Skip to content

Ed448: check for public key presence on export#10656

Merged
dgarske merged 8 commits into
wolfSSL:masterfrom
holtrop-wolfssl:f-4427
Jun 12, 2026
Merged

Ed448: check for public key presence on export#10656
dgarske merged 8 commits into
wolfSSL:masterfrom
holtrop-wolfssl:f-4427

Conversation

@holtrop-wolfssl

@holtrop-wolfssl holtrop-wolfssl commented Jun 10, 2026

Copy link
Copy Markdown
Contributor

Description

Ed448: check for public key presence on export

Return PUBLIC_KEY_E for wc_ed25519_export_key if public key is not present.
Return PUBLIC_KEY_E for wc_ed448_export_key if public key is not present.
Rename several inLen parameters to outLen for consistency.

Fix F-4427

Testing

How did you test?

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@holtrop-wolfssl holtrop-wolfssl self-assigned this Jun 10, 2026
Copilot AI review requested due to automatic review settings June 10, 2026 19:12
holtrop-wolfssl
holtrop-wolfssl commented Jun 10, 2026
View reviewed changes
Comment thread doc/dox_comments/header_files/asn_public.h
Copilot AI reviewed Jun 10, 2026

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

@github-actions

github-actions Bot commented Jun 11, 2026
edited
Loading

Copy link
Copy Markdown

MemBrowse Memory Report

linuxkm-pie

  • Data: __patchable_function_entries +16 B (+0.1%, 24,288 B)

linuxkm-standard

@holtrop-wolfssl holtrop-wolfssl added the For This Release Release version 5.9.2 label Jun 11, 2026
@dgarske dgarske requested a review from Copilot June 11, 2026 20:55
Copilot AI reviewed Jun 11, 2026
View reviewed changes

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Copilot reviewed 13 out of 13 changed files in this pull request and generated 3 comments.

Comment thread doc/dox_comments/header_files/asn_public.h Outdated
Comment thread tests/api/test_ed448.c
Comment thread wolfcrypt/src/ed448.c
dgarske
dgarske reviewed Jun 11, 2026
View reviewed changes

@dgarske dgarske left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Skoll Code Review

Scan type: reviewOverall recommendation: COMMENT
Findings: 2 total — 2 posted, 0 skipped
1 finding(s) posted as inline comments (see file-level comments below)

Posted findings

  • [Medium] New PUBLIC_KEY_E return value not documented for wc_ed448_export_publicwolfcrypt/src/ed448.c:1109-1143, doc/dox_comments/header_files/ed448.h:663-667
  • [Low] Public-API semantics change to wc_ed25519_export_key (private-only keys now error)wolfcrypt/src/ed25519.c:1523-1537

Review generated by Skoll

Comment thread wolfcrypt/src/ed25519.c
@holtrop-wolfssl

holtrop-wolfssl commented Jun 12, 2026

Copy link
Copy Markdown
Contributor Author

retest this please (Timeout has been exceeded)

@holtrop-wolfssl holtrop-wolfssl removed their assignment Jun 12, 2026
@dgarske dgarske self-requested a review June 12, 2026 17:11
dgarske
dgarske reviewed Jun 12, 2026
View reviewed changes

@dgarske dgarske left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Skoll Multi-Scan Review

Modes: review + review-securityOverall recommendation: REQUEST_CHANGES
Findings: 6 total — 6 posted, 0 skipped
4 finding(s) posted as inline comments (see file-level comments below)

Posted findings

  • [High] [review] Ed448 ToDer test asserts PUBLIC_KEY_E unconditionally; fails under FIPS 7.0.0tests/api/test_ed448.c:503-505
  • [High] [review] New wolfCrypt export_key tests assert PUBLIC_KEY_E from export_public without FIPS guardwolfcrypt/test/test.c:44905, 46721
  • [Low] Public API behavior change: export now returns PUBLIC_KEY_E for private-only keyswolfcrypt/src/ed25519.c:1523-1537, wolfcrypt/src/ed448.c:1119-1143
  • [Low] New PUBLIC_KEY_E return value not documented for ed448 export functionswolfcrypt/src/ed448.c:1109-1118
  • [Low] [review] New PUBLIC_KEY_E return of wc_ed448_export_public is undocumentedwolfcrypt/src/ed448.c:1115-1135
  • [Info] [review-security] Intentional public-API return-contract change in wc_ed25519_export_key (private-only keys now yield PUBLIC_KEY_E)wolfcrypt/src/ed25519.c:1523-1537

Review generated by Skoll

Comment thread tests/api/test_ed448.c
Comment thread wolfcrypt/test/test.c
Comment thread wolfcrypt/src/ed448.c
Comment thread wolfcrypt/src/ed25519.c
dgarske
dgarske requested changes Jun 12, 2026
View reviewed changes

@dgarske dgarske left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See #10656 (review)
And you have smoke test merge conflicts. Are you use git merge (if so don't). Use git rebase master and a force push

@dgarske

dgarske commented Jun 12, 2026

Copy link
Copy Markdown
Member

Jenkins retest this please "Build 'PRB-generic-config-parser' failed with result: FAILURE" . resume.test failure.

@dgarske dgarske merged commit bfef92c into wolfSSL:master Jun 12, 2026
304 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@dgarske dgarske dgarske approved these changes

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

For This Release Release version 5.9.2

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@holtrop-wolfssl @dgarske @wolfSSL-Bot