Banned Modes ql and qhelp

Author: bdrodes

cpp/ql/src/Microsoft/Security/Cryptography/BannedModesCAPI.qhelp

@@ -0,0 +1,29 @@
+<!DOCTYPE qhelp PUBLIC
+"-//Semmle//qhelp//EN"
+"qhelp.dtd">
+<qhelp>
+
+<overview>
+<p> Violation - Use of one of the following unsafe encryption modes that is not approved: ECB, OFB, CFB, CTR, CCM, or GCM.</p>
+<p> These modes are vulnerable to attacks and may cause exposure of sensitive information. For example, using <code> ECB </code> to encrypt a plaintext block always produces a same cipher text, so it can easily tell if two encrypted messages are identical. Using approved modes can avoid these unnecessary risks.</p>
+</overview>
+
+<recommendation>
+<p> - Use only approved modes CBC, CTS and XTS.</p>
+</recommendation>
+
+<example>
+<p>Violation:</p>
+
+<sample src="examples/BannedModesCAPI/BannedModesCAPI1.cpp" />
+
+<p>Solution:</p>
+
+<sample src="examples/BannedModesCAPI/BannedModesCAPI2.cpp" />
+</example>
+
+<references>
+<li>Microsoft Docs: <a href="https://learn.microsoft.com/en-us/security/engineering/cryptographic-recommendations">Microsoft SDL Cryptographic Recommendations</a>.</li>
+</references>
+
+</qhelp>

cpp/ql/src/Microsoft/Security/Cryptography/BannedModesCAPI.ql

@@ -0,0 +1,40 @@
+/**
+ * @name Weak cryptography
+ * @description Finds explicit uses of block cipher chaining mode algorithms that are not approved. (CAPI)
+ * @kind problem
+ * @id cpp/weak-crypto/capi/banned-modes
+ * @problem.severity error
+ * @precision high
+ * @tags security
+ *       external/cwe/cwe-327
+ */
+
+import cpp
+import semmle.code.cpp.dataflow.new.DataFlow
+import CryptoDataflowCapi
+
+module CapiSetBlockCipherConfiguration implements DataFlow::ConfigSig {
+  predicate isSource(DataFlow::Node source) {
+    source.asExpr().isConstant() and
+    // KP_MODE
+    // CRYPT_MODE_CBC   1  - Cipher block chaining    - Microsoft-Only: Only mode allowed by Crypto Board from this list (CBC-MAC)
+    // CRYPT_MODE_ECB   2  - Electronic code book     - Generally not recommended for usage in cryptographic protocols at all
+    // CRYPT_MODE_OFB   3  - Output feedback mode     - Microsoft-Only: Banned, usage requires Crypto Board review
+    // CRYPT_MODE_CFB   4  - Cipher feedback mode     - Microsoft-Only: Banned, usage requires Crypto Board review
+    // CRYPT_MODE_CTS   5  - Ciphertext stealing mode - Microsoft-Only: CTS is approved by Crypto Board, but should probably use CNG and not CAPI
+    source.asExpr().getValue().toInt() != 1
+  }
+
+  predicate isSink(DataFlow::Node sink) {
+    exists(CapiCryptCryptSetKeyParamtoKPMODE call | sink.asIndirectExpr() = call.getArgument(2))
+  }
+}
+
+module CapiSetBlockCipherTrace = DataFlow::Global<CapiSetBlockCipherConfiguration>;
+
+from CapiCryptCryptSetKeyParamtoKPMODE call, DataFlow::Node src, DataFlow::Node sink
+where
+  sink.asIndirectExpr() = call.getArgument(2) and
+  CapiSetBlockCipherTrace::flow(src, sink)
+select call,
+  "Call to 'CryptSetKeyParam' function with argument dwParam = KP_MODE is setting up a banned block cipher mode."

cpp/ql/src/Microsoft/Security/Cryptography/BannedModesCNG.qhelp

@@ -0,0 +1,31 @@
+<!DOCTYPE qhelp PUBLIC
+"-//Semmle//qhelp//EN"
+"qhelp.dtd">
+<qhelp>
+
+<overview>
+<p> Violation - Use of one of the following unsafe encryption modes that is not approved: ECB, OFB, CFB, CTR, CCM, or GCM.</p>
+<p> These modes are vulnerable to attacks and may cause exposure of sensitive information. For example, using <code> ECB </code> to encrypt a plaintext block always produces a same cipher text, so it can easily tell if two encrypted messages are identical. Using approved modes can avoid these unnecessary risks.</p>
+</overview>
+
+<recommendation>
+<p> - Use only approved modes CBC, CTS and XTS.</p>
+</recommendation>
+
+<example>
+<p>Violation:</p>
+
+<sample src="examples/BannedModesCNG/BannedModesCNG1.cpp" />
+
+<p>Solution:</p>
+
+<sample src="examples/BannedModesCNG/BannedModesCNG2.cpp" />
+</example>
+
+
+<references>
+<li>Microsoft Docs: <a href="https://learn.microsoft.com/en-us/security/engineering/cryptographic-recommendations">Microsoft SDL Cryptographic Recommendations</a>.</li>
+</references>
+
+
+</qhelp>

cpp/ql/src/Microsoft/Security/Cryptography/BannedModesCNG.ql

@@ -0,0 +1,23 @@
+/**
+ * @name Weak cryptography
+ * @description Finds explicit uses of block cipher chaining mode algorithms that are not approved. (CNG)
+ * @kind problem
+ * @id cpp/weak-crypto/cng/banned-modes
+ * @problem.severity error
+ * @precision high
+ * @tags security
+ *       external/cwe/cwe-327
+ */
+
+import cpp
+import semmle.code.cpp.dataflow.new.DataFlow
+import CryptoDataflowCng
+
+from CngBCryptSetPropertyParamtoKChainingMode call, DataFlow::Node src, DataFlow::Node sink
+where
+  sink.asIndirectArgument() = call.getArgument(2) and
+  CngBCryptSetPropertyChainingBannedModeIndirectParameter::flow(src, sink)
+  or
+  sink.asExpr() = call.getArgument(2) and CngBCryptSetPropertyChainingBannedMode::flow(src, sink)
+select call,
+  "Call to 'BCryptSetProperty' function with argument pszProperty = \"ChainingMode\" is setting up a banned block cipher mode."