Skip to content

tests: Mark rc as public via declassification#2473

Open
Hussain1811 wants to merge 1 commit into
open-quantum-safe:mainfrom
Hussain1811:declassify_after_api_call
Open

tests: Mark rc as public via declassification#2473
Hussain1811 wants to merge 1 commit into
open-quantum-safe:mainfrom
Hussain1811:declassify_after_api_call

Conversation

@Hussain1811

Copy link
Copy Markdown
Contributor

Purpose
Without the declassify call, Valgrind would report a false positive — flagging the if (rc != OQS_SUCCESS) check as secret-dependent control flow, when in reality the return code is intentionally a public value.

Checklist
Does this PR change the input/output behaviour of a cryptographic algorithm (i.e., does it change known answer test values)?
No
Does this PR change the list of algorithms available -- either adding, removing, or renaming? Does this PR otherwise change an API?
No

Without the declassify call, Valgrind would report a false positive —
flagging the if (rc != OQS_SUCCESS) check as secret-dependent control
flow, when in reality the return code is intentionally a public value.

Signed-off-by: Sadiq Hussain M <Sadiq.Hussain.M@ibm.com>
@coveralls

Copy link
Copy Markdown

Coverage Status

Coverage is 82.294%Hussain1811:declassify_after_api_call into open-quantum-safe:main. No base build found for open-quantum-safe:main.

@Hussain1811 Hussain1811 marked this pull request as ready for review June 25, 2026 13:04

@bhess bhess left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the improvements @Hussain1811, LGTM.

It seems that since we currently don't CT-test the stfl signatures and the extended tests didn't pop up as a false positive.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants