Avoid use of uninitialized array
This commit is contained in:
Andras Fekete
parent
2877b7be50
commit
42c241dbbf
13
src/tls13.c
13
src/tls13.c
@ -4723,10 +4723,14 @@ static int EchCheckAcceptance(WOLFSSL* ssl, const byte* input,
|
||||
int digestSize;
|
||||
HS_Hashes* tmpHashes;
|
||||
HS_Hashes* acceptHashes;
|
||||
byte zeros[WC_MAX_DIGEST_SIZE] = {0};
|
||||
byte zeros[WC_MAX_DIGEST_SIZE];
|
||||
byte transcriptEchConf[WC_MAX_DIGEST_SIZE];
|
||||
byte expandLabelPrk[WC_MAX_DIGEST_SIZE];
|
||||
byte acceptConfirmation[ECH_ACCEPT_CONFIRMATION_SZ];
|
||||
XMEMSET(zeros, 0, sizeof(zeros));
|
||||
XMEMSET(transcriptEchConf, 0, sizeof(transcriptEchConf));
|
||||
XMEMSET(expandLabelPrk, 0, sizeof(expandLabelPrk));
|
||||
XMEMSET(acceptConfirmation, 0, sizeof(acceptConfirmation));
|
||||
/* copy ech hashes to accept */
|
||||
ret = InitHandshakeHashesAndCopy(ssl, ssl->hsHashesEch, &acceptHashes);
|
||||
/* swap hsHashes to acceptHashes */
|
||||
@ -4839,9 +4843,12 @@ static int EchWriteAcceptance(WOLFSSL* ssl, byte* output,
|
||||
int digestSize;
|
||||
HS_Hashes* tmpHashes;
|
||||
HS_Hashes* acceptHashes;
|
||||
byte zeros[WC_MAX_DIGEST_SIZE] = {0};
|
||||
byte zeros[WC_MAX_DIGEST_SIZE];
|
||||
byte transcriptEchConf[WC_MAX_DIGEST_SIZE];
|
||||
byte expandLabelPrk[WC_MAX_DIGEST_SIZE];
|
||||
XMEMSET(zeros, 0, sizeof(zeros));
|
||||
XMEMSET(transcriptEchConf, 0, sizeof(transcriptEchConf));
|
||||
XMEMSET(expandLabelPrk, 0, sizeof(expandLabelPrk));
|
||||
|
||||
/* copy ech hashes to accept */
|
||||
ret = InitHandshakeHashesAndCopy(ssl, ssl->hsHashes, &acceptHashes);
|
||||
@ -5710,7 +5717,7 @@ static void RefineSuites(WOLFSSL* ssl, Suites* peerSuites)
|
||||
if (AllocateSuites(ssl) != 0)
|
||||
return;
|
||||
|
||||
XMEMSET(suites, 0, WOLFSSL_MAX_SUITE_SZ);
|
||||
XMEMSET(suites, 0, sizeof(suites));
|
||||
|
||||
if (!ssl->options.useClientOrder) {
|
||||
/* Server order refining. */
|
||||
|
||||
@ -16876,6 +16876,7 @@ static int test_wc_Chacha_SetKey(void)
|
||||
word32 keySz = (word32)(sizeof(key)/sizeof(byte));
|
||||
byte cipher[128];
|
||||
|
||||
XMEMSET(cipher, 0, sizeof(cipher));
|
||||
ExpectIntEQ(wc_Chacha_SetKey(&ctx, key, keySz), 0);
|
||||
/* Test bad args. */
|
||||
ExpectIntEQ(wc_Chacha_SetKey(NULL, key, keySz), BAD_FUNC_ARG);
|
||||
@ -54043,6 +54044,8 @@ static int test_wolfssl_EVP_chacha20(void)
|
||||
EVP_CIPHER_CTX* ctx = NULL;
|
||||
int outSz;
|
||||
|
||||
XMEMSET(key, 0, sizeof(key));
|
||||
XMEMSET(iv, 0, sizeof(iv));
|
||||
/* Encrypt. */
|
||||
ExpectNotNull((ctx = EVP_CIPHER_CTX_new()));
|
||||
ExpectIntEQ(EVP_EncryptInit_ex(ctx, EVP_chacha20(), NULL, NULL,
|
||||
|
||||
12
tests/srp.c
12
tests/srp.c
@ -208,6 +208,7 @@ static void test_SrpSetPassword(void)
|
||||
byte v[64];
|
||||
word32 vSz = 0;
|
||||
|
||||
XMEMSET(v, 0, sizeof(v));
|
||||
AssertIntEQ(0, wc_SrpInit(&srp, SRP_TYPE_SHA, SRP_CLIENT_SIDE));
|
||||
AssertIntEQ(0, wc_SrpSetUsername(&srp, username, usernameSz));
|
||||
|
||||
@ -262,6 +263,7 @@ static void test_SrpGetPublic(void)
|
||||
byte pub[64];
|
||||
word32 pubSz = 0;
|
||||
|
||||
XMEMSET(pub, 0, sizeof(pub));
|
||||
AssertIntEQ(0, wc_SrpInit(&srp, SRP_TYPE_SHA, SRP_CLIENT_SIDE));
|
||||
AssertIntEQ(0, wc_SrpSetUsername(&srp, username, usernameSz));
|
||||
AssertIntEQ(0, wc_SrpSetParams(&srp, srp_N, sizeof(srp_N),
|
||||
@ -318,6 +320,8 @@ static void test_SrpComputeKey(void)
|
||||
word32 clientPubKeySz = 64;
|
||||
word32 serverPubKeySz = 64;
|
||||
|
||||
XMEMSET(clientPubKey, 0, sizeof(clientPubKey));
|
||||
XMEMSET(serverPubKey, 0, sizeof(serverPubKey));
|
||||
AssertIntEQ(0, wc_SrpInit(&cli, SRP_TYPE_SHA, SRP_CLIENT_SIDE));
|
||||
AssertIntEQ(0, wc_SrpInit(&srv, SRP_TYPE_SHA, SRP_SERVER_SIDE));
|
||||
|
||||
@ -388,6 +392,10 @@ static void test_SrpGetProofAndVerify(void)
|
||||
word32 clientProofSz = SRP_MAX_DIGEST_SIZE;
|
||||
word32 serverProofSz = SRP_MAX_DIGEST_SIZE;
|
||||
|
||||
XMEMSET(clientPubKey, 0, sizeof(clientPubKey));
|
||||
XMEMSET(serverPubKey, 0, sizeof(serverPubKey));
|
||||
XMEMSET(clientProof, 0, sizeof(clientProof));
|
||||
XMEMSET(serverProof, 0, sizeof(serverProof));
|
||||
AssertIntEQ(0, wc_SrpInit(&cli, SRP_TYPE_SHA, SRP_CLIENT_SIDE));
|
||||
AssertIntEQ(0, wc_SrpInit(&srv, SRP_TYPE_SHA, SRP_SERVER_SIDE));
|
||||
|
||||
@ -792,6 +800,10 @@ static void test_SrpKeyGenFunc_cb(void)
|
||||
};
|
||||
#endif
|
||||
|
||||
XMEMSET(clientPubKey, 0, sizeof(clientPubKey));
|
||||
XMEMSET(serverPubKey, 0, sizeof(serverPubKey));
|
||||
XMEMSET(clientProof, 0, sizeof(clientProof));
|
||||
XMEMSET(serverProof, 0, sizeof(serverProof));
|
||||
AssertIntEQ(0, wc_SrpInit(&cli, SRP_TYPE_SHA512, SRP_CLIENT_SIDE));
|
||||
AssertIntEQ(0, wc_SrpInit(&srv, SRP_TYPE_SHA512, SRP_SERVER_SIDE));
|
||||
|
||||
|
||||
@ -4732,6 +4732,7 @@ void bench_chacha(void)
|
||||
double start;
|
||||
int i, count;
|
||||
|
||||
XMEMSET(&enc, 0, sizeof(enc));
|
||||
wc_Chacha_SetKey(&enc, bench_key, 16);
|
||||
|
||||
bench_stats_start(&count, &start);
|
||||
|
||||
@ -1125,6 +1125,7 @@ static int wc_HpkeContextOpenBase(Hpke* hpke, HpkeBaseContext* context,
|
||||
return BAD_FUNC_ARG;
|
||||
}
|
||||
|
||||
XMEMSET(nonce, 0, sizeof(nonce));
|
||||
#ifdef WOLFSSL_SMALL_STACK
|
||||
aes_key = (Aes*)XMALLOC(sizeof(Aes), hpke->heap, DYNAMIC_TYPE_AES);
|
||||
if (aes_key == NULL) {
|
||||
|
||||
@ -8693,6 +8693,7 @@ static int wc_PKCS7_DecryptKtri(PKCS7* pkcs7, byte* in, word32 inSz,
|
||||
mp_int serialNum[1];
|
||||
RsaKey privKey[1];
|
||||
#endif
|
||||
XMEMSET(issuerHash, 0, sizeof(issuerHash));
|
||||
|
||||
#if defined(WOLFSSL_SM2) && defined(WOLFSSL_SM3)
|
||||
keyIdSize = wc_HashGetDigestSize(wc_HashTypeConvert(HashIdAlg(
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user