[wsf-c-dev] [jira] Created: (WSFC-157) Rampart segfaults when an encrypted mtom is recieved

Dushshantha Chandradasa (JIRA) jira at wso2.org
Wed Nov 7 13:52:15 PST 2007 

Rampart segfaults when  an encrypted mtom is recieved
-----------------------------------------------------

                 Key: WSFC-157
                 URL: http://www.wso2.org/jira/browse/WSFC-157
             Project: WSO2 WSF/C
          Issue Type: Bug
          Components: Apache Rampart/C (Security)
         Environment: Linux
            Reporter: Dushshantha Chandradasa
            Priority: Critical
             Fix For: Current (nightly)


Rampart segfaults when an encrypted mtom is recieved.

Following is the response message recieved.

<s:Body u:Id="_1">
            <e:EncryptedData Id="_2" Type="http://www.w3.org/2001/04/xmlenc#Content" xmlns:e="http://www.w3.org/2001/04/xmlenc#">
               <e:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
               <e:CipherData>
                  <e:CipherValue>
                     <xop:Include href="cid:http%3A%2F%2Ftempuri.org%2F1%2F633300379208094119" xmlns:xop="http://www.w3.org/2004/08/xop/include"/>
                  </e:CipherValue>
               </e:CipherData>
            </e:EncryptedData>
         </s:Body>
      </s:Envelope>--uuid:f2901ecc-9c7d-42da-8f15-cd3b7098173a+id=7Content-ID: 
      <http://tempuri.org/1/633300379208094119>Content-Transfer-Encoding: binaryContent-Type: application/octet-stream�_�19�c}Ip��h�h�z�8)��b�'�/N��GQ�����d)����0�uv�{[�u2�ﻦ0��h�v���9H��e4کO���-k�x����8N�Z��\��0+���Q�Q�b'�{�ĩ����N�[x:-�����`��"�i���팶^����c���1x]���?νL��p�T2Wi�,&��{�7V$*�6iGµNg�\.a޷$ۇh���p3W}9.���s�a9gC����n9,ȣ\A�o���Q�jԫT0��Ň�q���� ���pT�&��G

Here, the CypherValue is xop element. rampart doesnt handle it in the function oxs_axiom_get_node_content in rampartc/src/omxmlsec/axiom.c 
oxs_axiom_get_node_content(const axutil_env_t *env, axiom_node_t* node)
{
    axiom_element_t *ele = NULL;
    axis2_char_t *content = NULL;

    ele = axiom_node_get_data_element(node, env);
    if (!ele) return NULL;

    content = axiom_element_get_text(ele, env, node); <==
    if (!content) return NULL;

    return content;
}






-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://www.wso2.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the Wsf-c-dev mailing list