wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 10:47:28 +02:00
Code Issues Packages Projects Releases Wiki Activity

peer review for #8187 and unrelated bug fixes:

Browse Source 
return error code from wolfSSL_RefWithMutexUnlock() to expose result to caller;

fix endianness bug in src/x509.c:wolfSSL_X509_add_ext() (fixes failing test_wolfSSL_X509_add_ext on BE targets);

fix possible file handle leak in tests/api.c:test_wolfSSL_d2i_X509_REQ() (reported by clang-tidy);

in wolfssl/ssl.h, define CONST_NUM_ERR_WOLFSSL_SUCCESS, so that WOLFSSL_SUCCESS can be benignly miswrapped in WC_NO_ERR_TRACE().
This commit is contained in:
Daniel Pouzzner
2024-11-15 12:52:50 -06:00
parent 595f55eceb
commit a95b759ffa
8 changed files with 20 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/ssl.c
View File

@ -11124,7 +11124,8 @@ int wolfSSL_set_compression(WOLFSSL* ssl)
ret = wolfSSL_CertManagerUnloadIntermediateCerts(ctx->cm); ret = wolfSSL_CertManagerUnloadIntermediateCerts(ctx->cm);
} }
wolfSSL_RefWithMutexUnlock(&ctx->ref); if (wolfSSL_RefWithMutexUnlock(&ctx->ref) != 0)
WOLFSSL_MSG("Failed to unlock mutex!");
return ret; return ret;
} }

5
src/x509.c
View File

@ -1386,6 +1386,9 @@ int wolfSSL_X509_add_ext(WOLFSSL_X509 *x509, WOLFSSL_X509_EXTENSION *ext,
if (ext->value.length == sizeof(word16)) { if (ext->value.length == sizeof(word16)) {
/* if ext->value is already word16, set directly */ /* if ext->value is already word16, set directly */
x509->keyUsage = *(word16*)ext->value.data; x509->keyUsage = *(word16*)ext->value.data;
#ifdef BIG_ENDIAN_ORDER
x509->keyUsage = rotlFixed16(x509->keyUsage, 8U);
#endif
x509->keyUsageCrit = (byte)ext->crit; x509->keyUsageCrit = (byte)ext->crit;
x509->keyUsageSet = 1; x509->keyUsageSet = 1;
} }
@ -1406,7 +1409,7 @@ int wolfSSL_X509_add_ext(WOLFSSL_X509 *x509, WOLFSSL_X509_EXTENSION *ext,
case WC_NID_ext_key_usage: case WC_NID_ext_key_usage:
if (ext && ext->value.data) { if (ext && ext->value.data) {
if (ext->value.length == sizeof(byte)) { if (ext->value.length == sizeof(byte)) {
/* if ext->value is already word16, set directly */ /* if ext->value is already 1 byte, set directly */
x509->extKeyUsage = *(byte*)ext->value.data; x509->extKeyUsage = *(byte*)ext->value.data;
x509->extKeyUsageCrit = (byte)ext->crit; x509->extKeyUsageCrit = (byte)ext->crit;
} }

5
tests/api.c
View File

@ -83073,7 +83073,10 @@ static int test_wolfSSL_d2i_X509_REQ(void)
* (PEM_read_X509_REQ)*/ * (PEM_read_X509_REQ)*/
ExpectTrue((f = XFOPEN(csrDsaFile, "rb")) != XBADFILE); ExpectTrue((f = XFOPEN(csrDsaFile, "rb")) != XBADFILE);
ExpectNull(PEM_read_X509_REQ(XBADFILE, &req, NULL, NULL)); ExpectNull(PEM_read_X509_REQ(XBADFILE, &req, NULL, NULL));
ExpectNotNull(PEM_read_X509_REQ(f, &req, NULL, NULL)); if (EXPECT_SUCCESS())
ExpectNotNull(PEM_read_X509_REQ(f, &req, NULL, NULL));
else if (f != XBADFILE)
XFCLOSE(f);
ExpectIntEQ(X509_REQ_verify(req, pub_key), 1); ExpectIntEQ(X509_REQ_verify(req, pub_key), 1);
X509_free(req); X509_free(req);

4
wolfcrypt/src/misc.c
View File

@ -115,8 +115,6 @@ masking and clearing memory logic.
#endif #endif
#ifdef WC_RC2
/* This routine performs a left circular arithmetic shift of <x> by <y> value */ /* This routine performs a left circular arithmetic shift of <x> by <y> value */
WC_MISC_STATIC WC_INLINE word16 rotlFixed16(word16 x, word16 y) WC_MISC_STATIC WC_INLINE word16 rotlFixed16(word16 x, word16 y)
{ {
@ -130,8 +128,6 @@ WC_MISC_STATIC WC_INLINE word16 rotrFixed16(word16 x, word16 y)
return (x >> y) | (x << (sizeof(x) * 8 - y)); return (x >> y) | (x << (sizeof(x) * 8 - y));
} }
#endif /* WC_RC2 */
/* This routine performs a byte swap of 32-bit word value. */ /* This routine performs a byte swap of 32-bit word value. */
#if defined(__CCRX__) && !defined(NO_INLINE) /* shortest version for CC-RX */ #if defined(__CCRX__) && !defined(NO_INLINE) /* shortest version for CC-RX */
#define ByteReverseWord32(value) _builtin_revl(value) #define ByteReverseWord32(value) _builtin_revl(value)

4
wolfcrypt/src/wc_port.c
View File

@ -1330,9 +1330,9 @@ int wolfSSL_RefWithMutexLock(wolfSSL_RefWithMutex* ref)
return wc_LockMutex(&ref->mutex); return wc_LockMutex(&ref->mutex);
} }
void wolfSSL_RefWithMutexUnlock(wolfSSL_RefWithMutex* ref) int wolfSSL_RefWithMutexUnlock(wolfSSL_RefWithMutex* ref)
{ {
wc_UnLockMutex(&ref->mutex); return wc_UnLockMutex(&ref->mutex);
} }
void wolfSSL_RefWithMutexDec(wolfSSL_RefWithMutex* ref, int* isZero, int* err) void wolfSSL_RefWithMutexDec(wolfSSL_RefWithMutex* ref, int* isZero, int* err)

8
wolfssl/ssl.h
View File

@ -2759,16 +2759,20 @@ WOLFSSL_API void wolfSSL_ERR_print_errors(WOLFSSL_BIO *bio);
enum { /* ssl Constants */ enum { /* ssl Constants */
WOLFSSL_ERROR_NONE = 0, /* for most functions */ WOLFSSL_ERROR_NONE = 0, /* for most functions */
WOLFSSL_FAILURE = 0, /* for some functions */ WOLFSSL_FAILURE = 0, /* for some functions */
WOLFSSL_SUCCESS = 1,
#if defined(WOLFSSL_DEBUG_TRACE_ERROR_CODES) && \ #if defined(WOLFSSL_DEBUG_TRACE_ERROR_CODES) && \
(defined(BUILDING_WOLFSSL) || \ (defined(BUILDING_WOLFSSL) || \
defined(WOLFSSL_DEBUG_TRACE_ERROR_CODES_ALWAYS)) defined(WOLFSSL_DEBUG_TRACE_ERROR_CODES_ALWAYS))
#define WOLFSSL_FAILURE WC_ERR_TRACE(WOLFSSL_FAILURE) #define WOLFSSL_FAILURE WC_ERR_TRACE(WOLFSSL_FAILURE)
#define CONST_NUM_ERR_WOLFSSL_FAILURE 0 #define CONST_NUM_ERR_WOLFSSL_FAILURE 0
/* include CONST_NUM_ERR_ variants of the success codes, so that they
* can be harmlessly wrapped in WC_NO_ERR_TRACE().
*/
#define CONST_NUM_ERR_WOLFSSL_ERROR_NONE 0
#define CONST_NUM_ERR_WOLFSSL_SUCCESS 1
#endif #endif
WOLFSSL_SUCCESS = 1,
/* WOLFSSL_SHUTDOWN_NOT_DONE is returned by wolfSSL_shutdown and /* WOLFSSL_SHUTDOWN_NOT_DONE is returned by wolfSSL_shutdown and
* wolfSSL_SendUserCanceled when the other end * wolfSSL_SendUserCanceled when the other end
* of the connection has yet to send its close notify alert as part of the * of the connection has yet to send its close notify alert as part of the

2
wolfssl/wolfcrypt/misc.h
View File

@ -46,12 +46,10 @@ word32 rotlFixed(word32 x, word32 y);
WOLFSSL_LOCAL WOLFSSL_LOCAL
word32 rotrFixed(word32 x, word32 y); word32 rotrFixed(word32 x, word32 y);
#ifdef WC_RC2
WOLFSSL_LOCAL WOLFSSL_LOCAL
word16 rotlFixed16(word16 x, word16 y); word16 rotlFixed16(word16 x, word16 y);
WOLFSSL_LOCAL WOLFSSL_LOCAL
word16 rotrFixed16(word16 x, word16 y); word16 rotrFixed16(word16 x, word16 y);
#endif
WOLFSSL_LOCAL WOLFSSL_LOCAL
word32 ByteReverseWord32(word32 value); word32 ByteReverseWord32(word32 value);

4
wolfssl/wolfcrypt/wc_port.h
View File

@ -506,7 +506,7 @@ typedef struct wolfSSL_RefWithMutex wolfSSL_Ref;
#define wolfSSL_RefWithMutexFree wolfSSL_RefFree #define wolfSSL_RefWithMutexFree wolfSSL_RefFree
#define wolfSSL_RefWithMutexInc wolfSSL_RefInc #define wolfSSL_RefWithMutexInc wolfSSL_RefInc
#define wolfSSL_RefWithMutexLock(ref) 0 #define wolfSSL_RefWithMutexLock(ref) 0
#define wolfSSL_RefWithMutexUnlock(ref) WC_DO_NOTHING #define wolfSSL_RefWithMutexUnlock(ref) 0
#define wolfSSL_RefWithMutexDec wolfSSL_RefDec #define wolfSSL_RefWithMutexDec wolfSSL_RefDec
#else #else
@ -517,7 +517,7 @@ WOLFSSL_LOCAL void wolfSSL_RefWithMutexFree(wolfSSL_RefWithMutex* ref);
WOLFSSL_LOCAL void wolfSSL_RefWithMutexInc(wolfSSL_RefWithMutex* ref, WOLFSSL_LOCAL void wolfSSL_RefWithMutexInc(wolfSSL_RefWithMutex* ref,
int* err); int* err);
WOLFSSL_LOCAL int wolfSSL_RefWithMutexLock(wolfSSL_RefWithMutex* ref); WOLFSSL_LOCAL int wolfSSL_RefWithMutexLock(wolfSSL_RefWithMutex* ref);
WOLFSSL_LOCAL void wolfSSL_RefWithMutexUnlock(wolfSSL_RefWithMutex* ref); WOLFSSL_LOCAL int wolfSSL_RefWithMutexUnlock(wolfSSL_RefWithMutex* ref);
WOLFSSL_LOCAL void wolfSSL_RefWithMutexDec(wolfSSL_RefWithMutex* ref, WOLFSSL_LOCAL void wolfSSL_RefWithMutexDec(wolfSSL_RefWithMutex* ref,
int* isZero, int* err); int* isZero, int* err);