Skip to content

Fix fenrir findings across wolfProvider#387

Open
JeremiahM37 wants to merge 8 commits intowolfSSL:masterfrom
JeremiahM37:wp-fenrir-fixes
Open

Fix fenrir findings across wolfProvider#387
JeremiahM37 wants to merge 8 commits intowolfSSL:masterfrom
JeremiahM37:wp-fenrir-fixes

Conversation

@JeremiahM37
Copy link
Copy Markdown
Contributor

@JeremiahM37 JeremiahM37 commented Apr 6, 2026
edited
Loading

Description

Fixes F-174, F-175, F-176, F-186, F-187, F-188, F-260, F-261, F-262, F-263, F-272, F-273, F-274, F-400, F-399, F-505, F-506, F-507, F-508, F-509, F-831, F-832, F-833, F-834, F-1626, F-1627, F-1628, F-1635, F-1639, F-1640, F-1641, F-1642, F-1643

  • Chunk digest/HMAC/CMAC/AES/DES3 update calls to avoid size_t to word32 truncation on >4GB
    inputs
  • Fix SINGLE_THREADED → WP_SINGLE_THREADED mutex guards across all kmgmt files
  • Replace prefix-match XSTRNCMP with exact XSTRCMP in param/name lookups and fix sizeof
    copy-paste errors
  • Secure-clear key material in CMAC/GMAC free, EPKI decrypt, ECX key compare, and X25519
    derive (constant-time)
  • Guard tagLen/outLen assignment, KBKDF XMEMCPY NULL IV, GCM dinit NULL IV, and add RSA TLS
    implicit rejection
  • Fix PEM footer length, base64 arithmetic, and hex dump off-by-one

New Tests

  • test_digest_multi_update: SHA-256 single update vs. many 64-byte updates, verify match across OpenSSL and wolfProvider
  • test_hmac_multi_update: HMAC single update vs. many 128-byte updates, cross-provider comparison
  • test_cmac_multi_update: CMAC single update vs. many 16-byte updates, cross-provider comparison
  • test_aes_cbc_large_update: AES-256-CBC encrypt/decrypt roundtrip with chunked 1024-byte updates, cross-provider comparison
  • test_aes128_gcm_key_then_iv: GCM decrypt init with key only (NULL IV), then set IV via ctrl, encrypt/decrypt roundtrip
  • test_rsa_param_prefix_match: Imports RSA key with prefix param "rsa-factor" —
    incorrectly matches "rsa-factor1" on master
  • test_rsa_kem_prefix_match: Sets KEM operation to "RSASVE_extra" — incorrectly
    accepted on master

@JeremiahM37 JeremiahM37 marked this pull request as draft April 6, 2026 14:51
@JeremiahM37 JeremiahM37 changed the title Fix 32 Fenrir findings across wolfProvider Fix fenrir findings across wolfProvider Apr 6, 2026
wolfSSL-Fenrir-bot
wolfSSL-Fenrir-bot reviewed Apr 6, 2026
View reviewed changes
Copy link
Copy Markdown

@wolfSSL-Fenrir-bot wolfSSL-Fenrir-bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fenrir Automated Review — PR #387

Scan targets checked: wolfprovider-bugs, wolfprovider-src

No new issues found in the changed files. ✅

@JeremiahM37 JeremiahM37 marked this pull request as ready for review April 6, 2026 15:47
aidangarske
aidangarske reviewed Apr 6, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@aidangarske aidangarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please don't just fix without adding test suites and verifying the actual failures here. We should write unit tests, validate these fail correctly, then fix so we know these are fixed and now tested.

@JeremiahM37
Copy link
Copy Markdown
Contributor Author

JeremiahM37 commented Apr 7, 2026

Please don't just fix without adding test suites and verifying the actual failures here. We should write unit tests, validate these fail correctly, then fix so we know these are fixed and now tested.

The fixes in this PR are primarily defensive hardening, so direct testing is limited. Added tests that validate the fixed code paths.

@JeremiahM37 JeremiahM37 force-pushed the wp-fenrir-fixes branch 2 times, most recently from 3530b82 to 0efbcaf Compare April 7, 2026 17:17
dgarske

This comment was marked as resolved.

Sign in to view

dgarske

This comment was marked as duplicate.

Sign in to view

dgarske

This comment was marked as resolved.

Sign in to view

dgarske

This comment was marked as resolved.

Sign in to view

dgarske
dgarske reviewed Apr 9, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐺 Skoll Code Review

Overall recommendation: APPROVE
Findings: 4 total — 3 posted, 1 skipped

Posted findings

  • [Medium] test_digest_multi_update declared/registered outside WP_HAVE_DIGEST guardtest/unit.h:120, test/unit.c:205
  • [Medium] RSA TLS implicit rejection writes 48 bytes without defensive outSize checksrc/wp_rsa_asym.c:501
  • [Medium] CMAC free does not call wc_CmacFree unlike GMAC's wc_AesFree additionsrc/wp_cmac.c:90-95
Skipped findings
  • [Low] Inconsistent chunk max values could benefit from named constants

Review generated by Skoll via openclaw

Comment thread src/wp_rsa_asym.c
Comment thread src/wp_cmac.c
@JeremiahM37 JeremiahM37 removed their assignment Apr 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske requested changes

@aidangarske aidangarske aidangarske left review comments

@wolfSSL-Fenrir-bot wolfSSL-Fenrir-bot wolfSSL-Fenrir-bot left review comments

@ColtonWilley ColtonWilley ColtonWilley approved these changes

Requested changes must be addressed to merge this pull request.

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@JeremiahM37 @dgarske @ColtonWilley @aidangarske @wolfSSL-Fenrir-bot @wolfSSL-Bot