPKG if the hash buffer has not been allocated. Reproducer when all the CONFIG_CRYPTO_SHA512* options are disabled: openssl req -new -sha512 -x509 -batch -nodes -outform der \ | keyctl padd asymmetric desc @s Fixes: 6c2dc5ae4ab7 ("X.509: Extract signature digest and make self-signed cert checks earlier") Reported-by: Paolo Valente Cc: Paolo Valente Cc: # v4.7+ Signed-off-by: Eric Biggers Signed-off-by: David Howells Signed-off-by: Greg Kroah-Hartman --- crypto/asymmetric_keys/public_key.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) --- a/crypto/asymmetric_keys/public_key.c +++ b/crypto/asymmetric_keys/public_key.c @@ -79,9 +79,11 @@ int public_key_verify_signature(const st BUG_ON(!pkey); BUG_ON(!sig); - BUG_ON(!sig->digest); BUG_ON(!sig->s); + if (!sig->digest) + return -ENOPKG; + alg_name = sig->pkey_algo; if (strcmp(sig->pkey_algo, "rsa") == 0) { /* The data wangled by the RSA algorithm is typically padded