Java: Timing attacks while comparing results of cryptographic operations

[artem-smotrakov]

Query

Relevant PR: github/codeql#6006

CVE ID(s)

The query detects a few known CVEs:

• CVE-2017-3156
• CVE-2019-10071

Report

A constant time algorithm should be used when comparing results of cryptographic operations such as hashes, MACs, signatures and ciphertexts. In other words, the comparison time should not depends on the content of the inputs. Otherwise, an attacker may be able to implement a timing attacks that may reveal sensitive information.

I'd like to propose a new experimental query that looks for data flows from cryptographic operations to methods that compare arrays or strings using a not-constant time algorithm.

• Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). We would love to have you spread the word about the good work you are doing

Update: I've written a blog post about the query and timing attacks.

Result(s)

• CVE-2017-3156 in Apache CXF 3.1.9
• CVE-2019-10071 in Apache Tapestry 5.4.4

[ghsecuritylab]

Your submission is now in status FP Check.

For information, the evaluation workflow is the following:
SecLab review > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[ghsecuritylab]

Your submission is now in status SecLab review.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[ghsecuritylab]

Your submission is now in status FP Check.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[ghsecuritylab]

Your submission is now in status CodeQL review.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[ghsecuritylab]

Your submission is now in status SecLab finalize.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[artem-smotrakov]

FYI I just wrote a blog post about the query and timing attacks.

[ghsecuritylab]

Your submission is now in status Pay.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed

[xcorail]

Created Hackerone report 1301753 for bounty 326147 : [378] Java: Timing attacks while comparing results of cryptographic operations

[ghsecuritylab]

Your submission is now in status Closed.

For information, the evaluation workflow is the following:
SecLab review > Generate Query Results > FP Check > CodeQL review > SecLab finalize > Pay > Closed