Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

20240917-fixes #7991

Merged
merged 9 commits into from
Sep 20, 2024
Merged

20240917-fixes #7991

merged 9 commits into from
Sep 20, 2024
+232 −108

Conversation

douzzer
Copy link
Contributor

@douzzer douzzer commented Sep 18, 2024
edited
Loading

wolfssl/wolfcrypt/types.h: add static_assert() definitions;

wolfssl/internal.h: add DTLS13_HANDSHAKE_HEADER_SZ;

src/tls13.c: in EchHashHelloInner(), use falseHeader[DTLS13_HANDSHAKE_HEADER_SZ] to fix buffer overrun;

src/dtls13.c: add static assert for DTLS13_HANDSHAKE_HEADER_SZ.

tests/api.c:test_Sha512_Family_Final(): fix unreachable null pointer deref reported by clang-tidy in FIPS/Async configs.

m4/ax_atomic.m4: fixes for C++ compatibility.

wolfssl/wolfcrypt/wc_port.h: add WOLFSSL_API attribute to wolfSSL_Atomic_Int_Init, wolfSSL_Atomic_Int_FetchAdd, and wolfSSL_Atomic_Int_FetchAdd, and add fallback definitions for them, allowing elimination of SINGLE_THREADED implementations of wolfSSL_Ref*(), and allowing ungated use of wolfSSL_Atomic_* calls in api.c.

wolfcrypt/src/dh.c: in wc_DhAgree_ct(), remove frivolous XMEMSET() and stray semicolon.

wolfcrypt/benchmark/benchmark.c: fix bench_rsaKeyGen() to skip tests of key sizes below RSA_MIN_SIZE, and add 4096 bit benchmark if RSA_MAX_SIZE is big enough.

tests/unit.h:

  • adopt definitions of TEST_FAIL, TEST_SUCCESS, and TEST_SKIPPED from unit.c, remap TEST_SKIPPED from -7777 to 3, and add TEST_SUCCESS_NO_MSGS, TEST_SKIPPED_NO_MSGS, EXPECT_DECLS_NO_MSGS(), and EXPECT_FAILURE_CODEPOINT_ID, to support existing and future expected-particular-failure test cases without log noise.
  • rename outer gate from CyaSSL_UNIT_H to TESTS_UNIT_H.

tests/api.c:

  • use EXPECT_DECLS_NO_MSGS() in test_ssl_memio_setup(), test_ssl_memio_read_write(), and test_wolfSSL_client_server_nofail_memio(), and globally update affected expected error codes to correspond.
  • use atomics for {client,server}SessRemCount{Malloc,free} to fix races in SessRemCtxCb() and SessRemSslSetupCb().

tested with wolfssl-multi-test.sh ... super-quick-check

@douzzer douzzer self-assigned this Sep 18, 2024
@douzzer
m4/ax_atomic.m4: fixes for C++ compatibility.
072c531 
wolfssl/wolfcrypt/wc_port.h: add WOLFSSL_API attribute to wolfSSL_Atomic_Int_Init, wolfSSL_Atomic_Int_FetchAdd, and wolfSSL_Atomic_Int_FetchAdd, and add fallback definitions for them, allowing elimination of SINGLE_THREADED implementations of wolfSSL_Ref*(), and allowing ungated use of wolfSSL_Atomic_* calls in api.c.

wolfcrypt/src/dh.c: in wc_DhAgree_ct(), remove frivolous XMEMSET() and stray semicolon.

wolfcrypt/benchmark/benchmark.c: fix bench_rsaKeyGen() to skip tests of key sizes below RSA_MIN_SIZE, and add 4096 bit benchmark if RSA_MAX_SIZE is big enough.

tests/unit.h:
* adopt definitions of TEST_FAIL, TEST_SUCCESS, and TEST_SKIPPED from unit.c, remap TEST_SKIPPED from -7777 to 3, and add TEST_SUCCESS_NO_MSGS, TEST_SKIPPED_NO_MSGS, EXPECT_DECLS_NO_MSGS(), and EXPECT_FAILURE_CODEPOINT_ID, to support existing and future expected-particular-failure test cases without log noise.
* rename outer gate from CyaSSL_UNIT_H to TESTS_UNIT_H.

tests/api.c:
* use EXPECT_DECLS_NO_MSGS() in test_ssl_memio_setup(), test_ssl_memio_read_write(), and test_wolfSSL_client_server_nofail_memio(), and globally update affected expected error codes to correspond.
* use atomics for {client,server}SessRemCount{Malloc,free} to fix races in SessRemCtxCb() and SessRemSslSetupCb().
@douzzer
tests/api.c:test_Sha512_Family_Final(): fix unreachable null pointer …
263cb5b 
…deref reported by clang-tidy in FIPS/Async configs.
@douzzer
Copy link
Contributor Author

douzzer commented Sep 19, 2024
edited
Loading

retest this please.

@douzzer
wolfssl/wolfcrypt/types.h: add static_assert() definitions;
fbbb2b8 
wolfssl/internal.h: add DTLS13_HANDSHAKE_HEADER_SZ;

src/tls13.c: in EchHashHelloInner(), use falseHeader[DTLS13_HANDSHAKE_HEADER_SZ] to fix buffer overrun;

src/dtls13.c: add static assert for DTLS13_HANDSHAKE_HEADER_SZ.
@douzzer
Copy link
Contributor Author

douzzer commented Sep 19, 2024

retest this please

SparkiDev
SparkiDev requested changes Sep 19, 2024
View reviewed changes
wolfcrypt/benchmark/benchmark.c Outdated Show resolved Hide resolved
@douzzer
wolfssl/wolfcrypt/ecc.h and wolfcrypt/src/ecc.c: refactor ecc_sets an…
212708e 
…d ecc_sets_count using accessor functions, to fix linker relocation errors in Fedora packaging test.
@douzzer
wolfcrypt/benchmark/benchmark.c: add RSA3072 to keygen bench.
da1b835
@douzzer
wolfssl/wolfcrypt/ecc.h: fixes for more linker relocation errors in F…
a31e914 
…edora packaging test: always export ECC_API functions, but when !WOLFSSL_PUBLIC_ECC_ADD_DBL, remap them with wc_ prefixes.
@douzzer
Revert "wolfssl/wolfcrypt/ecc.h: fixes for more linker relocation err…
af8feed 
…ors in Fedora packaging test: always export ECC_API functions, but when !WOLFSSL_PUBLIC_ECC_ADD_DBL, remap them with wc_ prefixes."

This reverts commit a31e914.
@douzzer
.github/workflows/packaging.yml: disable broken RedHat/Fedora rpm pac…
5be198f 
…kaging tests.
@douzzer douzzer assigned wolfSSL-Bot and SparkiDev and unassigned douzzer Sep 19, 2024
@SparkiDev SparkiDev merged commit 8768c55 into wolfSSL:master Sep 20, 2024
135 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@SparkiDev SparkiDev SparkiDev approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

@SparkiDev SparkiDev

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@douzzer @SparkiDev @wolfSSL-Bot