Google Git
Sign in
pigweed / third_party / boringssl / boringssl / 871704b873e356b9eee354b70bf0f11cf234a1f7^! / .
commit871704b873e356b9eee354b70bf0f11cf234a1f7[log] [tgz]
authorDavid Benjamin <davidben@google.com>Thu Dec 29 22:02:28 2022 -0500
committerBoringssl LUCI CQ <boringssl-scoped@luci-project-accounts.iam.gserviceaccount.com>Tue Jan 17 22:18:36 2023 +0000
treeacadd9bb3af74a735bbb0f83d68d732b676960d7
parent0308131c872054991ba07557270f63c0e1ef8741 [diff]
Fix crash if '@section' is used with no CONF.

Our NCONF_get_section doesn't silently handle NULLs, so add a check to
the caller.

Change-Id: I133d10c7a5dec22469a80b78cb45f479f128ada2
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/56106
Reviewed-by: Bob Beck <bbe@google.com>
Commit-Queue: David Benjamin <davidben@google.com>

diff --git a/crypto/x509/x509_test.cc b/crypto/x509/x509_test.cc
index eb26611..75ad864 100644
--- a/crypto/x509/x509_test.cc
+++ b/crypto/x509/x509_test.cc

@@ -5542,9 +5542,8 @@
        {0x30, 0x0f, 0x06, 0x03, 0x55, 0x1d, 0x13, 0x01, 0x01, 0xff, 0x04, 0x05,
         0x30, 0x03, 0x01, 0x01, 0xff}},
 
-      // TODO(davidben): Enable this test. There is a missing NULL check, so it
-      // crashes right now.
-      // {"basicConstraints", "critical,@section", nullptr, {}},
+      // If no config is provided, this should fail.
+      {"basicConstraints", "critical,@section", nullptr, {}},
 
       // The "DER:" prefix just specifies an arbitrary byte string. Colons
       // separators are ignored.

diff --git a/crypto/x509v3/v3_conf.c b/crypto/x509v3/v3_conf.c
index b4cff9d..922291d 100644
--- a/crypto/x509v3/v3_conf.c
+++ b/crypto/x509v3/v3_conf.c

@@ -136,6 +136,10 @@
   // Now get internal extension representation based on type
   if (method->v2i) {
     if (*value == '@') {
+      if (conf == NULL) {
+        OPENSSL_PUT_ERROR(X509V3, X509V3_R_NO_CONFIG_DATABASE);
+        return NULL;
+      }
       nval = NCONF_get_section(conf, value + 1);
     } else {
       nval_owned = X509V3_parse_list(value);

diff --git a/include/openssl/x509v3.h b/include/openssl/x509v3.h
index ca6e362..affbc76 100644
--- a/include/openssl/x509v3.h
+++ b/include/openssl/x509v3.h

@@ -628,10 +628,10 @@
 // value specified by |value|. It returns a newly-allocated |X509_EXTENSION|
 // object on success, or NULL on error. |conf| and |ctx| specify additional
 // information referenced by some formats. |conf| may be NULL, in which case
-// features which use it will be disabled or crash.
+// features which use it will be disabled.
 //
-// TODO(davidben): Fix the crashes. Also allow |ctx| to be NULL. One caller
-// seems to do it, even though it doesn't really work.
+// TODO(davidben): Allow |ctx| to be NULL. One caller seems to do it, even
+// though it doesn't really work.
 OPENSSL_EXPORT X509_EXTENSION *X509V3_EXT_nconf(const CONF *conf,
                                                 const X509V3_CTX *ctx,
                                                 const char *name,