crypto/tls: reject duplicate extensions

Does what it says on the tin. Fixes #51088 Change-Id: I12c0fa6bba1c1ce96c1ad31ba387c77a93f801c9 Reviewed-on: https://go-review.googlesource.com/c/go/+/384894 Reviewed-by: Roland Shoemaker <roland@golang.org> Run-TryBot: Roland Shoemaker <roland@golang.org> TryBot-Result: Gopher Robot <gobot@golang.org> Reviewed-by: Damien Neil <dneil@google.com>
2025-04-04 20:47:36 +03:00 · 2022-02-10 09:47:49 -08:00 · 2022-02-10 09:47:49 -08:00 · f77df846bf
commit f77df846bf
parent 13cd054c41
2 changed files with 33 additions and 0 deletions
--- a/handshake_messages.go
+++ b/handshake_messages.go
@ -384,6 +384,7 @@ func (m *clientHelloMsg) unmarshal(data []byte) bool {
 		return false
 	}
 	seenExts := make(map[uint16]bool)
 	for !extensions.Empty() {
 		var extension uint16
 		var extData cryptobyte.String
@ -392,6 +393,11 @@ func (m *clientHelloMsg) unmarshal(data []byte) bool {
 			return false
 		}
 		if seenExts[extension] {
 			return false
 		}
 		seenExts[extension] = true
 		switch extension {
 		case extensionServerName:
 			// RFC 6066, Section 3
@ -750,6 +756,7 @@ func (m *serverHelloMsg) unmarshal(data []byte) bool {
 		return false
 	}
 	seenExts := make(map[uint16]bool)
 	for !extensions.Empty() {
 		var extension uint16
 		var extData cryptobyte.String
@ -758,6 +765,11 @@ func (m *serverHelloMsg) unmarshal(data []byte) bool {
 			return false
 		}
 		if seenExts[extension] {
 			return false
 		}
 		seenExts[extension] = true
 		switch extension {
 		case extensionStatusRequest:
 			m.ocspStapling = true
--- a/handshake_messages_test.go
+++ b/handshake_messages_test.go
@ -6,6 +6,7 @@ package tls
 import (
 	"bytes"
 	"encoding/hex"
 	"math/rand"
 	"reflect"
 	"strings"
@ -463,3 +464,23 @@ func TestRejectEmptySCT(t *testing.T) {
 		t.Fatal("Unmarshaled ServerHello with zero-length SCT")
 	}
 }
 func TestRejectDuplicateExtensions(t *testing.T) {
 	clientHelloBytes, err := hex.DecodeString("010000440303000000000000000000000000000000000000000000000000000000000000000000000000001c0000000a000800000568656c6c6f0000000a000800000568656c6c6f")
 	if err != nil {
 		t.Fatalf("failed to decode test ClientHello: %s", err)
 	}
 	var clientHelloCopy clientHelloMsg
 	if clientHelloCopy.unmarshal(clientHelloBytes) {
 		t.Error("Unmarshaled ClientHello with duplicate extensions")
 	}
 	serverHelloBytes, err := hex.DecodeString("02000030030300000000000000000000000000000000000000000000000000000000000000000000000000080005000000050000")
 	if err != nil {
 		t.Fatalf("failed to decode test ServerHello: %s", err)
 	}
 	var serverHelloCopy serverHelloMsg
 	if serverHelloCopy.unmarshal(serverHelloBytes) {
 		t.Fatal("Unmarshaled ServerHello with duplicate extensions")
 	}
 }