DH_check_pub_key() should not fail when setting result code

author Tomas Mraz <tomas@openssl.org>

Thu, 5 Oct 2023 09:11:16 +0000 (11:11 +0200)

committer Tomas Mraz <tomas@openssl.org>

Wed, 11 Oct 2023 14:22:27 +0000 (16:22 +0200)
author Tomas Mraz <tomas@openssl.org>
Thu, 5 Oct 2023 09:11:16 +0000 (11:11 +0200)
committer Tomas Mraz <tomas@openssl.org>
Wed, 11 Oct 2023 14:22:27 +0000 (16:22 +0200)
diff --git a/crypto/dh/dh_check.c b/crypto/dh/dh_check.c

index f4173e21371e01ef03f990a83e764b5141693f83..7ba2beae7fd6b9be1f19c86a002524d3fe66f403 100644 (file)
--- a/crypto/dh/dh_check.c
+++ b/crypto/dh/dh_check.c
@@ -259,7 +259,8 @@ int DH_check_pub_key(const DH *dh, const BIGNUM *pub_key, int *ret)
   */
  int ossl_dh_check_pub_key_partial(const DH *dh, const BIGNUM *pub_key, int *ret)
  {
-    return ossl_ffc_validate_public_key_partial(&dh->params, pub_key, ret);
+    return ossl_ffc_validate_public_key_partial(&dh->params, pub_key, ret)
+           && *ret == 0;
  }
  
  int ossl_dh_check_priv_key(const DH *dh, const BIGNUM *priv_key, int *ret)
diff --git a/crypto/dsa/dsa_check.c b/crypto/dsa/dsa_check.c

index 7ee914a477ecea60ffa548e20bcea00b83589a29..ec3534d35c2c6c0c1b988b4ace6de0b13886895e 100644 (file)
--- a/crypto/dsa/dsa_check.c
+++ b/crypto/dsa/dsa_check.c
@@ -39,7 +39,8 @@ int ossl_dsa_check_params(const DSA *dsa, int checktype, int *ret)
   */
  int ossl_dsa_check_pub_key(const DSA *dsa, const BIGNUM *pub_key, int *ret)
  {
-    return ossl_ffc_validate_public_key(&dsa->params, pub_key, ret);
+    return ossl_ffc_validate_public_key(&dsa->params, pub_key, ret)
+           && *ret == 0;
  }
  
  /*
@@ -49,7 +50,8 @@ int ossl_dsa_check_pub_key(const DSA *dsa, const BIGNUM *pub_key, int *ret)
   */
  int ossl_dsa_check_pub_key_partial(const DSA *dsa, const BIGNUM *pub_key, int *ret)
  {
-    return ossl_ffc_validate_public_key_partial(&dsa->params, pub_key, ret);
+    return ossl_ffc_validate_public_key_partial(&dsa->params, pub_key, ret)
+           && *ret == 0;
  }
  
  int ossl_dsa_check_priv_key(const DSA *dsa, const BIGNUM *priv_key, int *ret)
diff --git a/crypto/ffc/ffc_key_validate.c b/crypto/ffc/ffc_key_validate.c

index 342789621d6df1a6758a875490aec6dd7b2da4af..a4a2a58e9a7fd94d3d6d3407f96d5327b3022f1d 100644 (file)
--- a/crypto/ffc/ffc_key_validate.c
+++ b/crypto/ffc/ffc_key_validate.c
@@ -26,7 +26,7 @@ int ossl_ffc_validate_public_key_partial(const FFC_PARAMS *params,
      *ret = 0;
      if (params == NULL || pub_key == NULL || params->p == NULL) {
          *ret = FFC_ERROR_PASSED_NULL_PARAM;
-        return 0;
+        return 1;
      }
  
      ctx = BN_CTX_new_ex(NULL);
@@ -39,18 +39,14 @@ int ossl_ffc_validate_public_key_partial(const FFC_PARAMS *params,
      if (tmp == NULL
          || !BN_set_word(tmp, 1))
          goto err;
-    if (BN_cmp(pub_key, tmp) <= 0) {
+    if (BN_cmp(pub_key, tmp) <= 0)
          *ret |= FFC_ERROR_PUBKEY_TOO_SMALL;
-        goto err;
-    }
      /* Step(1): Verify pub_key <=  p-2 */
      if (BN_copy(tmp, params->p) == NULL
          || !BN_sub_word(tmp, 1))
          goto err;
-    if (BN_cmp(pub_key, tmp) >= 0) {
+    if (BN_cmp(pub_key, tmp) >= 0)
          *ret |= FFC_ERROR_PUBKEY_TOO_LARGE;
-        goto err;
-    }
      ok = 1;
   err:
      if (ctx != NULL) {
@@ -73,7 +69,7 @@ int ossl_ffc_validate_public_key(const FFC_PARAMS *params,
      if (!ossl_ffc_validate_public_key_partial(params, pub_key, ret))
          return 0;
  
-    if (params->q != NULL) {
+    if (*ret == 0 && params->q != NULL) {
          ctx = BN_CTX_new_ex(NULL);
          if (ctx == NULL)
              goto err;
@@ -84,10 +80,8 @@ int ossl_ffc_validate_public_key(const FFC_PARAMS *params,
          if (tmp == NULL
              || !BN_mod_exp(tmp, pub_key, params->q, params->p, ctx))
              goto err;
-        if (!BN_is_one(tmp)) {
+        if (!BN_is_one(tmp))
              *ret |= FFC_ERROR_PUBKEY_INVALID;
-            goto err;
-        }
      }
  
      ok = 1;
diff --git a/providers/implementations/keymgmt/dh_kmgmt.c b/providers/implementations/keymgmt/dh_kmgmt.c

index 1d6b1f3730277bc0a1ad49338defdb1e57a5f5f5..795a3f2fab0b734d01783abb96b803f8867ee018 100644 (file)
--- a/providers/implementations/keymgmt/dh_kmgmt.c
+++ b/providers/implementations/keymgmt/dh_kmgmt.c
@@ -392,7 +392,7 @@ static int dh_validate_public(const DH *dh, int checktype)
          && ossl_dh_is_named_safe_prime_group(dh))
          return ossl_dh_check_pub_key_partial(dh, pub_key, &res);
  
-    return DH_check_pub_key(dh, pub_key, &res);
+    return DH_check_pub_key_ex(dh, pub_key);
  }
  
  static int dh_validate_private(const DH *dh)
diff --git a/test/ffc_internal_test.c b/test/ffc_internal_test.c

index 0332e777c0aec39727cc9de3d316e952c8c0799a..c56d1d0e9982e5566ae8010d4245f519dfd57cc2 100644 (file)
--- a/test/ffc_internal_test.c
+++ b/test/ffc_internal_test.c
@@ -455,22 +455,20 @@ static int ffc_public_validate_test(void)
      if (!TEST_true(BN_set_word(pub, 1)))
          goto err;
      BN_set_negative(pub, 1);
-    /* Fail if public key is negative */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if public key is negative */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_SMALL, res))
          goto err;
      if (!TEST_true(BN_set_word(pub, 0)))
          goto err;
-    if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_SMALL, res))
-        goto err;
-    /* Fail if public key is zero */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if public key is zero */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_SMALL, res))
          goto err;
-    /* Fail if public key is 1 */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, BN_value_one(), &res)))
+    /* Check must succeed but set res if public key is 1 */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, BN_value_one(), &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_SMALL, res))
          goto err;
@@ -482,24 +480,24 @@ static int ffc_public_validate_test(void)
  
      if (!TEST_ptr(BN_copy(pub, params->p)))
          goto err;
-    /* Fail if public key = p */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if public key = p */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_LARGE, res))
          goto err;
  
      if (!TEST_true(BN_sub_word(pub, 1)))
          goto err;
-    /* Fail if public key = p - 1 */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if public key = p - 1 */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_TOO_LARGE, res))
          goto err;
  
      if (!TEST_true(BN_sub_word(pub, 1)))
          goto err;
-    /* Fail if public key is not related to p & q */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if public key is not related to p & q */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PUBKEY_INVALID, res))
          goto err;
@@ -510,14 +508,14 @@ static int ffc_public_validate_test(void)
      if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
  
-    /* Fail if params is NULL */
-    if (!TEST_false(ossl_ffc_validate_public_key(NULL, pub, &res)))
+    /* Check must succeed but set res if params is NULL */
+    if (!TEST_true(ossl_ffc_validate_public_key(NULL, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PASSED_NULL_PARAM, res))
          goto err;
      res = -1;
-    /* Fail if pubkey is NULL */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, NULL, &res)))
+    /* Check must succeed but set res if pubkey is NULL */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, NULL, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PASSED_NULL_PARAM, res))
          goto err;
@@ -525,8 +523,8 @@ static int ffc_public_validate_test(void)
  
      BN_free(params->p);
      params->p = NULL;
-    /* Fail if params->p is NULL */
-    if (!TEST_false(ossl_ffc_validate_public_key(params, pub, &res)))
+    /* Check must succeed but set res if params->p is NULL */
+    if (!TEST_true(ossl_ffc_validate_public_key(params, pub, &res)))
          goto err;
      if (!TEST_int_eq(FFC_ERROR_PASSED_NULL_PARAM, res))
          goto err;
author	Tomas Mraz <tomas@openssl.org>
	Thu, 5 Oct 2023 09:11:16 +0000 (11:11 +0200)
committer	Tomas Mraz <tomas@openssl.org>
	Wed, 11 Oct 2023 14:22:27 +0000 (16:22 +0200)
crypto/dh/dh_check.c		patch \| blob \| blame \| history
crypto/dsa/dsa_check.c		patch \| blob \| blame \| history
crypto/ffc/ffc_key_validate.c		patch \| blob \| blame \| history
providers/implementations/keymgmt/dh_kmgmt.c		patch \| blob \| blame \| history
test/ffc_internal_test.c		patch \| blob \| blame \| history