Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18105

tcarmelveilleux · 2022-05-05T16:32:05Z

Problem

Some %s specifiers did not have a guaranteed non-null string,
in OpenSSL error reporting.
Overall, we are missing a macro/function to make it easy to
return a default string value when a string is null for a
%s specifier, which is Undefined Behavior. Relying on
standard libraries "catching it for us" is wrong and may
fail on some platforms.

Change overview

This PR makes sure CHIPCryptoPALOpenSSL error reporting never
uses a null string argument. This is now valid by construction
without needing to validate the underlying implementations.

This PR also adds DefaultStringWhenNull and StringOrNullMarker
utilities to assist others in doing this safely

Testing

Unit tests and cert tests all pass

- Some %s specifiers did not have a guaranteed non-null string, in OpenSSL error reporting. - Overall, we are missing a macro/function to make it easy to return a default string value when a string is null for a `%s` specifier, which is Undefined Behavior. Relying on standard libraries "catching it for us" is wrong and may fail on some platforms. This PR makes sure CHIPCryptoPALOpenSSL error reporting never uses a null string argument. This is now valid by construction without needing to validate the underlying implementations. This PR also adds `DefaultStringWhenNull` and `StringOrNullMarker` utilities to assist others in doing this safely Testing done: - Unit tests and cert tests all pass

src/crypto/CHIPCryptoPALOpenSSL.cpp

github-actions · 2022-05-05T17:41:44Z

PR #18105: Size comparison from c438b89 to eed6b27

Increases (9 builds for linux)

platform	target	config	section	`c438b89`	`eed6b27`	change
linux	all-clusters-app	debug	(read only)	2739385	2739513	128
			.text	`2328370`	2328498	128
	bridge-app	debug+rpc	(read only)	`1893489`	1893633	144
			.rodata	161241	161273	32
			.text	1609586	1609698	112
	chip-tool	debug	(read only)	8981213	`8981325`	112
			.text	7193397	`7193509`	112
	lighting-app	debug+rpc	(read only)	2327601	2327713	112
			.text	`1975682`	1975794	112
	lock-app	debug	(read only)	2234897	2235009	112
			.text	`1879586`	1879698	112
	ota-provider-app	debug	(read only)	`2063225`	`2063337`	112
			.text	1729378	1729490	112
	ota-requestor-app	debug	(read only)	2094353	2094481	128
			.text	1762722	`1762850`	128
	shell	debug	(read only)	2564361	`2564473`	112
			.text	2184994	2185106	112
	tv-app	debug	(read only)	2850137	2850281	144
			.rodata	218059	218091	32
			.text	2449618	2449730	112

Full report (34 builds for cc13x2_26x2, cyw30739, efr32, esp32, k32w, linux, mbed, nrfconnect, p6, telink)

platform	target	config	section	`c438b89`	`eed6b27`	change
cc13x2_26x2	all-clusters-app	LP_CC2652R7	(read only)	690887	690887	0
			(read/write)	161464	161464	0
			.bss	75332	75332	0
			.data	3412	3412	0
			.rodata	102943	102943	0
			.text	587460	587460	0
	lock-ftd	LP_CC2652R7	(read only)	678459	678459	0
			(read/write)	164996	164996	0
			.bss	73492	73492	0
			.data	3236	3236	0
			.rodata	94739	94739	0
			.text	583240	583240	0
	lock-mtd	LP_CC2652R7	(read only)	627211	627211	0
			(read/write)	146308	146308	0
			.bss	69212	69212	0
			.data	3236	3236	0
			.rodata	94627	94627	0
			.text	532096	532096	0
	pump-app	LP_CC2652R7	(read only)	662983	662983	0
			(read/write)	181768	181768	0
			.bss	73764	73764	0
			.data	3268	3268	0
			.rodata	80935	80935	0
			.text	581564	581564	0
	pump-controller-app	LP_CC2652R7	(read only)	655899	655899	0
			(read/write)	188652	188652	0
			.bss	73820	73820	0
			.data	3232	3232	0
			.rodata	83891	83891	0
			.text	571524	571524	0
cyw30739	light	cyw930739m2evb_01	(read/write)	627542	627542	0
			.app_xip_area	530124	530124	0
			.bss	80060	80060	0
			.data	708	708	0
			.rodata	0	0	0
			.text	0	0	0
	lock	cyw930739m2evb_01	(read/write)	626446	626446	0
			.app_xip_area	530492	530492	0
			.bss	78628	78628	0
			.data	672	672	0
			.rodata	0	0	0
			.text	0	0	0
	ota-requestor-no-progress-logging	cyw930739m2evb_01	(read/write)	575182	575182	0
			.app_xip_area	469512	469512	0
			.bss	88048	88048	0
			.data	584	584	0
			.rodata	0	0	0
			.text	112	112	0
efr32	lighting-app	BRD4161A	(read only)	910044	910044	0
			(read/write)	134520	134520	0
			.bss	132456	132456	0
			.data	2064	2064	0
			.text	910036	910036	0
		BRD4161A+rpc	(read only)	944404	944404	0
			(read/write)	151204	151204	0
			.bss	148936	148936	0
			.data	2268	2268	0
			.text	944396	944396	0
		BRD4161A+rs911x	(read only)	787276	787276	0
			(read/write)	129776	129776	0
			.bss	127708	127708	0
			.data	2068	2068	0
			.text	787268	787268	0
	lock-app	BRD4161A+wf200	(read only)	946392	946392	0
			(read/write)	124268	124268	0
			.bss	122244	122244	0
			.data	2024	2024	0
			.text	946384	946384	0
	window-app	BRD4161A	(read only)	886464	886464	0
			(read/write)	134472	134472	0
			.bss	132416	132416	0
			.data	2052	2052	0
			.text	886456	886456	0
esp32	all-clusters-app	c3devkit	(read only)	`1001004`	`1001004`	0
			(read/write)	1475322	1475322	0
			.dram0.bss	68472	68472	0
			.dram0.data	14444	14444	0
			.flash.rodata	207952	207952	0
			.flash.text	`1001004`	`1001004`	0
			.iram0.text	62020	62020	0
		m5stack	(read only)	`1056027`	`1056027`	0
			(read/write)	477736	477736	0
			.dram0.bss	73984	73984	0
			.dram0.data	34184	34184	0
			.flash.rodata	237732	237732	0
			.flash.text	1050643	1050643	0
			.iram0.text	123107	123107	0
k32w	light	k32w061+release	(read/write)	685092	685092	0
			.bss	81256	81256	0
			.data	2020	2020	0
			.text	600112	600112	0
	lock	k32w061+release	(read/write)	730432	730432	0
			.bss	81688	81688	0
			.data	1980	1980	0
			.text	645060	645060	0
linux	all-clusters-app	debug	(read only)	2739385	2739513	128
			(read/write)	174200	174200	0
			.bss	83680	83680	0
			.data	2064	2064	0
			.data.rel.ro	82328	82328	0
			.dynamic	608	608	0
			.got	4464	4464	0
			.init	27	27	0
			.init_array	1008	1008	0
			.rodata	236005	236005	0
			.text	`2328370`	2328498	128
	bridge-app	debug+rpc	(read only)	`1893489`	1893633	144
			(read/write)	120920	120920	0
			.bss	71520	71520	0
			.data	3488	3488	0
			.data.rel.ro	40584	40584	0
			.dynamic	592	592	0
			.got	4032	4032	0
			.init	27	27	0
			.init_array	688	688	0
			.rodata	161241	161273	32
			.text	1609586	1609698	112
	chip-tool	debug	(read only)	8981213	`8981325`	112
			(read/write)	576880	576880	0
			.bss	22816	22816	0
			.data	1136	1136	0
			.data.rel.ro	546656	546656	0
			.dynamic	624	624	0
			.got	4952	4952	0
			.init	27	27	0
			.init_array	648	648	0
			.rodata	464213	464213	0
			.text	7193397	`7193509`	112
	chip-tool-no-interactive-ipv6only	arm64	(read only)	8820548	8820548	0
			(read/write)	643057	643057	0
			.bss	41105	41105	0
			.data	1192	1192	0
			.data.rel.ro	581976	581976	0
			.dynamic	560	560	0
			.got	14968	14968	0
			.init	24	24	0
			.init_array	184	184	0
			.rodata	431780	431780	0
			.text	6929700	6929700	0
	lighting-app	debug+rpc	(read only)	2327601	2327713	112
			(read/write)	151872	151872	0
			.bss	73568	73568	0
			.data	2048	2048	0
			.data.rel.ro	70504	70504	0
			.dynamic	608	608	0
			.got	4320	4320	0
			.init	27	27	0
			.init_array	792	792	0
			.rodata	185401	185401	0
			.text	`1975682`	1975794	112
	lock-app	debug	(read only)	2234897	2235009	112
			(read/write)	146456	146456	0
			.bss	72192	72192	0
			.data	1568	1568	0
			.data.rel.ro	67032	67032	0
			.dynamic	592	592	0
			.got	4312	4312	0
			.init	27	27	0
			.init_array	752	752	0
			.rodata	195145	195145	0
			.text	`1879586`	1879698	112
	ota-provider-app	debug	(read only)	`2063225`	`2063337`	112
			(read/write)	139568	139568	0
			.bss	71680	71680	0
			.data	1736	1736	0
			.data.rel.ro	60376	60376	0
			.dynamic	608	608	0
			.got	4480	4480	0
			.init	27	27	0
			.init_array	648	648	0
			.rodata	176147	176147	0
			.text	1729378	1729490	112
	ota-requestor-app	debug	(read only)	2094353	2094481	128
			(read/write)	142376	142376	0
			.bss	72320	72320	0
			.data	1992	1992	0
			.data.rel.ro	62440	62440	0
			.dynamic	592	592	0
			.got	4320	4320	0
			.init	27	27	0
			.init_array	672	672	0
			.rodata	172444	172444	0
			.text	1762722	`1762850`	128
	shell	debug	(read only)	2564361	`2564473`	112
			(read/write)	198096	198096	0
			.bss	114408	114408	0
			.data	1376	1376	0
			.data.rel.ro	76600	76600	0
			.dynamic	592	592	0
			.got	4184	4184	0
			.init	27	27	0
			.init_array	928	928	0
			.rodata	217458	217458	0
			.text	2184994	2185106	112
	thermostat-no-ble	arm64	(read only)	2367980	2367980	0
			(read/write)	175057	175057	0
			.bss	86417	86417	0
			.data	1520	1520	0
			.data.rel.ro	79312	79312	0
			.dynamic	560	560	0
			.got	4768	4768	0
			.init	24	24	0
			.init_array	376	376	0
			.rodata	146524	146524	0
			.text	1991904	1991904	0
	tv-app	debug	(read only)	2850137	2850281	144
			(read/write)	277152	277152	0
			.bss	189464	189464	0
			.data	4672	4672	0
			.data.rel.ro	76792	76792	0
			.dynamic	592	592	0
			.got	4696	4696	0
			.init	27	27	0
			.init_array	928	928	0
			.rodata	218059	218091	32
			.text	2449618	2449730	112
mbed	lock-app	CY8CPROTO_062_4343W+release	(read only)	6224	6224	0
			(read/write)	2419676	2419676	0
			.bss	205828	205828	0
			.data	5872	5872	0
			.text	1382276	1382276	0
nrfconnect	all-clusters-app	nrf52840dk_nrf52840	(read/write)	1179727	1179727	0
			bss	139684	139684	0
			rodata	151504	151504	0
			text	809836	809836	0
p6	all-clusters-app	default	(read/write)	2531120	2531120	0
			.bss	139336	139336	0
			.data	2808	2808	0
			.text	1489384	1489384	0
	light-app	default	(read/write)	2421176	2421176	0
			.bss	132656	132656	0
			.data	2608	2608	0
			.text	1379440	1379440	0
	lock-app	default	(read/write)	2430680	2430680	0
			.bss	132480	132480	0
			.data	2568	2568	0
			.text	1388944	1388944	0
telink	lighting-app	tlsr9518adk80d	(read/write)	805980	805980	0
			bss	72180	72180	0
			noinit	40416	40416	0
			text	572406	572406	0

tcarmelveilleux added the security label May 5, 2022

boring-cyborg bot added crypto lib labels May 5, 2022

pullapprove bot requested review from anush-apple, arkq, Byungjoo-Lee, bzbarsky-apple, carol-apple, chrisdecenzo, chshu, chulspro, Damian-Nordic, dhrishi, electrocucaracha, emargolis and franck-apple May 5, 2022 16:32

pullapprove bot requested review from mlepage-google, wbschiller, msandstedt, woody-apple, mspang, xylophone21, rgoliver, yunhanw-google, robszewczyk, sagar-apple, saurabhst, selissia, tecimovic, turon, vijs and vivien-apple May 5, 2022 16:32

Restyled by clang-format

eed6b27

pullapprove bot added the review - pending label May 5, 2022

restyled-io bot mentioned this pull request May 5, 2022

Restyle Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18106

Closed

emargolis approved these changes May 5, 2022

View reviewed changes

bzbarsky-apple approved these changes May 5, 2022

View reviewed changes

src/crypto/CHIPCryptoPALOpenSSL.cpp Show resolved Hide resolved

pullapprove bot added review - approved and removed review - pending labels May 5, 2022

andy31415 approved these changes May 5, 2022

View reviewed changes

tcarmelveilleux merged commit 8faa780 into project-chip:master May 5, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18105

Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18105

tcarmelveilleux commented May 5, 2022

github-actions bot commented May 5, 2022 •

edited

Loading

Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18105

Fix code in CHIPCryptoPALOpenSSL that could try to log nullptr #18105

Conversation

tcarmelveilleux commented May 5, 2022

Problem

Change overview

Testing

github-actions bot commented May 5, 2022 • edited Loading

github-actions bot commented May 5, 2022 •

edited

Loading