[openssl/openssl] 4a5088: ssl_cipher_get_overhead(): Replace size_t with int...

2024-05-10 Thread JiashengJiang 
  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 4a5088259e78127354f497931568de409ac905fc
  
https://github.com/openssl/openssl/commit/4a5088259e78127354f497931568de409ac905fc
  Author: Jiasheng Jiang 
  Date:   2024-05-10 (Fri, 10 May 2024)

  Changed paths:
M ssl/ssl_ciph.c

  Log Message:
  ---
  ssl_cipher_get_overhead(): Replace size_t with int and add the checks

Replace the type of "mac", "out", and "blk" with int to avoid implicit
conversion when it is assigned by EVP_MD_get_size(),
EVP_CIPHER_get_iv_length(), and EVP_CIPHER_get_block_size().
Moreover, add the checks to avoid integer overflow.

Fixes: 045bd04706 ("Add DTLS_get_data_mtu() function")
Signed-off-by: Jiasheng Jiang 

Reviewed-by: Tom Cosgrove 
Reviewed-by: Tomas Mraz 
(Merged from https://github.com/openssl/openssl/pull/23935)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 168e49: test/threadstest.c: Add checks for CRYPTO_THREAD_l...

2024-05-06 Thread JiashengJiang 
  Branch: refs/heads/openssl-3.3
  Home:   https://github.com/openssl/openssl
  Commit: 168e49b5ab9e110c2cf618d025418d480f5166d6
  
https://github.com/openssl/openssl/commit/168e49b5ab9e110c2cf618d025418d480f5166d6
  Author: Jiasheng Jiang 
  Date:   2024-05-06 (Mon, 06 May 2024)

  Changed paths:
M test/threadstest.c

  Log Message:
  ---
  test/threadstest.c: Add checks for CRYPTO_THREAD_lock_new()

Add checks for the return value of CRYPTO_THREAD_lock_new() in order to avoid 
Null pointer dereference.

Fixes: 5f8b812931 ("Add locking to atomic operations in rw/rcu tests")
Fixes: d0e1a0ae70 ("RCU lock implementation")
Fixes: 71a04cfca0 ("Implement new multi-threading API")
Signed-off-by: Jiasheng Jiang 

Reviewed-by: Neil Horman 
Reviewed-by: Tomas Mraz 
(Merged from https://github.com/openssl/openssl/pull/24313)

(cherry picked from commit 327261c076b8468382e1effea14d79446cc22b4d)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 327261: test/threadstest.c: Add checks for CRYPTO_THREAD_l...

2024-05-06 Thread JiashengJiang 
  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 327261c076b8468382e1effea14d79446cc22b4d
  
https://github.com/openssl/openssl/commit/327261c076b8468382e1effea14d79446cc22b4d
  Author: Jiasheng Jiang 
  Date:   2024-05-06 (Mon, 06 May 2024)

  Changed paths:
M test/threadstest.c

  Log Message:
  ---
  test/threadstest.c: Add checks for CRYPTO_THREAD_lock_new()

Add checks for the return value of CRYPTO_THREAD_lock_new() in order to avoid 
Null pointer dereference.

Fixes: 5f8b812931 ("Add locking to atomic operations in rw/rcu tests")
Fixes: d0e1a0ae70 ("RCU lock implementation")
Fixes: 71a04cfca0 ("Implement new multi-threading API")
Signed-off-by: Jiasheng Jiang 

Reviewed-by: Neil Horman 
Reviewed-by: Tomas Mraz 
(Merged from https://github.com/openssl/openssl/pull/24313)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications

[openssl/openssl] 48e3cf: ssl/statem: Replace size_t with int and add the ch...

2024-04-26 Thread JiashengJiang 
  Branch: refs/heads/master
  Home:   https://github.com/openssl/openssl
  Commit: 48e3cf25a80db9a2991daccb0d8d1848065bca63
  
https://github.com/openssl/openssl/commit/48e3cf25a80db9a2991daccb0d8d1848065bca63
  Author: Jiasheng Jiang 
  Date:   2024-04-26 (Fri, 26 Apr 2024)

  Changed paths:
M ssl/statem/extensions_clnt.c
M ssl/statem/extensions_srvr.c

  Log Message:
  ---
  ssl/statem: Replace size_t with int and add the checks

Replace the type of variables with int to avoid implicit conversion when it is 
assigned by EVP_MD_get_size().
Moreover, add the checks to avoid integer overflow.

Fixes: 6594189 ("Merge early_data_info extension into early_data")
Fixes: 9368f86 ("Add TLSv1.3 client side external PSK support")
Fixes: 1053a6e ("Implement Server side of PSK extension parsing")
Signed-off-by: Jiasheng Jiang 

Reviewed-by: Tom Cosgrove 
Reviewed-by: Tomas Mraz 
(Merged from https://github.com/openssl/openssl/pull/23937)



To unsubscribe from these emails, change your notification settings at 
https://github.com/openssl/openssl/settings/notifications