[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p

To: undisclosed-recipients: ;
Subject: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 20 Aug 2018 21:00:20 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 20 Aug 2018 17:00:29 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#27226: Crash in tortls/cert_matches_key with openssl 1.0.2p
------------------------------+--------------------------------
     Reporter:  nickm         |      Owner:  (none)
         Type:  defect        |     Status:  new
     Priority:  High          |  Milestone:  Tor: 0.3.5.x-final
    Component:  Core Tor/Tor  |    Version:
     Severity:  Normal        |   Keywords:  034-must 029-
Actual Points:                |  Parent ID:
       Points:                |   Reviewer:
      Sponsor:                |
------------------------------+--------------------------------
 Our unit test, `tortls/cert_matches_key`, does some questionable stuff
 that is not compatible with openssl 1.0.2p.

 Namely, it calls `EVP_PKEY_asn1_new(999, 0, NULL, NULL)`, which now
 returns NULL.

 Looking at the test, I'm not sure what it's trying to do with this -- it's
 making a bogus public key method with a "compare" function that will
 always return "1".  Later, it's using this thing to construct bogus PKEY
 objects.

 This, like a lot of other tortls.c tests, is way too tightly coupled to
 openssl internals.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/27226>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #23588 [Core Tor/Tor]: Write fascist_firewall_choose_address_ls() and use it in hs_get_extend_info_from_lspecs()
Next by Author: [tor-bugs] #27185 [Core Tor]: test/test.c and lround() prototype
Previous by thread: [tor-bugs] #27225 [Core Tor/Tor]: Perform fewer allocations in summarize_protocol_flags()
Next by thread: Re: [tor-bugs] #27226 [Core Tor/Tor]: Crash in tortls/cert_matches_key with openssl 1.0.2p
Index(es):
- Author
- Thread