Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add missing some error checks in ECP and bignum #3942

Merged
merged 4 commits into from
Dec 7, 2020
Merged

Add missing some error checks in ECP and bignum #3942

merged 4 commits into from
Dec 7, 2020

Conversation

gilles-peskine-arm
Copy link
Contributor

These are some minor bugs that I discovered while working on #3512. I made them a separate PR so that the bugs can be fixed quickly, given that the main PR (which is significantly more complex) has already missed several releases for lack of reviews.

I made this PR by rebasing the 2.16 PR. There was a trivial conflict in tests/suites/test_suite_mpi.data (this PR removes some redundant test cases, and the next test case has been renamed).

Backports: 2.16, 2.7.

@gilles-peskine-arm
Always test in-place addition and subtraction
56f943a 
Run all the addition and subtraction tests with the result aliased to
the first operand and with the result aliased to the second operand.
Before, only some of the aliasing possibilities were tested, for only
some of the functions, with only some inputs.

Signed-off-by: Gilles Peskine <[email protected]>
@gilles-peskine-arm
Fix memory leak in mbedtls_mpi_sub_abs
89b4130 
Fix a memory leak in mbedtls_mpi_sub_abs when the output parameter is
aliased to the second operand (X = A - X) and the result is negative.

Signed-off-by: Gilles Peskine <[email protected]>
@gilles-peskine-arm
Fix uncaught error if fix_negative fails
e54be3a 
fix_negative allocates memory for its result. The calling site didn't
check the return value, so an out-of-memory error could lead to an
incorrect calculation. Fix this.

Signed-off-by: Gilles Peskine <[email protected]>
@gilles-peskine-arm
Add changelog entry for the memory management fixes
e410bf7 
Signed-off-by: Gilles Peskine <[email protected]>
@gilles-peskine-arm gilles-peskine-arm added bug component-crypto Crypto primitives and low-level interfaces needs-review Every commit must be reviewed by at least two team members, needs-reviewer This PR needs someone to pick it up for review labels Dec 6, 2020
This was referenced Dec 6, 2020
Merged
Merged
ronald-cron-arm
ronald-cron-arm approved these changes Dec 7, 2020
View reviewed changes
Copy link
Contributor

@ronald-cron-arm ronald-cron-arm left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@gabor-mezei-arm gabor-mezei-arm self-requested a review December 7, 2020 11:07
@gabor-mezei-arm gabor-mezei-arm added approved Design and code approved - may be waiting for CI or backports and removed needs-review Every commit must be reviewed by at least two team members, needs-reviewer This PR needs someone to pick it up for review labels Dec 7, 2020
@gilles-peskine-arm gilles-peskine-arm merged commit d33aabf into Mbed-TLS:development Dec 7, 2020
@gilles-peskine-arm gilles-peskine-arm mentioned this pull request Dec 7, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gabor-mezei-arm gabor-mezei-arm gabor-mezei-arm approved these changes

@ronald-cron-arm ronald-cron-arm ronald-cron-arm approved these changes

Assignees
No one assigned
Labels
approved Design and code approved - may be waiting for CI or backports bug component-crypto Crypto primitives and low-level interfaces
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@gilles-peskine-arm @ronald-cron-arm @gabor-mezei-arm