{Hash, Hmac}.digest and sign hard crash when supplied 'ucs2' encoding #9817

deian · 2016-11-27T22:55:08Z

Version: 6.4.0 - 8.0.0-pre
Platform:
Subsystem:

Several hash functions hard crash when supplied 'ucs2' encodings.

Snippet for Hash:

    crypto.createHash('sha256').digest('ucs2');

Snippet for Hmac:

    crypto.createHmac('sha256', 'w00t').digest('ucs2');

This is because for both the binding layer functions end up calling
StringBytes::Encode with UCS2, which has a hard check:

  CHECK_NE(encoding, UCS2); // <- this can be controlled from JS
  CHECK_LE(buflen, Buffer::kMaxLength);

The Sign::SignFinal binding function does this too, but the js wrapper always
calls it with the encoding set to null. So you'd have to call handle directly
to crash:

    const private_key = '-----BEGIN EC PRIVATE KEY-----\n' +
      'MHcCAQEEIF+jnWY1D5kbVYDNvxxo/Y+ku2uJPDwS0r/VuPZQrjjVoAoGCCqGSM49\n' +
      'AwEHoUQDQgAEurOxfSxmqIRYzJVagdZfMMSjRNNhB8i3mXyIMq704m2m52FdfKZ2\n' +
      'pQhByd5eyj3lgZ7m7jbchtdgyOF8Io/1ng==\n' +
      '-----END EC PRIVATE KEY-----\n';
    crypto.createSign('RSA-SHA256')._handle.sign(crypto._toBuf(private_key), 'ucs2');

I'm not sure if this was intentional for sign.sign() (to be always called with
null encoding), but I suspect not.

+@mlfbrown for joint work.

The text was updated successfully, but these errors were encountered:

Throw `Error`s instead of hard crashing when the `.digest()` output encoding is UTF-16. Fixes: nodejs#9817

Throw `Error`s instead of hard crashing when the `.digest()` output encoding is UTF-16. Fixes: nodejs#9817 PR-URL: nodejs#12752 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Refael Ackermann <refack@gmail.com> Reviewed-By: Gibson Fahnestock <gibfahn@gmail.com>

Throw `Error`s instead of hard crashing when the `.digest()` output encoding is UTF-16. Fixes: #9817 PR-URL: #12752 Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Refael Ackermann <refack@gmail.com> Reviewed-By: Gibson Fahnestock <gibfahn@gmail.com>

mscdex added the crypto Issues and PRs related to the crypto subsystem. label Nov 27, 2016

deian mentioned this issue Nov 28, 2016

Crypto Hashm/Hmac digest segfault on bad input #9819

Closed

addaleax added a commit to addaleax/node that referenced this issue Apr 29, 2017

crypto: throw proper errors if out enc is UTF-16

95ed40b

Throw `Error`s instead of hard crashing when the `.digest()` output encoding is UTF-16. Fixes: nodejs#9817

addaleax mentioned this issue Apr 29, 2017

crypto: throw proper errors if out enc is UTF-16 #12752

Closed

3 tasks

addaleax closed this as completed in 6c2daf0 May 3, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

{Hash, Hmac}.digest and sign hard crash when supplied 'ucs2' encoding #9817

{Hash, Hmac}.digest and sign hard crash when supplied 'ucs2' encoding #9817

deian commented Nov 27, 2016

{Hash, Hmac}.digest and sign hard crash when supplied 'ucs2' encoding #9817

{Hash, Hmac}.digest and sign hard crash when supplied 'ucs2' encoding #9817

Comments

deian commented Nov 27, 2016