Attachment #196387 for bug #229029

Lines 3-8 Link Here

(-)Makefile (+1 lines)
3		3
4	PORTNAME= rdesktop	4	PORTNAME= rdesktop
5	PORTVERSION= 1.8.3	5	PORTVERSION= 1.8.3
		6	PORTREVISION= 1
6	CATEGORIES= net comms ipv6	7	CATEGORIES= net comms ipv6
7	MASTER_SITES= SF	8	MASTER_SITES= SF
8		9

Lines 1-2 Link Here

(-)distinfo (+1 lines)
		1	TIMESTAMP = 1529982832
1	SHA256 (rdesktop-1.8.3.tar.gz) = 88b20156b34eff5f1b453f7c724e0a3ff9370a599e69c01dc2bf0b5e650eece4	2	SHA256 (rdesktop-1.8.3.tar.gz) = 88b20156b34eff5f1b453f7c724e0a3ff9370a599e69c01dc2bf0b5e650eece4
2	SIZE (rdesktop-1.8.3.tar.gz) = 320212	3	SIZE (rdesktop-1.8.3.tar.gz) = 320212




From bd6aa6acddf0ba640a49834807872f4cc0d0a773 Mon Sep 17 00:00:00 2001
From: Jani Hakala <jjhakala@gmail.com>
Date: Thu, 16 Jun 2016 14:28:15 +0300
Subject: [PATCH] Fix OpenSSL 1.1 compability issues

Some data types have been made opaque in OpenSSL version 1.1 so
stack allocation and accessing struct fields directly does not work.
---
 ssl.c | 65 ++++++++++++++++++++++++++++++++++++++++-------------------------
 1 file changed, 40 insertions(+), 25 deletions(-)

diff --git a/ssl.c b/ssl.c
index 4875125..032e9b9 100644
--- ssl.c.orig
+++ ssl.c
@@ -88,7 +88,7 @@ rdssl_rsa_encrypt(uint8 * out, uint8 * in, int len, uint32 modulus_size, uint8 *
 		  uint8 * exponent)
 {
 	BN_CTX *ctx;
-	BIGNUM mod, exp, x, y;
+	BIGNUM *mod, *exp, *x, *y;
 	uint8 inr[SEC_MAX_MODULUS_SIZE];
 	int outlen;
 
@@ -98,24 +98,24 @@ rdssl_rsa_encrypt(uint8 * out, uint8 * in, int len, uint32 modulus_size, uint8 *
 	reverse(inr, len);
 
 	ctx = BN_CTX_new();
-	BN_init(&mod);
-	BN_init(&exp);
-	BN_init(&x);
-	BN_init(&y);
-
-	BN_bin2bn(modulus, modulus_size, &mod);
-	BN_bin2bn(exponent, SEC_EXPONENT_SIZE, &exp);
-	BN_bin2bn(inr, len, &x);
-	BN_mod_exp(&y, &x, &exp, &mod, ctx);
-	outlen = BN_bn2bin(&y, out);
+	mod = BN_new();
+	exp = BN_new();
+	x = BN_new();
+	y = BN_new();
+
+	BN_bin2bn(modulus, modulus_size, mod);
+	BN_bin2bn(exponent, SEC_EXPONENT_SIZE, exp);
+	BN_bin2bn(inr, len, x);
+	BN_mod_exp(y, x, exp, mod, ctx);
+	outlen = BN_bn2bin(y, out);
 	reverse(out, outlen);
 	if (outlen < (int) modulus_size)
 		memset(out + outlen, 0, modulus_size - outlen);
 
-	BN_free(&y);
-	BN_clear_free(&x);
-	BN_free(&exp);
-	BN_free(&mod);
+	BN_free(y);
+	BN_clear_free(x);
+	BN_free(exp);
+	BN_free(mod);
 	BN_CTX_free(ctx);
 }
 
@@ -146,12 +146,20 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
 
 	   Kudos to Richard Levitte for the following (. intiutive .) 
 	   lines of code that resets the OID and let's us extract the key. */
-	nid = OBJ_obj2nid(cert->cert_info->key->algor->algorithm);
+
+	X509_PUBKEY *key = NULL;
+	X509_ALGOR *algor = NULL;
+
+	key = X509_get_X509_PUBKEY(cert);
+	algor = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
+
+	nid = OBJ_obj2nid(algor->algorithm);
+
 	if ((nid == NID_md5WithRSAEncryption) || (nid == NID_shaWithRSAEncryption))
 	{
 		DEBUG_RDP5(("Re-setting algorithm type to RSA in server certificate\n"));
-		ASN1_OBJECT_free(cert->cert_info->key->algor->algorithm);
-		cert->cert_info->key->algor->algorithm = OBJ_nid2obj(NID_rsaEncryption);
+		X509_PUBKEY_set0_param(key, OBJ_nid2obj(NID_rsaEncryption),
+				       0, NULL, NULL, 0);
 	}
 	epk = X509_get_pubkey(cert);
 	if (NULL == epk)
@@ -201,14 +209,24 @@ rdssl_rkey_get_exp_mod(RDSSL_RKEY * rkey, uint8 * exponent, uint32 max_exp_len,
 {
 	int len;
 
-	if ((BN_num_bytes(rkey->e) > (int) max_exp_len) ||
-	    (BN_num_bytes(rkey->n) > (int) max_mod_len))
+	BIGNUM *e = NULL;
+	BIGNUM *n = NULL;
+
+#if OPENSSL_VERSION_NUMBER < 0x10100000L
+	e = rkey->e;
+	n = rkey->n;
+#else
+	RSA_get0_key(rkey, &e, &n, NULL);
+#endif
+
+	if ((BN_num_bytes(e) > (int) max_exp_len) ||
+	    (BN_num_bytes(n) > (int) max_mod_len))
 	{
 		return 1;
 	}
-	len = BN_bn2bin(rkey->e, exponent);
+	len = BN_bn2bin(e, exponent);
 	reverse(exponent, len);
-	len = BN_bn2bin(rkey->n, modulus);
+	len = BN_bn2bin(n, modulus);
 	reverse(modulus, len);
 	return 0;
 }
@@ -229,8 +247,5 @@ void
 rdssl_hmac_md5(const void *key, int key_len, const unsigned char *msg, int msg_len,
 	       unsigned char *md)
 {
-	HMAC_CTX ctx;
-	HMAC_CTX_init(&ctx);
 	HMAC(EVP_md5(), key, key_len, msg, msg_len, md, NULL);
-	HMAC_CTX_cleanup(&ctx);
 }




From c6e8e1074b8ac57de6c80c4e3ed38e105b4d94f1 Mon Sep 17 00:00:00 2001
From: Henrik Andersson <hean01@cendio.com>
Date: Mon, 24 Oct 2016 10:24:35 +0200
Subject: [PATCH] Fix crash in rdssl_cert_to_rkey.

This crash was introduced by merging OpenSSL 1.1 PR done on
commit 50b39d11. Where algor was overwritten with return value
of X509_PUBKEY_get0_param(). I also added additional error
handling for X509_get_X509_PUBKEY.

Thanks to TingPing that found this error in PR.
---
 ssl.c | 15 ++++++++++++++-
 1 file changed, 14 insertions(+), 1 deletion(-)

diff --git a/ssl.c b/ssl.c
index 032e9b9..07d7aa5 100644
--- ssl.c.orig
+++ ssl.c
@@ -3,6 +3,7 @@
    Secure sockets abstraction layer
    Copyright (C) Matthew Chapman <matthewc.unsw.edu.au> 1999-2008
    Copyright (C) Jay Sorg <j@american-data.com> 2006-2008
+   Copyright (C) Henrik Andersson <hean01@cendio.com> 2016
 
    This program is free software: you can redistribute it and/or modify
    it under the terms of the GNU General Public License as published by
@@ -140,6 +141,7 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
 	EVP_PKEY *epk = NULL;
 	RDSSL_RKEY *lkey;
 	int nid;
+	int ret;
 
 	/* By some reason, Microsoft sets the OID of the Public RSA key to
 	   the oid for "MD5 with RSA Encryption" instead of "RSA Encryption"
@@ -151,7 +153,18 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
 	X509_ALGOR *algor = NULL;
 
 	key = X509_get_X509_PUBKEY(cert);
-	algor = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
+	if (key == NULL)
+	{
+		error("Failed to get public key from certificate.\n");
+		return NULL;
+	}
+
+	ret = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
+	if (ret != 1)
+	{
+		error("Faild to get algorithm used for public key.\n");
+		return NULL;
+	}
 
 	nid = OBJ_obj2nid(algor->algorithm);
 

Return to bug 229029

Line 0 Link Here

(-)files/patch-openssl (+125 lines)
		1	From bd6aa6acddf0ba640a49834807872f4cc0d0a773 Mon Sep 17 00:00:00 2001
		2	From: Jani Hakala <jjhakala@gmail.com>
		3	Date: Thu, 16 Jun 2016 14:28:15 +0300
		4	Subject: [PATCH] Fix OpenSSL 1.1 compability issues
		5
		6	Some data types have been made opaque in OpenSSL version 1.1 so
		7	stack allocation and accessing struct fields directly does not work.
		8	---
		9	ssl.c \| 65 ++++++++++++++++++++++++++++++++++++++++-------------------------
		10	1 file changed, 40 insertions(+), 25 deletions(-)
		11
		12	diff --git a/ssl.c b/ssl.c
		13	index 4875125..032e9b9 100644
		14	--- ssl.c.orig
		15	+++ ssl.c
		16	@@ -88,7 +88,7 @@ rdssl_rsa_encrypt(uint8 * out, uint8 * in, int len, uint32 modulus_size, uint8 *
		17	uint8 * exponent)
		18	{
		19	BN_CTX *ctx;
		20	- BIGNUM mod, exp, x, y;
		21	+ BIGNUM mod, exp, x, y;
		22	uint8 inr[SEC_MAX_MODULUS_SIZE];
		23	int outlen;
		24
		25	@@ -98,24 +98,24 @@ rdssl_rsa_encrypt(uint8 * out, uint8 * in, int len, uint32 modulus_size, uint8 *
		26	reverse(inr, len);
		27
		28	ctx = BN_CTX_new();
		29	- BN_init(&mod);
		30	- BN_init(&exp);
		31	- BN_init(&x);
		32	- BN_init(&y);
		33	-
		34	- BN_bin2bn(modulus, modulus_size, &mod);
		35	- BN_bin2bn(exponent, SEC_EXPONENT_SIZE, &exp);
		36	- BN_bin2bn(inr, len, &x);
		37	- BN_mod_exp(&y, &x, &exp, &mod, ctx);
		38	- outlen = BN_bn2bin(&y, out);
		39	+ mod = BN_new();
		40	+ exp = BN_new();
		41	+ x = BN_new();
		42	+ y = BN_new();
		43	+
		44	+ BN_bin2bn(modulus, modulus_size, mod);
		45	+ BN_bin2bn(exponent, SEC_EXPONENT_SIZE, exp);
		46	+ BN_bin2bn(inr, len, x);
		47	+ BN_mod_exp(y, x, exp, mod, ctx);
		48	+ outlen = BN_bn2bin(y, out);
		49	reverse(out, outlen);
		50	if (outlen < (int) modulus_size)
		51	memset(out + outlen, 0, modulus_size - outlen);
		52
		53	- BN_free(&y);
		54	- BN_clear_free(&x);
		55	- BN_free(&exp);
		56	- BN_free(&mod);
		57	+ BN_free(y);
		58	+ BN_clear_free(x);
		59	+ BN_free(exp);
		60	+ BN_free(mod);
		61	BN_CTX_free(ctx);
		62	}
		63
		64	@@ -146,12 +146,20 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
65
66	Kudos to Richard Levitte for the following (. intiutive .)
67	lines of code that resets the OID and let's us extract the key. */
68	- nid = OBJ_obj2nid(cert->cert_info->key->algor->algorithm);
69	+
70	+ X509_PUBKEY *key = NULL;
71	+ X509_ALGOR *algor = NULL;
72	+
73	+ key = X509_get_X509_PUBKEY(cert);
74	+ algor = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
75	+
76	+ nid = OBJ_obj2nid(algor->algorithm);
77	+
78	if ((nid == NID_md5WithRSAEncryption) \|\| (nid == NID_shaWithRSAEncryption))
79	{
80	DEBUG_RDP5(("Re-setting algorithm type to RSA in server certificate\n"));
81	- ASN1_OBJECT_free(cert->cert_info->key->algor->algorithm);
82	- cert->cert_info->key->algor->algorithm = OBJ_nid2obj(NID_rsaEncryption);
83	+ X509_PUBKEY_set0_param(key, OBJ_nid2obj(NID_rsaEncryption),
84	+ 0, NULL, NULL, 0);
85	}
86	epk = X509_get_pubkey(cert);
87	if (NULL == epk)
88	@@ -201,14 +209,24 @@ rdssl_rkey_get_exp_mod(RDSSL_RKEY * rkey, uint8 * exponent, uint32 max_exp_len,
89	{
90	int len;
91
92	- if ((BN_num_bytes(rkey->e) > (int) max_exp_len) \|\|
93	- (BN_num_bytes(rkey->n) > (int) max_mod_len))
94	+ BIGNUM *e = NULL;
95	+ BIGNUM *n = NULL;
96	+
97	+#if OPENSSL_VERSION_NUMBER < 0x10100000L
98	+ e = rkey->e;
99	+ n = rkey->n;
100	+#else
101	+ RSA_get0_key(rkey, &e, &n, NULL);
102	+#endif
103	+
104	+ if ((BN_num_bytes(e) > (int) max_exp_len) \|\|
105	+ (BN_num_bytes(n) > (int) max_mod_len))
106	{
107	return 1;
108	}
109	- len = BN_bn2bin(rkey->e, exponent);
110	+ len = BN_bn2bin(e, exponent);
111	reverse(exponent, len);
112	- len = BN_bn2bin(rkey->n, modulus);
113	+ len = BN_bn2bin(n, modulus);
114	reverse(modulus, len);
115	return 0;
116	}
117	@@ -229,8 +247,5 @@ void
118	rdssl_hmac_md5(const void key, int key_len, const unsigned char msg, int msg_len,
119	unsigned char *md)
120	{
121	- HMAC_CTX ctx;
122	- HMAC_CTX_init(&ctx);
123	HMAC(EVP_md5(), key, key_len, msg, msg_len, md, NULL);
124	- HMAC_CTX_cleanup(&ctx);
125	}

Line 0 Link Here

(-)files/patch-openssl2 (+55 lines)
	1	From c6e8e1074b8ac57de6c80c4e3ed38e105b4d94f1 Mon Sep 17 00:00:00 2001
	2	From: Henrik Andersson <hean01@cendio.com>
	3	Date: Mon, 24 Oct 2016 10:24:35 +0200
	4	Subject: [PATCH] Fix crash in rdssl_cert_to_rkey.
	5
	6	This crash was introduced by merging OpenSSL 1.1 PR done on
	7	commit 50b39d11. Where algor was overwritten with return value
	8	of X509_PUBKEY_get0_param(). I also added additional error
	9	handling for X509_get_X509_PUBKEY.
	10
	11	Thanks to TingPing that found this error in PR.
	12	---
	13	ssl.c \| 15 ++++++++++++++-
	14	1 file changed, 14 insertions(+), 1 deletion(-)
	15
	16	diff --git a/ssl.c b/ssl.c
	17	index 032e9b9..07d7aa5 100644
	18	--- ssl.c.orig
	19	+++ ssl.c
	20	@@ -3,6 +3,7 @@
	21	Secure sockets abstraction layer
	22	Copyright (C) Matthew Chapman <matthewc.unsw.edu.au> 1999-2008
	23	Copyright (C) Jay Sorg <j@american-data.com> 2006-2008
	24	+ Copyright (C) Henrik Andersson <hean01@cendio.com> 2016
	25
	26	This program is free software: you can redistribute it and/or modify
	27	it under the terms of the GNU General Public License as published by
	28	@@ -140,6 +141,7 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
	29	EVP_PKEY *epk = NULL;
	30	RDSSL_RKEY *lkey;
	31	int nid;
	32	+ int ret;
	33
	34	/* By some reason, Microsoft sets the OID of the Public RSA key to
	35	the oid for "MD5 with RSA Encryption" instead of "RSA Encryption"
	36	@@ -151,7 +153,18 @@ rdssl_cert_to_rkey(RDSSL_CERT * cert, uint32 * key_len)
	37	X509_ALGOR *algor = NULL;
	38
	39	key = X509_get_X509_PUBKEY(cert);
	40	- algor = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
	41	+ if (key == NULL)
	42	+ {
	43	+ error("Failed to get public key from certificate.\n");
	44	+ return NULL;
	45	+ }
	46	+
	47	+ ret = X509_PUBKEY_get0_param(NULL, NULL, 0, &algor, key);
	48	+ if (ret != 1)
	49	+ {
	50	+ error("Faild to get algorithm used for public key.\n");
	51	+ return NULL;
	52	+ }
	53
	54	nid = OBJ_obj2nid(algor->algorithm);
	55