Check curve_name for null to avoid crash

Message ID	20240227235704.48386-1-bob.wolff68@gmail.com
State	Accepted
Commit	9522956605205d23fe99142547ca3227574d418a
Delegated to:	Tom Rini
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: Bob Wolff <bob.wolff68@gmail.com> To: u-boot@lists.denx.de Cc: seanga2@gmail.com, pbrobinson@gmail.com, Bob Wolff <bob.wolff68@gmail.com>, Tom Rini <trini@konsulko.com> Subject: [PATCH] Check curve_name for null to avoid crash Date: Tue, 27 Feb 2024 15:57:03 -0800 Message-Id: <20240227235704.48386-1-bob.wolff68@gmail.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: list Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	Check curve_name for null to avoid crash \| expand Check curve_name for null to avoid crash

Message ID

20240227235704.48386-1-bob.wolff68@gmail.com

State

Accepted

Commit

9522956605205d23fe99142547ca3227574d418a

Delegated to:

Tom Rini

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@legolas.ozlabs.org
Authentication-Results: legolas.ozlabs.org;
	dkim=pass (2048-bit key;
 unprotected) header.d=gmail.com header.i=@gmail.com header.a=rsa-sha256
 header.s=20230601 header.b=b1Ly9Idn;
	dkim-atps=neutral
Authentication-Results: legolas.ozlabs.org;
 spf=pass (sender SPF authorized) smtp.mailfrom=lists.denx.de
 (client-ip=2a01:238:438b:c500:173d:9f52:ddab:ee01; helo=phobos.denx.de;
 envelope-from=u-boot-bounces@lists.denx.de; receiver=patchwork.ozlabs.org)
Received: from phobos.denx.de (phobos.denx.de
 [IPv6:2a01:238:438b:c500:173d:9f52:ddab:ee01])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (secp384r1) server-digest SHA384)
	(No client certificate requested)
	by legolas.ozlabs.org (Postfix) with ESMTPS id 4Tl19C2r6Pz23d3
	for <incoming@patchwork.ozlabs.org>; Wed, 28 Feb 2024 15:10:23 +1100 (AEDT)
Received: from h2850616.stratoserver.net (localhost [IPv6:::1])
	by phobos.denx.de (Postfix) with ESMTP id 1928D88031;
	Wed, 28 Feb 2024 05:09:51 +0100 (CET)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=gmail.com
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de
Authentication-Results: phobos.denx.de;
	dkim=pass (2048-bit key;
 unprotected) header.d=gmail.com header.i=@gmail.com header.b="b1Ly9Idn";
	dkim-atps=neutral
Received: by phobos.denx.de (Postfix, from userid 109)
 id 3BE2D88019; Wed, 28 Feb 2024 00:57:27 +0100 (CET)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,FREEMAIL_ENVFROM_END_DIGIT,
 FREEMAIL_FROM,SPF_HELO_NONE,SPF_PASS,T_SCC_BODY_TEXT_LINE
 autolearn=ham autolearn_force=no version=3.4.2
Received: from mail-pg1-x531.google.com (mail-pg1-x531.google.com
 [IPv6:2607:f8b0:4864:20::531])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits))
 (No client certificate requested)
 by phobos.denx.de (Postfix) with ESMTPS id D527487FE9
 for <u-boot@lists.denx.de>; Wed, 28 Feb 2024 00:57:24 +0100 (CET)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=gmail.com
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=bob.wolff68@gmail.com
Received: by mail-pg1-x531.google.com with SMTP id
 41be03b00d2f7-53fbf2c42bfso4500051a12.3
 for <u-boot@lists.denx.de>; Tue, 27 Feb 2024 15:57:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=gmail.com; s=20230601; t=1709078243; x=1709683043; darn=lists.denx.de;
 h=content-transfer-encoding:mime-version:message-id:date:subject:cc
 :to:from:from:to:cc:subject:date:message-id:reply-to;
 bh=LMLlyxla8Ad5TwJfnLW6WYTzIty0z6SmsbL54dVR91s=;
 b=b1Ly9IdnQSLwVogIyIxKQrQlvSoLMu9uflA6esYLYT63mKKh4yi17qliyTQIKSLOKn
 63h9noUjVLNJpvjmJ3k2S9wcGUXgOYd9TxyJPCCrMX/8vTFtcaP22hOX0v1uZN8Qwahz
 66p00H4/vNabCeg1XJOnTpJsrtDV1NDHk4qXCYF+B9yKFGpNdyjXmksTJbYFdeMmcOZz
 Om5HNqPM6JOdKW94HcBvJHPEaMqIuyYF/e+u+fzXQ9sjf6XSkJL9yvph5auHgk9T1idv
 i3+OywA9Hbxf+wc5BFvSie4pwTPCTkcOV0sVDvvVehEnSTw7SAw5xcbspUoHmyFxDheL
 Qb6g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20230601; t=1709078243; x=1709683043;
 h=content-transfer-encoding:mime-version:message-id:date:subject:cc
 :to:from:x-gm-message-state:from:to:cc:subject:date:message-id
 :reply-to;
 bh=LMLlyxla8Ad5TwJfnLW6WYTzIty0z6SmsbL54dVR91s=;
 b=R1sgWdNAFV+BeCWd+89erT+EqTgGzqGvsxu35/+wsz6aztg7LW8gqLWItpqYhpMwPJ
 dVSUUJ0Aj8wobH1vRphnSVzNXyI8kx5CxZLmLBm7D8DOH2NAxKrITLJot9rc/nFZUsdK
 JvS78K/z2zg8ns20YV1FVLbxkix29DCtrNhFMkcoLN8KOaWAZPQ525V3fJqDaO921ROg
 16WlSrLmIMLmhXXg9wEhYe+TB0eqmmY7kd8qspHXoOYPyBgWKkQYCzS4pL2FobGYiGfS
 aPz6hLY6L8NROsfoTyfCxQHS6T9Ui6/WKoNqukmNGrkQylSRc9RqkKql7PvrR6CYzRue
 9A+Q==
X-Gm-Message-State: AOJu0YyQG7xckvrTbAtSx5KNYYVBFHC/qPUMuhrzhNx6ne0WN2jFNM+2
 8nXicz/4lNf3AmQRxi7NhjvfmJwDu4LTPYLG991CrCSINQ7Kywt18wE6jAhb
X-Google-Smtp-Source: 
 AGHT+IGfKa+PfOAkjQxdDLcsc2lEY59fRdVYY3uSh1kfrX3b6goNvht/Qhg4NqDXkxi2+PUFVFG6uw==
X-Received: by 2002:a05:6a20:9f4a:b0:1a0:ee90:7790 with SMTP id
 ml10-20020a056a209f4a00b001a0ee907790mr4501226pzb.48.1709078242618;
 Tue, 27 Feb 2024 15:57:22 -0800 (PST)
Received: from localhost.localdomain ([12.125.190.90])
 by smtp.gmail.com with ESMTPSA id
 n6-20020a17090a2c8600b0029981c0d5c5sm145917pjd.19.2024.02.27.15.57.21
 (version=TLS1_3 cipher=TLS_CHACHA20_POLY1305_SHA256 bits=256/256);
 Tue, 27 Feb 2024 15:57:22 -0800 (PST)
From: Bob Wolff <bob.wolff68@gmail.com>
To: u-boot@lists.denx.de
Cc: seanga2@gmail.com, pbrobinson@gmail.com,
 Bob Wolff <bob.wolff68@gmail.com>,
 Tom Rini <trini@konsulko.com>
Subject: [PATCH] Check curve_name for null to avoid crash
Date: Tue, 27 Feb 2024 15:57:03 -0800
Message-Id: <20240227235704.48386-1-bob.wolff68@gmail.com>
X-Mailer: git-send-email 2.39.3 (Apple Git-145)
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Mailman-Approved-At: Wed, 28 Feb 2024 05:09:50 +0100
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <https://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=subscribe>
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
X-Virus-Scanned: clamav-milter 0.103.8 at phobos.denx.de
X-Virus-Status: Clean

Series

Check curve_name for null to avoid crash | expand

Commit Message

Bob Wolff Feb. 27, 2024, 11:57 p.m. UTC

If mixed rsa and ecdsa keys are specified in dtsi, an rsa key can be sent
into the ecdsa verify. Without the ecdsa,curve property, this function will
crash due to lack of checking the null pointer return.

Signed-off-by: Bob Wolff <bob.wolff68@gmail.com>
---

 lib/ecdsa/ecdsa-verify.c | 5 +++++
 1 file changed, 5 insertions(+)

Comments

Bob Wolff March 6, 2024, 10:55 p.m. UTC | #1

Hey all,
I think I addressed the nit of the missing blank line in my last email on
this thread. Wondering if there's more action to be had on my part or if
this just gets accepted etc.

Thanks!
Bob Wolff

On Tue, Feb 27, 2024 at 3:57 PM Bob Wolff <bob.wolff68@gmail.com> wrote:

> If mixed rsa and ecdsa keys are specified in dtsi, an rsa key can be sent
> into the ecdsa verify. Without the ecdsa,curve property, this function will
> crash due to lack of checking the null pointer return.
>
> Signed-off-by: Bob Wolff <bob.wolff68@gmail.com>
> ---
>
>  lib/ecdsa/ecdsa-verify.c | 5 +++++
>  1 file changed, 5 insertions(+)
>
> diff --git a/lib/ecdsa/ecdsa-verify.c b/lib/ecdsa/ecdsa-verify.c
> index 0601700c4f..4d1835b598 100644
> --- a/lib/ecdsa/ecdsa-verify.c
> +++ b/lib/ecdsa/ecdsa-verify.c
> @@ -31,6 +31,11 @@ static int fdt_get_key(struct ecdsa_public_key *key,
> const void *fdt, int node)
>         int x_len, y_len;
>
>         key->curve_name = fdt_getprop(fdt, node, "ecdsa,curve", NULL);
> +       if (!key->curve_name) {
> +               debug("Error: ecdsa cannot get 'ecdsa,curve' property from
> key. Likely not an ecdsa key.\n");
> +               return -ENOMSG;
> +       }
> +
>         key->size_bits = ecdsa_key_size(key->curve_name);
>         if (key->size_bits == 0) {
>                 debug("Unknown ECDSA curve '%s'", key->curve_name);
> --
> 2.39.3 (Apple Git-145)
>
>

Tom Rini March 7, 2024, 5:12 p.m. UTC | #2

On Tue, Feb 27, 2024 at 03:57:03PM -0800, Bob Wolff wrote:

> If mixed rsa and ecdsa keys are specified in dtsi, an rsa key can be sent
> into the ecdsa verify. Without the ecdsa,curve property, this function will
> crash due to lack of checking the null pointer return.
> 
> Signed-off-by: Bob Wolff <bob.wolff68@gmail.com>

Applied to u-boot/next, thanks!

diff --git a/lib/ecdsa/ecdsa-verify.c b/lib/ecdsa/ecdsa-verify.c
index 0601700c4f..4d1835b598 100644
--- a/lib/ecdsa/ecdsa-verify.c
+++ b/lib/ecdsa/ecdsa-verify.c
@@ -31,6 +31,11 @@  static int fdt_get_key(struct ecdsa_public_key *key, const void *fdt, int node)
 	int x_len, y_len;
 
 	key->curve_name = fdt_getprop(fdt, node, "ecdsa,curve", NULL);
+	if (!key->curve_name) {
+		debug("Error: ecdsa cannot get 'ecdsa,curve' property from key. Likely not an ecdsa key.\n");
+		return -ENOMSG;
+	}
+
 	key->size_bits = ecdsa_key_size(key->curve_name);
 	if (key->size_bits == 0) {
 		debug("Unknown ECDSA curve '%s'", key->curve_name);

Check curve_name for null to avoid crash

Commit Message

Comments

Patch