Time-Stamp Protocol (RFC 3161)#10778
Conversation
76af38a to
dc97de1
Compare
|
2a0657a to
0d3affa
Compare
|
Jenkins: retest this please |
wolfSSL-Fenrir-bot
left a comment
There was a problem hiding this comment.
Fenrir Automated Review — PR #10778
Scan targets checked: wolfcrypt-bugs, wolfcrypt-port-bugs, wolfcrypt-rs-bugs, wolfcrypt-src, wolfssl-bugs, wolfssl-src
Findings: 2
1 finding(s) posted as inline comments (see file-level comments below)
Low (1)
asn_orig.c DecodeExtKeyUsage skips counting unrecognized OIDs
File: wolfcrypt/src/asn_orig.c:3959
Function: DecodeExtKeyUsage
Category: Copy-paste errors
The original-parser DecodeExtKeyUsage does continue on ASN_UNKNOWN_OID_E, bypassing the extExtKeyUsageOidCnt increment, so unknown KeyPurposeIds are not counted — contradicting its own comment and diverging from the template version in asn.c which does count them. A cert with timeStamping plus an extra unknown EKU would report count 1 and wrongly pass Tsp_CheckSignerCert's extExtKeyUsageOidCnt != 1 gate.
Recommendation: Count the OID before continue (or increment in the unknown-OID branch) so the original parser matches the template version's count semantics.
Referenced code: wolfcrypt/src/asn_orig.c:3959-3965 (7 lines)
This review was generated automatically by Fenrir. Findings are non-blocking.
0d3affa to
0b151dc
Compare
|
DecodeExtKeyUsage fixed |
|
Jenkins: retest this please Visual Studio Build: CRL script |
wolfSSL-Fenrir-bot
left a comment
There was a problem hiding this comment.
Fenrir Automated Review — PR #10778
Scan targets checked: wolfcrypt-bugs, wolfcrypt-port-bugs, wolfcrypt-rs-bugs, wolfcrypt-src, wolfssl-bugs, wolfssl-src
No new issues found in the changed files. ✅
dgarske
left a comment
There was a problem hiding this comment.
Skoll Multi-Scan Review
Modes: review + review-securityOverall recommendation: COMMENT
Findings: 4 total — 4 posted, 0 skipped
4 finding(s) posted as inline comments (see file-level comments below)
Posted findings
- [Low] [review-security] wolfssl_asn1_integer_new_buf() builds a negative-looking DER INTEGER when the value's MSB is set —
src/ssl_asn1.c:1186-1206 - [Low] [review] Possible shift-by-32 (undefined behavior) when decoding an empty PKIFailureInfo BIT STRING —
wolfcrypt/src/asn_tsp.c:wc_TspResponse_Decode - [Low] [review] ssl_tsp.c depends on ssl_asn1.c but the latter is conditionally excluded by OPENSSL_EXTRA_NO_ASN1 —
src/ssl.c:453-459 - [Low] [review+review-security] Large 2048-byte on-stack request buffer in new responder path does not use WOLFSSL_SMALL_STACK pattern —
src/ssl_tsp.c:2243
Review generated by Skoll
151e6c8 to
6cec72d
Compare
|
Jenkins: retest this please |
dgarske
left a comment
There was a problem hiding this comment.
Skoll Multi-Scan Review
Modes: review + review-securityOverall recommendation: COMMENT
Findings: 3 total — 2 posted, 1 skipped
2 finding(s) posted as inline comments (see file-level comments below)
Posted findings
- [Low] [review] TS_REQ_to_TS_VERIFY_CTX leaves imprintSz set when imprint allocation fails on a reused ctx —
src/ssl_tsp.c:1645-1653 - [Low] [review] Stale 'not supported' comment for TS_VFY_DATA contradicts the implemented behavior —
src/ssl_tsp.c:1751-1807
Skipped findings
- [Low]
TSA responder private key DER freed without zeroization
Review generated by Skoll
|
Jenkins: retest this please FIPS fails |
Frauschi
left a comment
There was a problem hiding this comment.
Some smaller issues only
f9fd6dc to
2e8168b
Compare
2e8168b to
c90d41e
Compare
|
Jenkins: retest this please Tiny TLS1.3 Tests |
|
the tiny-tls failures are unrelated and will be fixed by #10835 |
c90d41e to
9b5df72
Compare
|
I rebased and it went crazy. |
9b5df72 to
3b0b84b
Compare
|
Jenkins retest this please. |
dgarske
left a comment
There was a problem hiding this comment.
Skoll Multi-Scan Review
Modes: review + review-securityOverall recommendation: COMMENT
Findings: 5 total — 4 posted, 1 skipped
4 finding(s) posted as inline comments (see file-level comments below)
Posted findings
- [Low] [review] TS_REQ_set_policy_id accepts empty OID and reports success (inconsistent with set_def_policy) —
src/ssl_tsp.c:~830-865 - [Info] [review-security] wc_TspResponse_Verify with NULL cert and no CM establishes no trust —
wolfcrypt/src/tsp.c:2162 - [Info] [review] TSP_RESP_REQ_DER_SZ macro defined between the doxygen comment and the function signature —
src/ssl_tsp.c:2238-2254 - [Info] [review] wolfssl_asn1_integer_new_buf relies solely on len0 guard, no defensive val NULL check —
src/ssl_asn1.c:1187-1216
Skipped findings
- [Low]
TSA private key DER not zeroized before free in responder context
Review generated by Skoll
3b0b84b to
f4971f4
Compare
Implementation in wolfCrypt OpenSSL compatibility layer in wolfSSL Added tests, certificates, examples.
f4971f4 to
4889089
Compare
Description
Implementation in wolfCrypt
OpenSSL compatibility layer in wolfSSL
Added tests, certificates, examples.
Testing
Different configuration with --enable-tsp.