Bug 1618915 - Fix UBSAN issue in ssl_ParseSessionTicket r=jcj,bbeurdouche

Differential Revision: https://phabricator.services.mozilla.com/D66130
author: Kevin Jacobs <kjacobs@mozilla.com> 2020-03-10 14:28:14 +0000
committer: Kevin Jacobs <kjacobs@mozilla.com> 2020-03-10 14:28:14 +0000
commit: aca232e85ee16df545f7c6e47356ca44f39ef371 (patch)
tree: 1c36b37579633fb4ed11525db7158715cf17349d
parent: 13824aa7c2d7efc317d9eae3c755cc29f7edb928 (diff)
download: nss-hg-aca232e85ee16df545f7c6e47356ca44f39ef371.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/lib/ssl/ssl3exthandle.c b/lib/ssl/ssl3exthandle.c
index a74006f70..07565ba00 100644
--- a/lib/ssl/ssl3exthandle.c
+++ b/lib/ssl/ssl3exthandle.c
@@ -1034,7 +1034,9 @@ ssl_ParseSessionTicket(sslSocket *ss, const SECItem *decryptedTicket,
         PORT_SetError(SEC_ERROR_LIBRARY_FAILURE);
         return SECFailure;
     }
-    parsedTicket->timestamp = (PRTime)temp << 32;
+
+    /* Cast to avoid undefined behavior if the top bit is set. */
+    parsedTicket->timestamp = (PRTime)((PRUint64)temp << 32);
     rv = ssl3_ExtConsumeHandshakeNumber(ss, &temp, 4, &buffer, &len);
     if (rv != SECSuccess) {
         PORT_SetError(SEC_ERROR_LIBRARY_FAILURE);
author	Kevin Jacobs <kjacobs@mozilla.com>	2020-03-10 14:28:14 +0000
committer	Kevin Jacobs <kjacobs@mozilla.com>	2020-03-10 14:28:14 +0000
commit	aca232e85ee16df545f7c6e47356ca44f39ef371 (patch)
tree	1c36b37579633fb4ed11525db7158715cf17349d
parent	13824aa7c2d7efc317d9eae3c755cc29f7edb928 (diff)
download	nss-hg-aca232e85ee16df545f7c6e47356ca44f39ef371.tar.gz