Merge 401950944a into 933f57dfe2

Raise an error on syscall failure in tls_retry_write_records
Record the errno when we get a syscall failure in tls_retry_write_records Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/23723)
2024-04-27 06:38:26 +01:00 · 2024-04-26 17:10:38 +02:00 · 2024-04-26 17:10:34 +02:00 · 2024-04-26 17:09:06 +02:00 · 2024-04-26 17:09:06 +02:00 · 2024-04-26 14:01:36 +02:00
10 changed files with 65 additions and 23 deletions
--- a/README.md
+++ b/README.md
@ -11,13 +11,13 @@ for the TLS (formerly SSL), DTLS and QUIC (currently client side only)
 protocols.

 The protocol implementations are based on a full-strength general purpose
-cryptographic library, which can also be used stand-alone. Also included is a
+cryptographic library, which can also be used standalone. Also included is a
 cryptographic module validated to conform with FIPS standards.

 OpenSSL is descended from the SSLeay library developed by Eric A. Young
 and Tim J. Hudson.

-The official Home Page of the OpenSSL Project is [www.openssl.org].
+The official Homepage of the OpenSSL Project is [www.openssl.org].

 Table of Contents
 =================
@ -46,7 +46,7 @@ The OpenSSL toolkit includes:
  basis of the TLS implementation, but can also be used independently.

 - **openssl**
-  the OpenSSL command line tool, a swiss army knife for cryptographic tasks,
+  the OpenSSL command line tool, a Swiss Army knife for cryptographic tasks,
  testing and analyzing. It can be used for
  - creation of key parameters
  - creation of X.509 certificates, CSRs and CRLs
@ -111,7 +111,7 @@ Build and Install

 After obtaining the Source, have a look at the [INSTALL](INSTALL.md) file for
 detailed instructions about building and installing OpenSSL. For some
-platforms, the installation instructions are amended by a platform specific
+platforms, the installation instructions are amended by a platform-specific
 document.

 * [Notes for UNIX-like platforms](NOTES-UNIX.md)
--- a/crypto/conf/conf_mod.c
+++ b/crypto/conf/conf_mod.c
@ -368,7 +368,6 @@ static CONF_MODULE *module_add(DSO *dso, const char *name,

 err:
    ossl_rcu_write_unlock(module_list_lock);
-    sk_CONF_MODULE_free(new_modules);
    if (tmod != NULL) {
        OPENSSL_free(tmod->name);
        OPENSSL_free(tmod);
--- a/crypto/hashtable/hashtable.c
+++ b/crypto/hashtable/hashtable.c
@ -230,7 +230,8 @@ HT *ossl_ht_new(HT_CONFIG *conf)
 err:
    CRYPTO_THREAD_lock_free(new->atomic_lock);
    ossl_rcu_lock_free(new->lock);
-    OPENSSL_free(new->md->neighborhood_ptr_to_free);
+    if (new->md != NULL)
+        OPENSSL_free(new->md->neighborhood_ptr_to_free);
    OPENSSL_free(new->md);
    OPENSSL_free(new);
    return NULL;
--- a/crypto/x509/by_store.c
+++ b/crypto/x509/by_store.c
@ -111,14 +111,7 @@ static int by_store_ctrl_ex(X509_LOOKUP *ctx, int cmd, const char *argp,
 {
    switch (cmd) {
    case X509_L_ADD_STORE:
-        /* If no URI is given, use the default cert dir as default URI */
-        if (argp == NULL)
-            argp = ossl_safe_getenv(X509_get_default_cert_dir_env());
-
-        if (argp == NULL)
-            argp = X509_get_default_cert_dir();
-
-        {
+        if (argp != NULL) {
            STACK_OF(OPENSSL_STRING) *uris = X509_LOOKUP_get_method_data(ctx);
            char *data = OPENSSL_strdup(argp);

@ -131,12 +124,15 @@ static int by_store_ctrl_ex(X509_LOOKUP *ctx, int cmd, const char *argp,
            }
            return sk_OPENSSL_STRING_push(uris, data) > 0;
        }
+        /* NOP if no URI is given. */
+        return 1;
    case X509_L_LOAD_STORE:
        /* This is a shortcut for quick loading of specific containers */
        return cache_objects(ctx, argp, NULL, 0, libctx, propq);
+    default:
+        /* Unsupported command */
+        return 0;
    }
-
-    return 0;
 }

 static int by_store_ctrl(X509_LOOKUP *ctx, int cmd,
--- a/crypto/x509/x509_d2.c
+++ b/crypto/x509/x509_d2.c
@ -30,6 +30,11 @@ int X509_STORE_set_default_paths_ex(X509_STORE *ctx, OSSL_LIB_CTX *libctx,
    lookup = X509_STORE_add_lookup(ctx, X509_LOOKUP_store());
    if (lookup == NULL)
        return 0;
+    /*
+     * The NULL URI argument will activate any default URIs (presently none),
+     * DO NOT pass the default CApath or CAfile, they're already handled above,
+     * likely much more efficiently.
+     */
    X509_LOOKUP_add_store_ex(lookup, NULL, libctx, propq);

    /* clear any errors */
--- a/os-dep/Apple/PrivacyInfo.xcprivacy
+++ b/os-dep/Apple/PrivacyInfo.xcprivacy
@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>NSPrivacyAccessedAPITypes</key>
+	<array>
+		<dict>
+			<key>NSPrivacyAccessedAPIType</key>
+			<string>NSPrivacyAccessedAPICategoryFileTimestamp</string>
+			<key>NSPrivacyAccessedAPITypeReasons</key>
+			<array>
+				<string>C617.1</string>
+			</array>
+		</dict>
+	</array>
+	<key>NSPrivacyCollectedDataTypes</key>
+	<array/>
+	<key>NSPrivacyTrackingDomains</key>
+	<array/>
+	<key>NSPrivacyTracking</key>
+	<false/>
+</dict>
+</plist>
--- a/ssl/record/methods/tls_common.c
+++ b/ssl/record/methods/tls_common.c
@ -1914,10 +1914,13 @@ int tls_retry_write_records(OSSL_RECORD_LAYER *rl)
                else
                    ret = OSSL_RECORD_RETURN_SUCCESS;
            } else {
-                if (BIO_should_retry(rl->bio))
+                if (BIO_should_retry(rl->bio)) {
                    ret = OSSL_RECORD_RETURN_RETRY;
-                else
+                } else {
+                    ERR_raise_data(ERR_LIB_SYS, get_last_sys_error(),
+                                   "tls_retry_write_records failure");
                    ret = OSSL_RECORD_RETURN_FATAL;
+                }
            }
        } else {
            RLAYERfatal(rl, SSL_AD_INTERNAL_ERROR, SSL_R_BIO_NOT_SET);
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@ -2603,7 +2603,8 @@ ossl_ssize_t SSL_sendfile(SSL *s, int fd, off_t offset, size_t size, int flags)
            BIO_set_retry_write(sc->wbio);
        else
 #endif
-            ERR_raise(ERR_LIB_SSL, SSL_R_UNINITIALIZED);
+            ERR_raise_data(ERR_LIB_SYS, get_last_sys_error(),
+                           "ktls_sendfile failure");
        return ret;
    }
    sc->rwstate = SSL_NOTHING;
--- a/ssl/statem/extensions_clnt.c
+++ b/ssl/statem/extensions_clnt.c
@ -979,8 +979,12 @@ EXT_RETURN tls_construct_ctos_padding(SSL_CONNECTION *s, WPACKET *pkt,
             * Add the fixed PSK overhead, the identity length and the binder
             * length.
             */
+            int md_size = EVP_MD_get_size(md);
+
+            if (md_size <= 0)
+                return EXT_RETURN_FAIL;
            hlen +=  PSK_PRE_BINDER_OVERHEAD + s->session->ext.ticklen
-                     + EVP_MD_get_size(md);
+                     + md_size;
        }
    }

@ -1019,7 +1023,8 @@ EXT_RETURN tls_construct_ctos_psk(SSL_CONNECTION *s, WPACKET *pkt,
 {
 #ifndef OPENSSL_NO_TLS1_3
    uint32_t agesec, agems = 0;
-    size_t reshashsize = 0, pskhashsize = 0, binderoffset, msglen;
+    size_t binderoffset, msglen;
+    int reshashsize = 0, pskhashsize = 0;
    unsigned char *resbinder = NULL, *pskbinder = NULL, *msgstart = NULL;
    const EVP_MD *handmd = NULL, *mdres = NULL, *mdpsk = NULL;
    int dores = 0;
@ -1115,6 +1120,8 @@ EXT_RETURN tls_construct_ctos_psk(SSL_CONNECTION *s, WPACKET *pkt,
        agems += s->session->ext.tick_age_add;

        reshashsize = EVP_MD_get_size(mdres);
+        if (reshashsize <= 0)
+            goto dopsksess;
        s->ext.tick_identity++;
        dores = 1;
    }
@ -1144,6 +1151,10 @@ EXT_RETURN tls_construct_ctos_psk(SSL_CONNECTION *s, WPACKET *pkt,
        }

        pskhashsize = EVP_MD_get_size(mdpsk);
+        if (pskhashsize <= 0) {
+            SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_R_BAD_PSK);
+            return EXT_RETURN_FAIL;
+        }
    }

    /* Create the extension, but skip over the binder for now */
--- a/ssl/statem/extensions_srvr.c
+++ b/ssl/statem/extensions_srvr.c
@ -1020,7 +1020,8 @@ int tls_parse_ctos_psk(SSL_CONNECTION *s, PACKET *pkt, unsigned int context,
                       X509 *x, size_t chainidx)
 {
    PACKET identities, binders, binder;
-    size_t binderoffset, hashsize;
+    size_t binderoffset;
+    int hashsize;
    SSL_SESSION *sess = NULL;
    unsigned int id, i, ext = 0;
    const EVP_MD *md = NULL;
@ -1221,6 +1222,8 @@ int tls_parse_ctos_psk(SSL_CONNECTION *s, PACKET *pkt, unsigned int context,

    binderoffset = PACKET_data(pkt) - (const unsigned char *)s->init_buf->data;
    hashsize = EVP_MD_get_size(md);
+    if (hashsize <= 0)
+        goto err;

    if (!PACKET_get_length_prefixed_2(pkt, &binders)) {
        SSLfatal(s, SSL_AD_DECODE_ERROR, SSL_R_BAD_EXTENSION);
@ -1234,7 +1237,7 @@ int tls_parse_ctos_psk(SSL_CONNECTION *s, PACKET *pkt, unsigned int context,
        }
    }

-    if (PACKET_remaining(&binder) != hashsize) {
+    if (PACKET_remaining(&binder) != (size_t)hashsize) {
        SSLfatal(s, SSL_AD_DECODE_ERROR, SSL_R_BAD_EXTENSION);
        goto err;
    }
Author	SHA1	Message	Date
Naif	3e93603e5f	Merge `401950944a` into `933f57dfe2`	2024-04-27 06:38:26 +01:00
Neil Horman	933f57dfe2	Raise an error on syscall failure in tls_retry_write_records Record the errno when we get a syscall failure in tls_retry_write_records Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/23723)	2024-04-26 17:10:38 +02:00
Neil Horman	3dcd85139f	Make a failure in ktls_sendfile a syscall error a failure in ktls_sendfile results in an error in ERR_LIB_SSL, but its really a syscall error, since ktls_sendfile just maps to a call to the sendfile syscall. Encode it as such Fixes #23722 Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/23723)	2024-04-26 17:10:34 +02:00
Neil Horman	3059052992	Fix coverity 1596617 Somehow a double free slipped into conf_mod.c, remove it Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Paul Dale <ppzgs1@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24263)	2024-04-26 17:09:06 +02:00
Neil Horman	badda78325	Fix coverity-1596616 Need to add a null check prior to derefencing pointer for free Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Paul Dale <ppzgs1@gmail.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24263)	2024-04-26 17:09:06 +02:00
Takehiko Yokota	bde66e828d	Add an Apple privacy info file for OpenSSL Added PrivacyInfo.xcprivacy to os-dep/Apple/ dir. Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24260)	2024-04-26 14:01:36 +02:00
Jiasheng Jiang	48e3cf25a8	ssl/statem: Replace size_t with int and add the checks Replace the type of variables with int to avoid implicit conversion when it is assigned by EVP_MD_get_size(). Moreover, add the checks to avoid integer overflow. Fixes: `6594189` ("Merge early_data_info extension into early_data") Fixes: `9368f86` ("Add TLSv1.3 client side external PSK support") Fixes: `1053a6e` ("Implement Server side of PSK extension parsing") Signed-off-by: Jiasheng Jiang <jiasheng@purdue.edu> Reviewed-by: Tom Cosgrove <tom.cosgrove@arm.com> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/23937)	2024-04-26 09:28:55 +02:00
Viktor Dukhovni	6d01857040	Avoid duplicate default CApath lookups Fixes #21067 Reviewed-by: Neil Horman <nhorman@openssl.org> Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/24140)	2024-04-26 09:03:44 +02:00
Naif	401950944a	Update README.md The word "stand-alone" has been changed to "standalone" to promote more consistency when using compound adjectives. To better reflect its widespread usage as a single term, "home page" has also been changed to "homepage." To properly identify "Swiss Army" as a proper noun, the expression "swiss army knife" has been modified to "Swiss Army knife." To guarantee appropriate hyphenation in compound adjectives, "Platform-specific" has been standardized to "platform-specific."	2024-04-22 21:25:36 -04:00