[HTTPCORE-694] Endless loop when encrypted buffer larger than plaintext buffer - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 5.1.2, 5.2-alpha1
Fix Version/s: 5.1.3, 5.2-beta1
Component/s: HttpCore
Labels:
None

Description

We are having an issue where SSLIOSession::decryptData will effectively become an endless loop when the size of the inEncryptedBuf buffer is larger than the size of the inPlainBuf.

In this scenario the doUnwrap completely fills up the inPlainBuf. This causes the
if (inPlainBuf.hasRemaining())
to return false and never clear anything out of the inPlainBuf buffer.

From what we can tell the
if (inPlainBuf.hasRemaining()) {
should be removed, as it is in error. There is no reason that this buffer being full should prevent it from being emptied.

We verified that removing this code from 5.1.2 resolved the issue we were facing, along with all tests continuing to pass. There does not appear to be any change to this code in 5.2 alpha.

This issue shows up when we use BouncyCastle for FIPS validated TLS, as it creates a larger inEncryptedBuf then the SUN stack. This issue is completely reproducible when we get a large response from our endpoint.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Jason Mathison

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 04/Nov/21 03:08

Updated:: 04/Nov/21 15:54

Resolved:: 04/Nov/21 15:54