Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Billion laughs attack #134

Closed
kislyuk opened this issue Oct 5, 2021 · 2 comments
Closed

Billion laughs attack #134

kislyuk opened this issue Oct 5, 2021 · 2 comments

Comments

@kislyuk
Copy link
Owner

kislyuk commented Oct 5, 2021
edited

An anonymous security researcher has been threatening to advertise a fact that they pointed out to me, so I'm going to post a summary here. yq is susceptible to "billion laughs" resource exhaustion attacks, due to the fact that the underlying YAML parsing library, PyYAML, is susceptible to it when handling YAML anchors. While PyYAML disclaims responsibility for implementing mitigations for such an attack, it's possible to design an interface that would prevent this problem. Even though the data structure that PyYAML loads into memory when a malicious document is parsed is as compact as the document itself, any user of PyYAML trying to serialize or exhaustively traverse that document will trigger the attack. Because such a serialization is necessary when translating YAML to JSON, yq is susceptible.

Users of yq should be aware that yq is not hardened against malicious YAML documents and does not incorporate mitigations for this type of attack. While no further vectors are known, a DoS attack may be possible if untrusted YAML input is passed to yq by an online service.

Two types of mitigations have been implemented for this type of issue: refusing to dereference anchors (as seen in GitHub Actions and lxml) and flattening (deep-copying) the full document while monitoring memory usage, and raising an error if it exceeds some multiple of what is expected based on the serialized document size (as seen in go-yaml).

Because of PyYAML's refusal to address this and other issues, it is likely that yq will have to switch to a different YAML parser before this can be addressed. One solution would be to switch to a more principled parser like StrictYAML, but that would require porting the existing parser customizations to the StrictYAML API. This would eliminate anchor support altogether instead of making it optional or detecting malicious levels of expansion. For the latter, I'm not aware of any Python-based tools that would allow this.
@kislyuk
Copy link
Owner Author

kislyuk commented Dec 3, 2021

Protections against YAML entity expansion attacks were added in v2.13.0.

@kislyuk kislyuk closed this as completed Dec 3, 2021
@skshetry skshetry mentioned this issue Dec 16, 2023
Merged
@0x2b3bfa0
Copy link

Related commits from v2.12.2...v2.13.0

  • 1929c63 Disable anchors
  • a5d2c57 Use CSafeLoader where available, begin configurable anchor handling
  • 7c549ea Add test for entity expansion
  • 57773ab Wire up expand_aliases
  • 08bef55 Partial roundtrip of anchors and aliases

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kislyuk @0x2b3bfa0