Changeset 98878 in vbox

Timestamp:

Mar 8, 2023 12:37:11 PM (21 months ago)

Author:

vboxsync

Message:

libs/libtpms-0.9.6: Applied and adjusted our libtpms changes to 0.9.6, bugref:10378

Location:

trunk

Files:

• Config.kmk (modified) (1 diff)
• src/libs/Makefile.kmk (modified) (1 diff)
• src/libs/libtpms-0.9.0 (deleted)
• src/libs/libtpms-0.9.6 (modified) (1 prop)
• src/libs/libtpms-0.9.6/CHANGES (modified) (1 diff)
• src/libs/libtpms-0.9.6/configure.ac (modified) (2 diffs)
• src/libs/libtpms-0.9.6/debian/changelog (modified) (1 diff)
• src/libs/libtpms-0.9.6/dist/libtpms.spec (modified) (2 diffs)
• src/libs/libtpms-0.9.6/dist/libtpms.spec.in (modified) (2 diffs)
• src/libs/libtpms-0.9.6/include/libtpms/tpm_library.h (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm12/tpm_nvram.c (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm2/BnMath.c (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm2/CryptUtil.c (modified) (4 diffs)
• src/libs/libtpms-0.9.6/src/tpm2/Marshal.c (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm2/NVMarshal.c (modified) (2 diffs)
• src/libs/libtpms-0.9.6/src/tpm2/Time.c (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm2/crypto/openssl/CryptRsa.c (modified) (1 diff)
• src/libs/libtpms-0.9.6/src/tpm2/crypto/openssl/Helpers.c (modified) (2 diffs)
• src/libs/libtpms-0.9.6/src/tpm_debug.h (modified) (1 diff)

trunk/Config.kmk

@@ -5024 +5024 @@
 ifdef VBOX_WITH_LIBTPMS
  SDK_VBoxLibTpms                 := libtpms for dll linking.
- SDK_VBoxLibTpms_DEFAULT_INCS    := $(PATH_ROOT)/src/libs/libtpms-0.9.0/include
+ SDK_VBoxLibTpms_DEFAULT_INCS    := $(PATH_ROOT)/src/libs/libtpms-0.9.6/include
  SDK_VBoxLibTpms_INCS            ?= $(SDK_VBoxLibTpms_DEFAULT_INCS)
  SDK_VBoxLibTpms_LIBS            ?= $(PATH_STAGE_LIB)/VBox-libtpms$(VBOX_SUFF_LIB)

trunk/src/libs/Makefile.kmk

@@ -82 +82 @@
   && !defined(VBOX_ONLY_BUILD) \
   && ("$(SDK_VBoxLibTpms_INCS)" == "$(SDK_VBoxLibTpms_DEFAULT_INCS)")
- include $(PATH_SUB_CURRENT)/libtpms-0.9.0/Makefile.kmk
+ include $(PATH_SUB_CURRENT)/libtpms-0.9.6/Makefile.kmk
 endif
 

trunk/src/libs/libtpms-0.9.6

@@ -21 +21 @@
 /branches/dsen/gui4/src/libs/libtpms-0.9.0:155183-155185,155187,155198,155200-155201,155205,155228,155235,155243,155248,155282,155285,155287-155288,155311,155316,155336,155342,155344,155437-155438,155441,155443,155488,155509-155513,155526-155527,155559,155572,155576-155577,155592-155593
 /trunk/src/src/libs/libtpms-0.9.0:92342,154921
+/vendor/libtpms/0.9.6:156204-156205
+/vendor/libtpms/current:147277-156203

@@ -21 +21 @@
 /branches/dsen/gui4/src/libs/libtpms-0.9.0:155183-155185,155187,155198,155200-155201,155205,155228,155235,155243,155248,155282,155285,155287-155288,155311,155316,155336,155342,155344,155437-155438,155441,155443,155488,155509-155513,155526-155527,155559,155572,155576-155577,155592-155593
 /trunk/src/src/libs/libtpms-0.9.0:92342,154921
+/vendor/libtpms/0.9.6:156204-156205
+/vendor/libtpms/current:147277-156203

trunk/src/libs/libtpms-0.9.6/CHANGES

@@ -1 +1 @@
 CHANGES - changes for libtpms
+
+version 0.9.6:
+  - tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)
+
+version 0.9.5:
+  - tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
+  - tpm2: Fix a potential overflow expression (coverity)
+  - tpm2: Fix size check in CryptSecretDecrypt
+
+version 0.9.4:
+  - tpm: #undef printf in case it is #define'd (OSS-Fuzz)
+  - tpm2: Check return code of BN_div()
+  - tpm2: Initialize variables due to gcc complaint (s390x, false positive)
+  - tpm12: Initialize variables due to gcc complaint (s390x, false positive)
+  - build-sys: Fix configure script to support _FORTIFY_SOURCE=3
+
+version 0.9.3:
+  - build-sys: Add probing for -fstack-protector
+  - tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size
+    (OSSL 3)
+
+version 0.9.2:
+  - tpm2: When writing state initialize s_ContextSlotMask if not set
+
+version 0.9.1:
+  - tpm2: Do not write permanent state if only clock changed
+  - tpm2: Fix "maybe-uninitialized" warning
 
 version 0.9.0:

trunk/src/libs/libtpms-0.9.6/configure.ac

@@ -4 +4 @@
 # See the LICENSE file for the license associated with this file.
 
-AC_INIT([libtpms],[0.9.0])
+AC_INIT([libtpms],[0.9.6])
 AC_PREREQ([2.69])
 AC_CONFIG_SRCDIR(Makefile.am)
@@ -285 +285 @@
 
 if test "x$enable_hardening" != "xno"; then
-        # Some versions of gcc fail with -Wstack-protector enabled
-        TMP="$($CC -fstack-protector-strong $srcdir/include/libtpms/tpm_error.h 2>&1)"
-        if echo $TMP | $GREP 'unrecognized command line option' >/dev/null; then
-                HARDENING_CFLAGS="-fstack-protector "
+        # Some versions of gcc fail with -Wstack-protector,
+        # some with -Wstack-protector-strong enabled
+        if ! $CC -fstack-protector-strong $srcdir/include/libtpms/tpm_error.h 2>/dev/null; then
+                if $CC -fstack-protector $srcdir/include/libtpms/tpm_error.h 2>/dev/null; then
+                        HARDENING_CFLAGS="-fstack-protector "
+                fi
         else
                 HARDENING_CFLAGS="-fstack-protector-strong "
         fi
 
-        dnl Must not have -O0 but must have a -O for -D_FORTIFY_SOURCE=2
-        TMP1="$(echo $CFLAGS | sed -n 's/.*\(-O0\).*/\1/p')"
-        TMP2="$(echo $CFLAGS | sed -n 's/.*\(-O\).*/\1/p')"
-        if test -z "$TMP1" && test -n "$TPM2"; then
-                HARDENING_CFLAGS="$HARDENING_CFLAGS -D_FORTIFY_SOURCE=2 "
+        dnl Only support -D_FORTIFY_SOURCE=2 and have higher levels passed in by user
+        dnl since they may create more overhead
+        if $CC $CFLAGS -Werror -D_FORTIFY_SOURCE=2 $srcdir/include/libtpms/tpm_library.h 2>/dev/null; then
+                HARDENING_CFLAGS="$HARDENING_CFLAGS -D_FORTIFY_SOURCE=2"
         fi
         dnl Check linker for 'relro' and 'now'

trunk/src/libs/libtpms-0.9.6/debian/changelog

@@ +1 @@
+libtpms (0.9.6) RELEASED; urgency=high
+
+  - tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)
+
+ -- Stefan Berger <[email protected]>  Tue, 28 Feb 2023 09:00:00 -0500
+
+libtpms (0.9.5) RELEASED; urgency=medium
+
+  - tpm2: Do not set RSA_FLAG_NO_BLINDING on RSA keys anymore
+  - tpm2: Fix a potential overflow expression (coverity)
+  - tpm2: Fix size check in CryptSecretDecrypt
+
+ -- Stefan Berger <[email protected]>  Fri, 01 Jul 2022 09:00:00 -0500
+
+libtpms (0.9.4) RELEASED; urgency=medium
+
+  - tpm: #undef printf in case it is #define'd (OSS-Fuzz)
+  - tpm2: Check return code of BN_div()
+  - tpm2: Initialize variables due to gcc complaint (s390x, false positive)
+  - tpm12: Initialize variables due to gcc complaint (s390x, false positive)
+  - build-sys: Fix configure script to support _FORTIFY_SOURCE=3
+
+ -- Stefan Berger <[email protected]>  Mon, 25 Apr 2022 09:00:00 -0500
+
+libtpms (0.9.3) RELEASED; urgency=medium
+
+  - build-sys: Add probing for -fstack-protector
+  - tpm2: Do not call EVP_PKEY_CTX_set0_rsa_oaep_label() for label of size (OSSL 3)
+
+ -- Stefan Berger <[email protected]>  Mon, 07 Mar 2022 09:00:00 -0500
+
+libtpms (0.9.2) RELEASED; urgency=medium
+
+  * tpm2: When writing state initialize s_ContextSlotMask if not set
+
+ -- Stefan Berger <[email protected]>  Thu, 06 Jan 2022 09:00:00 -0500
+
+libtpms (0.9.1) RELEASED; urgency=medium
+
+  * tpm2: Do not write permanent state if only clock changed
+
+ -- Stefan Berger <[email protected]>  Wed, 24 Nov 2021 09:00:00 -0500
+
 libtpms (0.9.0) RELEASED; urgency=medium
 

trunk/src/libs/libtpms-0.9.6/dist/libtpms.spec

@@ -2 +2 @@
 
 %define name      libtpms
-%define version   0.9.0
-%define release   0~dev1
+%define version   0.9.6
+%define release   1
 
 # Valid crypto subsystems are 'freebl' and 'openssl'
@@ -113 +113 @@
 
 %changelog
+* Tue Feb 28 2023 Stefan Berger - 0.9.6-1
+- tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)
+
+* Fri Jul 01 2022 Stefan Berger - 0.9.5-1
+- Release of version 0.9.5
+
+* Mon Apr 25 2022 Stefan Berger - 0.9.4-1
+- Release of version 0.9.4
+
+* Mon Mar 07 2022 Stefan Berger - 0.9.3-1
+- Release of version 0.9.3
+
+* Thu Jan 06 2022 Stefan Berger - 0.9.2-1
+- Release of version 0.9.2
+
+* Wed Nov 24 2021 Stefan Berger - 0.9.1-1
+- Release of version 0.9.1
+
 * Wed Sep 29 2021 Stefan Berger - 0.9.0-1
 - Release of version 0.9.0 (rev. 164)

trunk/src/libs/libtpms-0.9.6/dist/libtpms.spec.in

@@ -3 +3 @@
 %define name      @PACKAGE@
 %define version   @VERSION@
-%define release   0~dev1
+%define release   1
 
 # Valid crypto subsystems are 'freebl' and 'openssl'
@@ -113 +113 @@
 
 %changelog
+* Tue Feb 28 2023 Stefan Berger - 0.9.6-1
+- tpm2: Check size of buffer before accessing it (CVE-2023-1017 & -1018)
+
+* Fri Jul 01 2022 Stefan Berger - 0.9.5-1
+- Release of version 0.9.5
+
+* Mon Apr 25 2022 Stefan Berger - 0.9.4-1
+- Release of version 0.9.4
+
+* Mon Mar 07 2022 Stefan Berger - 0.9.3-1
+- Release of version 0.9.3
+
+* Thu Jan 06 2022 Stefan Berger - 0.9.2-1
+- Release of version 0.9.2
+
+* Wed Nov 24 2021 Stefan Berger - 0.9.1-1
+- Release of version 0.9.1
+
 * Wed Sep 29 2021 Stefan Berger - 0.9.0-1
 - Release of version 0.9.0 (rev. 164)

trunk/src/libs/libtpms-0.9.6/include/libtpms/tpm_library.h

@@ -51 +51 @@
 #define TPM_LIBRARY_VER_MAJOR 0
 #define TPM_LIBRARY_VER_MINOR 9
-#define TPM_LIBRARY_VER_MICRO 0
+#define TPM_LIBRARY_VER_MICRO 6
 
 #define TPM_LIBRARY_VERSION_GEN(MAJ, MIN, MICRO) \

trunk/src/libs/libtpms-0.9.6/src/tpm12/tpm_nvram.c

@@ -1291 +1291 @@
     TPM_BOOL                    isGPIO = FALSE;
     BYTE                        *gpioData = NULL;
-    TPM_NV_DATA_SENSITIVE       *d1NvdataSensitive;
+    TPM_NV_DATA_SENSITIVE       *d1NvdataSensitive = NULL;
     uint32_t                    s1Last;
     

trunk/src/libs/libtpms-0.9.6/src/tpm2/BnMath.c

@@ -427 +427 @@
     while(bn->size <= offset)
         bn->d[bn->size++] = 0;
-    bn->d[offset] |= (crypt_uword_t)(1 << RADIX_MOD(bitNum));
+    bn->d[offset] |= ((crypt_uword_t)1 << RADIX_MOD(bitNum));
     return TRUE;
 }

trunk/src/libs/libtpms-0.9.6/src/tpm2/CryptUtil.c

@@ -733 +733 @@
                               }
                           // make sure secret will fit
-                          if(secret->t.size > data->t.size)
+                          if(secret->t.size > sizeof(data->t.buffer))
                               return TPM_RC_FAILURE;
                           data->t.size = secret->t.size;
@@ -831 +831 @@
     TPM2B_HMAC_KEY          key;            // decryption key
     UINT32                  cipherSize = 0; // size of cipher text
+
+    if (leadingSizeInByte > bufferSize)
+        return TPM_RC_INSUFFICIENT;
+
     // Retrieve encrypted data size.
     if(leadingSizeInByte == 2)
@@ -838 +842 @@
             cipherSize = (UINT32)BYTE_ARRAY_TO_UINT16(buffer);
             buffer = &buffer[2];   // advance the buffer
+            bufferSize -= 2;
         }
 #ifdef  TPM4B
@@ -845 +850 @@
             cipherSize = BYTE_ARRAY_TO_UINT32(buffer);
             buffer = &buffer[4];   //advance pointer
+            bufferSize -= 4;
         }
 #endif

trunk/src/libs/libtpms-0.9.6/src/tpm2/Marshal.c

@@ -2196 +2196 @@
 {
     UINT16 written = 0;
-    BYTE *sizePtr;
+    BYTE *sizePtr = NULL;
 
     if (buffer != NULL) {

trunk/src/libs/libtpms-0.9.6/src/tpm2/NVMarshal.c

@@ -1435 +1435 @@
     for (i = 0; i < array_size; i++)
         written += UINT16_Marshal(&data->contextArray[i], buffer, size);
+
+    if (s_ContextSlotMask != 0x00ff && s_ContextSlotMask != 0xffff) {
+        /* TPM wasn't initialized, so s_ContextSlotMask wasn't set */
+        s_ContextSlotMask = 0xffff;
+    }
     written += UINT16_Marshal(&s_ContextSlotMask, buffer, size);
 
@@ -3893 +3898 @@
     NV_HEADER hdr;
     UINT32 array_size;
-    UINT32 exp_array_size;
+    UINT32 exp_array_size = 0;
 
     if (rc == TPM_RC_SUCCESS) {

trunk/src/libs/libtpms-0.9.6/src/tpm2/Time.c

@@ -137 +137 @@
             // update the time
             go.clock = newTime;
+
+            /* libtpms: Changing the clock alone does not cause the permanent
+             *          state to be written to storage, there must be other
+             *          reasons as well.
+             */
+            UPDATE_TYPE old_g_updateNV = g_updateNV;    // libtpms added
+
             NvWrite(NV_ORDERLY_DATA, sizeof(go), &go);
+
+            g_updateNV = old_g_updateNV;                // libtpms added
         }
     else

trunk/src/libs/libtpms-0.9.6/src/tpm2/crypto/openssl/CryptRsa.c

@@ -1357 +1357 @@
                     ERROR_RETURN(TPM_RC_FAILURE);
                 memcpy(tmp, label->buffer, label->size);
+                if (EVP_PKEY_CTX_set0_rsa_oaep_label(ctx, tmp, label->size) <= 0)
+                    ERROR_RETURN(TPM_RC_FAILURE);
             }
-            // label->size == 0 is supported
-            if (EVP_PKEY_CTX_set0_rsa_oaep_label(ctx, tmp, label->size) <= 0)
-                ERROR_RETURN(TPM_RC_FAILURE);
             tmp = NULL;
             break;

trunk/src/libs/libtpms-0.9.6/src/tpm2/crypto/openssl/Helpers.c

@@ -440 +440 @@
         ERROR_RETURN(TPM_RC_FAILURE)
 
-    RSA_set_flags(rsakey, RSA_FLAG_NO_BLINDING);
-
     retVal = TPM_RC_SUCCESS;
 
@@ -522 +520 @@
         /* Q = N/P; no remainder */
         BN_set_flags(P, BN_FLG_CONSTTIME); // P is secret
-        BN_div(Q, Qr, N, P, ctx);
-        if(!BN_is_zero(Qr))
+        if (!BN_div(Q, Qr, N, P, ctx) || !BN_is_zero(Qr))
             ERROR_RETURN(TPM_RC_BINDING);
         BN_set_flags(Q, BN_FLG_CONSTTIME); // Q is secret

trunk/src/libs/libtpms-0.9.6/src/tpm_debug.h

@@ -67 +67 @@
 #endif
 
+#ifdef printf
+# undef  printf
+#endif
 #define printf(...) TPMLIB_LogPrintf(__VA_ARGS__);
 

@@ -21 +21 @@
 /branches/dsen/gui4/src/libs/libtpms-0.9.0:155183-155185,155187,155198,155200-155201,155205,155228,155235,155243,155248,155282,155285,155287-155288,155311,155316,155336,155342,155344,155437-155438,155441,155443,155488,155509-155513,155526-155527,155559,155572,155576-155577,155592-155593
 /trunk/src/src/libs/libtpms-0.9.0:92342,154921
+/vendor/libtpms/0.9.6:156204-156205
+/vendor/libtpms/current:147277-156203