Closed
Bug 202270
Opened 22 years ago
Closed 22 years ago
potential for infinite loop in prng_GenerateGlobalRandomBytes
Categories
(NSS :: Libraries, defect, P2)
Tracking
(Not tracked)
RESOLVED
FIXED
3.9
People
(Reporter: bugz, Assigned: nelson)
Details
Attachments
(1 file)
|
1.18 KB,
patch
|
bugz
:
review+
|
Details | Diff | Splinter Review |
|
Reporter | |
Comment 1•22 years ago
|
||
Oops, hit enter and the bug gets submitted.
Anyway, the following code:
381 while (len > 0) {
382 if (rng->avail == 0)
383 /* All available bytes are used, so generate more. */
384 rv = alg_fips186_1_x3_1(rng, NULL, q);
385 /* number of bytes to obtain on this iteration (max of 20) */
386 num = PR_MIN(rng->avail, len);
387 /* if avail < BSIZE, the first avail bytes have already been used. */
388 memcpy(output, rng->Xj + (BSIZE - rng->avail), num);
389 rng->avail -= num;
390 len -= num;
391 output += num;
392 }
has the potential for an infinite loop when alg_fips186_1_x3_1 returns
SECFailure, if rng->avail is 0. Now, that function can only fail when the PRNG
violates the FIPS requirement that the output of the PRNG does not equal the
previous output. It seems highly unlikely that this would happen.
The person who reported this (I'm trying to get more info) claims it is somewhat
repeatable. I suspect that some part of some code is writing into memory it
shouldn't, and causing rng->isValid != 0. I highly doubt the FIPS requirement
is repeatedly not being met.
Nonetheless, we should break out of the loop above when rv == SECFailure.
|
|
Assignee | |
Comment 2•22 years ago
|
||
Ian, this bugs claims to be about NSS 3.0. What is the correct version number?
If this is repeatable, seems like it's at least a P2. And it's pretty
trivial to fix. I'll attach a patch.
Priority: -- → P2
|
||
Comment 3•22 years ago
|
||
Nelson created this patch, and said:
Ian, please review this patch. Is it what you want?
|
|
Reporter | |
Comment 4•22 years ago
|
||
Comment on attachment 122923 [details] [diff] [review]
patch
Yes, this looks good. I set the version as 3.1 because this bug has existed as
long as the PRNG has existed, but perhaps that should be 3.1 (3.0 was
source-only, IIRC).
Attachment #122923 -
Flags: review+
|
|
Reporter | |
Comment 5•22 years ago
|
||
Just to note: I never heard back from the reporter, which is why I forgot about
this bug. I still don't think this can happen without some really strange
things going on, but no reason not to remove the potential for an infinite loop.
|
|
Assignee | |
Comment 6•22 years ago
|
||
Taking bug.
Wan-Teh, thanks for catching my mistake of posting the patch to the wrong bug!
Assignee: ian.mcgreer → nelsonb
|
|
Assignee | |
Comment 7•22 years ago
|
||
Patch checked in on trunk
Status: NEW → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
Target Milestone: --- → 3.9
You need to log in
before you can comment on or make changes to this bug.
Description
•