Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Passwords are stripped after an ASCII NUL character #774

Closed
fef1312 opened this issue Jan 13, 2020 · 2 comments · Fixed by #807
Closed

Passwords are stripped after an ASCII NUL character #774

fef1312 opened this issue Jan 13, 2020 · 2 comments · Fixed by #807

Comments

@fef1312
Copy link

fef1312 commented Jan 13, 2020

What went wrong?

When hashing a password containing an ASCII NUL character, that character acts as the string terminator. Any following characters are ignored.

What did you expect to happen?

Strings should be handled exactly like in JavaScript, where NUL characters can occur at any position without affecting their length. I realize this is kind of an odd case, but since this is a security-relevant module, it should always behave exactly the way it is supposed to.

Which version of nodejs and OS?

node v12.13.1 on Fedora 31 x86_64

If you find a bug, please write a failing test.

const bcrypt = require('bcrypt');
const assert = require('assert');

const actualPasswd = 'Passw\0rd123';
const badPasswd = 'Passw\0 you can literally write anything after the NUL character';

async function test() {
    const hash = await bcrypt.hash(actualPasswd, 12);

    const resultWithActualPasswd = await bcrypt.compare(actualPasswd, hash);
    const resultWithBadPasswd = await bcrypt.compare(badPasswd, hash);

    assert.strictEqual(resultWithActualPasswd, true, 'Should return true with the actual password');
    assert.strictEqual(resultWithBadPasswd, false, 'Should return false with a bad password');
}

test()
    .then(() => console.log('Test passed'))
    .catch(console.error);
@recrsn
Copy link
Collaborator

recrsn commented Jan 13, 2020

Passwords with null characters should not be passed to bcrypt (or any crypt(3) compatible algorithm). Far too many bugs are due to libC using \0.

Popular python bcrypt implementations, Ruby bcrypt and PHP do not allow it. Some silently pass the \0 (PHP) and some, however, show an error. We probably should start doing that as well.

@techhead techhead mentioned this issue Jun 1, 2020
Merged
@techhead
Copy link
Contributor

techhead commented Jun 1, 2020

@sandtler @agathver Bcrypt already includes the final NUL termination character when calculating the hash. I believe that also Including those caught in the middle is a reasonable default that will help to prevent a possible class of errors. And it's a simple fix.

I have a pull request pending that also closes a long-standing vulnerability (re)discovered in #776 .

t83714 added a commit to magda-io/magda that referenced this issue Jul 2, 2020
@t83714
Upgrade [bcrypt](https://www.npmjs.com/package/bcrypt) to 5.0.0 for i…
0dfa9ca 
…ssues:

- kelektiv/node.bcrypt.js#776
- kelektiv/node.bcrypt.js#774
@t83714 t83714 mentioned this issue Jul 3, 2020
Merged
2 tasks
This was referenced Mar 7, 2021
Merged
Merged
Merged
Open
Closed
Merged
Open
This was referenced Mar 15, 2021
Merged
Merged
Closed
Open
fast-facts pushed a commit to fast-facts/node.bcrypt.js that referenced this issue Jun 17, 2022
@techhead @recrsn
Pass key_len to bcrypt(). Fix for issues kelektiv#774, kelektiv#776
707358e
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Pass key_len to bcrypt(). Fix for issues kelektiv#774, kelektiv#776
3 participants
@techhead @recrsn @fef1312