Bug #20168526 YASSL: CORRUPT SSL-KEY CRASHES CLIENT

Affects at least 5.6 and 5.7. In customer case, the "client" happened to be a replication slave, therefore his server crashed. Bug-fix: The bug was in yassl. Todd Ouska has provided us with the patch. (cherry picked from commit 42ffa91aad898b02f0793b669ffd04f5c178ce39)
author: Robert Golebiowski <robert.golebiowski@oracle.com> 2015-03-20 15:05:59 +0100
committer: Robert Golebiowski <robert.golebiowski@oracle.com> 2015-07-08 11:59:27 +0200
commit: c9685a78c3960f5822e42e0dc847c72a46528af5 (patch)
tree: e1fd7cdd4704e0610bf8849e703d86ef5d6c7e2f /extra/yassl/src/ssl.cpp
parent: bf681d6bb341411a8b17abeda8e723368545d48d (diff)
download: mariadb-git-c9685a78c3960f5822e42e0dc847c72a46528af5.tar.gz
1 files changed, 28 insertions, 1 deletions
diff --git a/extra/yassl/src/ssl.cpp b/extra/yassl/src/ssl.cpp
index a47b175e635..845b35bac8b 100644
--- a/extra/yassl/src/ssl.cpp
+++ b/extra/yassl/src/ssl.cpp
@@ -37,6 +37,8 @@
 #include "file.hpp"             // for TaoCrypt Source
 #include "coding.hpp"           // HexDecoder
 #include "helpers.hpp"          // for placement new hack
+#include "rsa.hpp"              // for TaoCrypt RSA key decode
+#include "dsa.hpp"              // for TaoCrypt DSA key decode
 #include <stdio.h>
 
 #ifdef _WIN32
@@ -54,6 +56,8 @@ namespace yaSSL {
 
 int read_file(SSL_CTX* ctx, const char* file, int format, CertType type)
 {
+    int ret = SSL_SUCCESS;
+
     if (format != SSL_FILETYPE_ASN1 && format != SSL_FILETYPE_PEM)
         return SSL_BAD_FILETYPE;
 
@@ -141,8 +145,31 @@ int read_file(SSL_CTX* ctx, const char* file, int format, CertType type)
             }
         }
     }
+
+    if (type == PrivateKey && ctx->privateKey_) {
+        // see if key is valid early
+        TaoCrypt::Source rsaSource(ctx->privateKey_->get_buffer(),
+                                   ctx->privateKey_->get_length());
+        TaoCrypt::RSA_PrivateKey rsaKey;
+        rsaKey.Initialize(rsaSource);
+
+        if (rsaSource.GetError().What()) {
+            // rsa failed see if DSA works
+
+            TaoCrypt::Source dsaSource(ctx->privateKey_->get_buffer(),
+                                       ctx->privateKey_->get_length());
+            TaoCrypt::DSA_PrivateKey dsaKey;
+            dsaKey.Initialize(dsaSource);
+
+            if (rsaSource.GetError().What()) {
+                // neither worked
+                ret = SSL_FAILURE;
+            }
+        }
+    }
+
     fclose(input);
-    return SSL_SUCCESS;
+    return ret;
 }
author	Robert Golebiowski <robert.golebiowski@oracle.com>	2015-03-20 15:05:59 +0100
committer	Robert Golebiowski <robert.golebiowski@oracle.com>	2015-07-08 11:59:27 +0200
commit	c9685a78c3960f5822e42e0dc847c72a46528af5 (patch)
tree	e1fd7cdd4704e0610bf8849e703d86ef5d6c7e2f /extra/yassl/src/ssl.cpp
parent	bf681d6bb341411a8b17abeda8e723368545d48d (diff)
download	mariadb-git-c9685a78c3960f5822e42e0dc847c72a46528af5.tar.gz