Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Auth crash fix #6698

Merged
merged 3 commits into from
Dec 11, 2015
Merged

Auth crash fix #6698

merged 3 commits into from
Dec 11, 2015

Conversation

mathslinux
Copy link
Contributor

No description provided.

@loic-bot
Copy link

SUCCESS: http://jenkins.ceph.dachary.org/job/ceph/9551/

ghost
ghost reviewed Nov 25, 2015
View reviewed changes
src/auth/Crypto.cc
@@ -241,7 +241,6 @@ static int nss_aes_operation(CK_ATTRIBUTE_TYPE op,
ret = PK11_DigestFinal(ectx,
(unsigned char*)out_tmp.c_str()+written, &written2,
out_tmp.length()-written);
PK11_DestroyContext(ectx, PR_TRUE);
if (ret != SECSuccess) {
PK11_DestroyContext(ectx, PR_TRUE);
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice catch ! You could just remove this one instead so there is only one call ?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dachary nop, PK11_DestroyContext() should be called before this function exit.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dachary it's my fault that i misunderstand, you are right, just removing PK11_DestroyContext() is enough. I have just updated pull request.

@ghost ghost self-assigned this Nov 25, 2015
@mathslinux
auth: fix double PK11_DestroyContext() if PK11_DigestFinal() failed
e9e0533 
Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@mathslinux
auth: fix a crash issue due to CryptoHandler::create() failed
a7f520c 
In this case(e.g. user passes wrong key), attempts to call the CryptoKey.ckh will lead to a segfault.

This patch fixes crash issue like following:

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffed10e700 (LWP 25051)]
0x00007ffff59896c6 in CryptoKey::encrypt (this=0x7fffed10d4f0, cct=0x555555829c30, in=..., out=..., error=0x7fffed10d440) at auth/cephx/../Crypto.h:110
110	    return ckh->encrypt(in, out, error);
(gdb) bt
    at auth/cephx/../Crypto.h:110
    at auth/cephx/CephxProtocol.h:464

Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@loic-bot
Copy link

FAILURE: http://jenkins.ceph.dachary.org/job/ceph/9643/

@liewegas
Copy link
Member

liewegas commented Dec 4, 2015

This passed a test run. I'd still like to see a simple test before merging it, though, since this failure/error path is very easy to break later. I think you can put a simple test case in, say, src/test/mon/misc.sh, and verify it by running the script with a ./vstart.sh environment (or via make check).

@mathslinux
tests: make sure no segfault occurs when using some bad keyring
2eb0bf3 
Signed-off-by: Dunrong Huang <riegamaths@gmail.com>
@mathslinux
Copy link
Contributor Author

hi @liewegas , I just add a test to detect the error as you suggested, and verify it in different case, could you have a look at and merge it if there is nothing wrong?

@loic-bot
Copy link

loic-bot commented Dec 7, 2015

SUCCESS: http://jenkins.ceph.dachary.org/job/ceph/9929/

liewegas added a commit that referenced this pull request Dec 11, 2015
@liewegas
Merge pull request #6698 from mathslinux/auth-crash-fix
b3ad2b9 
auth: fix crash when bad keyring is passed

Reviewed-by: Sage Weil <sage@redhat.com>
@liewegas liewegas merged commit b3ad2b9 into ceph:master Dec 11, 2015
@jdurgin
Copy link
Member

jdurgin commented Dec 11, 2015

@mtanski can you make a bug for backporting it? (reference this pr, set the status to "Pending Backport" and the backport field to infernalis (and maybe hammer too))

@smithfarm
Copy link
Contributor

@jdurgin: http://tracker.ceph.com/issues/14958

@snyk-bot snyk-bot mentioned this pull request Mar 5, 2020
Open
@snyk-bot snyk-bot mentioned this pull request Oct 20, 2020
Open
@snyk-bot snyk-bot mentioned this pull request Apr 29, 2021
Open
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
bug-fix common
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@mathslinux @loic-bot @liewegas @jdurgin @smithfarm @mtanski