Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

20241121-fixes #8211

Merged
merged 1 commit into from
Nov 22, 2024
Merged

20241121-fixes #8211

merged 1 commit into from
Nov 22, 2024

Conversation

douzzer
Copy link
Contributor

@douzzer douzzer commented Nov 22, 2024

wolfssl/wolfcrypt/error-crypt.h, wolfcrypt/src/error.c: add WC_FAILURE ("wolfCrypt generic failure") with value -1, for traceable error return of -1 in wolfCrypt.

configure.ac: add OPENSSL_EXTRA to --enable-wolfsentry.

linuxkm/linuxkm_wc_port.h, linuxkm/module_hooks.c, wolfssl/ssl.h: accommodate backward dependencies for wolfSSL_X509_NAME_add_entry_by_NID, wolfSSL_X509_NAME_free, and wolfSSL_X509_NAME_new_ex.

linuxkm/lkcapi_glue.c: if CONFIG_CRYPTO_MANAGER, assert match of CONFIG_CRYPTO_FIPS and HAVE_FIPS.

src/ssl_crypto.c, wolfcrypt/src/wc_lms.c, wolfcrypt/src/wc_lms_impl.c, wolfcrypt/src/wc_xmss.c, wolfcrypt/test/test.c: add casts for XMALLOC()s.

src/ssl_crypto.c: in wolfSSL_AES_decrypt(), fix gate for wc_AesDecryptDirect() return type.

wolfcrypt/test/test.c: smallstack refactor in test_dilithium_decode_level().

tests/api.c: fix uninited vars in test_wc_dilithium_der().

tested with FIPS_DEV_BRANCH=local:20241121-WC_FAILURE-and-HAVE_EMBEDDED_AGENT wolfssl-multi-test.sh ... super-quick-check fips-140-3-v6-optest-acvp-sp-asm fips-140-3-ready-optest-acvp-sp-asm fips-140-3-dev-optest-acvp-sp-asm fips-140-3-dev-optest-acvp-sp-asm-trace-errcodes fips-140-3-dev-optest-acvp-sp-noasm fips-140-3-dev-optest-acvp-sp-asm-gcc-latest fips-140-3-dev-optest-acvp-sp-asm-gcc-latest-no-sha-1 fips-140-2-optest fips-140-2-openssl-all fips-140-3-pilot-all fips-140-3-pilot-optest-acvp-sp-asm fips-140-3-all linuxkm-all-fips-140-3 linuxkm-all-fips-140-3-dev-dyn-hash linuxkm-fips-dev-static-hash-intelasm-LKCAPI-insmod-crypto-fuzzer linuxkm-mainline-intelasm-sp-asm-pie-gcc-latest-insmod wolfssl-with-wolfsentry quantum-safe-wolfssl-all-noasm-stack-sizes

@douzzer
wolfssl/wolfcrypt/error-crypt.h, wolfcrypt/src/error.c: add WC_FAILUR…
d85c108 
…E ("wolfCrypt generic failure") with value -1, for traceable error return of -1 in wolfCrypt.

configure.ac: add OPENSSL_EXTRA to --enable-wolfsentry.

linuxkm/linuxkm_wc_port.h, linuxkm/module_hooks.c, wolfssl/ssl.h: accommodate backward dependencies for wolfSSL_X509_NAME_add_entry_by_NID, wolfSSL_X509_NAME_free, and wolfSSL_X509_NAME_new_ex.

linuxkm/lkcapi_glue.c: if CONFIG_CRYPTO_MANAGER, assert match of CONFIG_CRYPTO_FIPS and HAVE_FIPS.

src/ssl_crypto.c, wolfcrypt/src/wc_lms.c, wolfcrypt/src/wc_lms_impl.c, wolfcrypt/src/wc_xmss.c, wolfcrypt/test/test.c: add missing casts for XMALLOC()s.

src/ssl_crypto.c: in wolfSSL_AES_decrypt(), fix gate for wc_AesDecryptDirect() return type.

wolfcrypt/test/test.c: smallstack refactor in test_dilithium_decode_level().

tests/api.c: fix uninited vars and "embedding a directive within macro arguments is not portable" in test_wc_dilithium_der().
@douzzer
Copy link
Contributor Author

douzzer commented Nov 22, 2024

retest this please (python port test "test_ssl failed")

@douzzer
Copy link
Contributor Author

douzzer commented Nov 22, 2024

Note python test failure is unrelated to this PR.

bigbrett
bigbrett approved these changes Nov 22, 2024
View reviewed changes
Copy link
Contributor

@bigbrett bigbrett left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nice @douzzer, you beat me to those dilithium fixes - had the same ones queued up in a PR, I was just investigating a valgrind issue.

@dgarske
Copy link
Contributor

dgarske commented Nov 22, 2024

FYI Test failure in on Python test. The PR Aidan and I did in wolfSSL/osp#211 clearly didn't work. I'll reproduce locally and get another patch put up.

@JacobBarthelmeh JacobBarthelmeh merged commit c5d7dc3 into wolfSSL:master Nov 22, 2024
141 of 143 checks passed
@douzzer
Copy link
Contributor Author

douzzer commented Nov 22, 2024

@bigbrett yeah I had the definite feeling I was drag racing with you on those 😜

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

@bigbrett bigbrett bigbrett approved these changes

@dgarske dgarske Awaiting requested review from dgarske

@wolfSSL-Bot wolfSSL-Bot Awaiting requested review from wolfSSL-Bot

@SparkiDev SparkiDev Awaiting requested review from SparkiDev

Assignees

@douzzer douzzer

@wolfSSL-Bot wolfSSL-Bot

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@douzzer @dgarske @bigbrett @JacobBarthelmeh @wolfSSL-Bot