[openssl-dev] [openssl.org #3677] bug report - open ssl interactive command interface
Jerabek, Petr via RT
rt at openssl.org
Wed Jan 28 09:42:45 UTC 2015
Hello,
I found bug in interactive command inteface of openssl.
I did not check whether it is related only to specific windows build of openssl. Please do test of behavior in other builds first.
Used openssl version: OpenSSL 1.0.1h 5 Jun 2014; Windows build
Bug description:
By mistake pressed tab key in command interface to expand path for enter path (tab path expansion is working in common windows command prompt) to certificate for verification (command x509). Tab expansion is of course not working in openssl. Problem is that using tab,backspace key sequence corrupts command buffer and some way memory of open ssl is corrupted.
See attachment for content of corupted session.
First command in file was the one where I used tab, backspace key sequence.
Characters xw at the end of first command line were not possible to delete.
Regards,
Petr Jerabek
-------------- next part --------------
OpenSSL> OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp xw
Error opening Certificate c:\temp\cx
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cx
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp\cxwi.cer
Error opening Certificate c:\temp\cxwi.cer
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cxwi.cer
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp\cxwi.cer
Error opening Certificate c:\temp\cxwi.cer
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cxwi.cer
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp\cxwi.cer
Error opening Certificate c:\temp\cxwi.cer
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cxwi.cer
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp\cxwi.cer
Error opening Certificate c:\temp\cxwi.cer
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cxwi.cer
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> x509 -noout -dates -fingerprint -text -checkend 1209600 -certopt no_issuer,no_validity,no_serial,no_signame,no_sigdump,no_pubkey,no_aux,no_version,ext_default -in c:\temp\cxwi.cer
Error opening Certificate c:\temp\cxwi.cer
','rb')ror:0200107B:system library:fopen:Unknown error:.\crypto\bio\bss_file.c:398:fopen('c:\temp\cxwi.cer
1916:error:20074002:BIO routines:FILE_CTRL:system lib:.\crypto\bio\bss_file.c:400:
unable to load certificate
error in x509
OpenSSL> ?
' is an invalid command.
Standard commands
asn1parse ca ciphers cms
crl crl2pkcs7 dgst dh
dhparam dsa dsaparam ec
ecparam enc engine errstr
gendh gendsa genpkey genrsa
nseq ocsp passwd pkcs12
pkcs7 pkcs8 pkey pkeyparam
pkeyutl prime rand req
rsa rsautl s_client s_server
s_time sess_id smime speed
spkac srp ts verify
version x509
Message Digest commands (see the `dgst' command for more details)
md4 md5 mdc2 rmd160
sha sha1
Cipher commands (see the `enc' command for more details)
aes-128-cbc aes-128-ecb aes-192-cbc aes-192-ecb
aes-256-cbc aes-256-ecb base64 bf
bf-cbc bf-cfb bf-ecb bf-ofb
camellia-128-cbc camellia-128-ecb camellia-192-cbc camellia-192-ecb
camellia-256-cbc camellia-256-ecb cast cast-cbc
cast5-cbc cast5-cfb cast5-ecb cast5-ofb
des des-cbc des-cfb des-ecb
des-ede des-ede-cbc des-ede-cfb des-ede-ofb
des-ede3 des-ede3-cbc des-ede3-cfb des-ede3-ofb
des-ofb des3 desx idea
idea-cbc idea-cfb idea-ecb idea-ofb
rc2 rc2-40-cbc rc2-64-cbc rc2-cbc
rc2-cfb rc2-ecb rc2-ofb rc4
rc4-40 seed seed-cbc seed-cfb
seed-ecb seed-ofb
OpenSSL> version
' is an invalid command.
Standard commands
asn1parse ca ciphers cms
crl crl2pkcs7 dgst dh
dhparam dsa dsaparam ec
ecparam enc engine errstr
gendh gendsa genpkey genrsa
nseq ocsp passwd pkcs12
pkcs7 pkcs8 pkey pkeyparam
pkeyutl prime rand req
rsa rsautl s_client s_server
s_time sess_id smime speed
spkac srp ts verify
version x509
Message Digest commands (see the `dgst' command for more details)
md4 md5 mdc2 rmd160
sha sha1
Cipher commands (see the `enc' command for more details)
aes-128-cbc aes-128-ecb aes-192-cbc aes-192-ecb
aes-256-cbc aes-256-ecb base64 bf
bf-cbc bf-cfb bf-ecb bf-ofb
camellia-128-cbc camellia-128-ecb camellia-192-cbc camellia-192-ecb
camellia-256-cbc camellia-256-ecb cast cast-cbc
cast5-cbc cast5-cfb cast5-ecb cast5-ofb
des des-cbc des-cfb des-ecb
des-ede des-ede-cbc des-ede-cfb des-ede-ofb
des-ede3 des-ede3-cbc des-ede3-cfb des-ede3-ofb
des-ofb des3 desx idea
idea-cbc idea-cfb idea-ecb idea-ofb
rc2 rc2-40-cbc rc2-64-cbc rc2-cbc
rc2-cfb rc2-ecb rc2-ofb rc4
rc4-40 seed seed-cbc seed-cfb
seed-ecb seed-ofb
More information about the openssl-dev
mailing list