Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Auth crash fix #6698

Merged
merged 3 commits into from
Dec 11, 2015
Merged

Auth crash fix #6698

merged 3 commits into from
Dec 11, 2015

Conversation

mathslinux
Copy link
Contributor

No description provided.

@loic-bot
Copy link

SUCCESS: http://jenkins.ceph.dachary.org/job/ceph/9551/

ghost
ghost reviewed Nov 25, 2015
View reviewed changes
src/auth/Crypto.cc
@@ -241,7 +241,6 @@ static int nss_aes_operation(CK_ATTRIBUTE_TYPE op,
ret = PK11_DigestFinal(ectx,
(unsigned char*)out_tmp.c_str()+written, &written2,
out_tmp.length()-written);
PK11_DestroyContext(ectx, PR_TRUE);
if (ret != SECSuccess) {
PK11_DestroyContext(ectx, PR_TRUE);
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice catch ! You could just remove this one instead so there is only one call ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dachary nop, PK11_DestroyContext() should be called before this function exit.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dachary it's my fault that i misunderstand, you are right, just removing PK11_DestroyContext() is enough. I have just updated pull request.

@ghost ghost self-assigned this Nov 25, 2015
@mathslinux
auth: fix double PK11_DestroyContext() if PK11_DigestFinal() failed
e9e0533 
Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@mathslinux
auth: fix a crash issue due to CryptoHandler::create() failed
a7f520c 
In this case(e.g. user passes wrong key), attempts to call the CryptoKey.ckh will lead to a segfault.

This patch fixes crash issue like following:

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffed10e700 (LWP 25051)]
0x00007ffff59896c6 in CryptoKey::encrypt (this=0x7fffed10d4f0, cct=0x555555829c30, in=..., out=..., error=0x7fffed10d440) at auth/cephx/../Crypto.h:110
110	    return ckh->encrypt(in, out, error);
(gdb) bt
    at auth/cephx/../Crypto.h:110
    at auth/cephx/CephxProtocol.h:464

Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@loic-bot
Copy link

FAILURE: http://jenkins.ceph.dachary.org/job/ceph/9643/

@liewegas
Copy link
Member

liewegas commented Dec 4, 2015

This passed a test run. I'd still like to see a simple test before merging it, though, since this failure/error path is very easy to break later. I think you can put a simple test case in, say, src/test/mon/misc.sh, and verify it by running the script with a ./vstart.sh environment (or via make check).

@mathslinux
tests: make sure no segfault occurs when using some bad keyring
2eb0bf3 
Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@mathslinux
Copy link
Contributor Author

hi @liewegas , I just add a test to detect the error as you suggested, and verify it in different case, could you have a look at and merge it if there is nothing wrong?

@loic-bot
Copy link

loic-bot commented Dec 7, 2015

SUCCESS: http://jenkins.ceph.dachary.org/job/ceph/9929/

liewegas added a commit that referenced this pull request Dec 11, 2015
@liewegas
Merge pull request #6698 from mathslinux/auth-crash-fix
b3ad2b9 
auth: fix crash when bad keyring is passed

Reviewed-by: Sage Weil <sage@redhat.com>
@liewegas liewegas merged commit b3ad2b9 into ceph:master Dec 11, 2015
@jdurgin
Copy link
Member

jdurgin commented Dec 11, 2015

@mtanski can you make a bug for backporting it? (reference this pr, set the status to "Pending Backport" and the backport field to infernalis (and maybe hammer too))

@smithfarm
Copy link
Contributor

@jdurgin: http://tracker.ceph.com/issues/14958

@snyk-bot snyk-bot mentioned this pull request Mar 5, 2020
Open
@snyk-bot snyk-bot mentioned this pull request Oct 20, 2020
Open
@snyk-bot snyk-bot mentioned this pull request Apr 29, 2021
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
bug-fix common
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@mathslinux @loic-bot @liewegas @jdurgin @smithfarm @mtanski