Skip to content

refactor to ImportPeerECCKey #9300

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 24, 2025
Merged

refactor to ImportPeerECCKey #9300

merged 1 commit into from
Oct 24, 2025
+206 −328

Conversation

@effbiae
Copy link
Contributor

@effbiae effbiae commented Oct 15, 2025
edited
Loading

Description

refactor duplicate code to ImportPeerECCKey()

Testing

./configure --enable-all && make check && \
./configure --enable-curve25519 --disable-ecc && make check && \
./configure CFLAGS="-pedantic -Wno-overlength-strings -Wdeclaration-after-statement -DTEST_LIBWOLFSSL_SOURCES_INCLUSION_SEQUENCE" --enable-sniffer --enable-curve25519 --enable-curve448 --enable-enckeys CPPFLAGS=-DWOLFSSL_DH_EXTRA --enable-debug && make check

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@wolfSSL-Bot
Copy link

Can one of the admins verify this patch?

@dgarske
Copy link
Contributor

dgarske commented Oct 15, 2025

Okay to test. Contributor agreement on file

dgarske
dgarske requested changes Oct 15, 2025
View reviewed changes
Copy link
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This breaks the following test:

trying server command line[681]: SuiteTest -v 2 -l ECDH-RSA-DES-CBC3-SHA -c ./certs/server-ecc-rsa.pem -k ./certs/ecc-key.pem -2 -p 0 
listening on port 40235
trying client command line[682]: SuiteTest -v 2 -l ECDH-RSA-DES-CBC3-SHA -2 -p 40235 
connecting to 127.0.0.1:40235
SSL_accept error -353, ECC Make Key failure
wolfSSL error: SSL_accept failed
wolfSSL_connect error -313, received alert fatal error
wolfSSL error: wolfSSL_connect failed

@dgarske dgarske assigned effbiae and unassigned dgarske Oct 15, 2025
@effbiae
Copy link
Contributor Author

effbiae commented Oct 16, 2025

This breaks the following test:

trying server command line[681]: SuiteTest -v 2 -l ECDH-RSA-DES-CBC3-SHA -c ./certs/server-ecc-rsa.pem -k ./certs/ecc-key.pem -2 -p 0 
listening on port 40235
trying client command line[682]: SuiteTest -v 2 -l ECDH-RSA-DES-CBC3-SHA -2 -p 40235 
connecting to 127.0.0.1:40235
SSL_accept error -353, ECC Make Key failure
wolfSSL error: SSL_accept failed
wolfSSL_connect error -313, received alert fatal error
wolfSSL error: wolfSSL_connect failed

i've fixed a bug that would probably trigger this failure but i'm not sure how to reproduce this test so not certain...

@dgarske dgarske self-requested a review October 16, 2025 15:14
@dgarske dgarske assigned dgarske and unassigned effbiae Oct 16, 2025
@dgarske dgarske requested a review from SparkiDev October 16, 2025 22:07
@dgarske dgarske assigned SparkiDev and unassigned dgarske Oct 16, 2025
dgarske
dgarske requested changes Oct 17, 2025
View reviewed changes
Copy link
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Very nice refactor. Almost there.

@dgarske dgarske assigned effbiae and unassigned SparkiDev and effbiae Oct 17, 2025
dgarske
dgarske requested changes Oct 21, 2025
View reviewed changes
Copy link
Contributor

@dgarske dgarske left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks very good now, but please double check some of the PK callback haveCb logic wasn't lost in ecdhe_psk_kea case. Thank you

@dgarske dgarske assigned effbiae and unassigned effbiae Oct 21, 2025
@dgarske
Copy link
Contributor

dgarske commented Oct 22, 2025

Jenkins retest this please

@dgarske dgarske merged commit 4282ad3 into wolfSSL:master Oct 24, 2025
274 of 277 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske approved these changes

@SparkiDev SparkiDev SparkiDev approved these changes

@JacobBarthelmeh JacobBarthelmeh Awaiting requested review from JacobBarthelmeh

Assignees

@wolfSSL-Bot wolfSSL-Bot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@effbiae @wolfSSL-Bot @dgarske @SparkiDev