Merge branch 'development_2.x' into development_2.x-restricted

* development_2.x: Reword changelog - Test Resource Leak Fix fd range for select on Windows Refactor file descriptor checks into a common function Update changelog formatting - Missing Free Context Update changelog formatting Missing Free Context Update changelog formatting - Missing Free Context Changelog entry for Free Context in test_suite_aes fix Free context in at the end of aes_crypt_xts_size() Fix copypasta in test data Use UNUSED wherever applicable in derive_input tests Fix missing state check for tls12_prf output Key derivation: add test cases where the secret is missing Add bad-workflow key derivation tests More explicit names for some bad-workflow key derivation tests
2025-08-07 06:42:56 +03:00 · 2021-06-22 10:42:04 +02:00
parent b7a87e3059 c158213b2e
commit 82a5a9dcdd
8 changed files with 193 additions and 31 deletions
--- a/library/net_sockets.c
+++ b/library/net_sockets.c
@@ -135,6 +135,31 @@ static int net_prepare( void )
    return( 0 );
 }

+/*
+ * Return 0 if the file descriptor is valid, an error otherwise.
+ * If for_select != 0, check whether the file descriptor is within the range
+ * allowed for fd_set used for the FD_xxx macros and the select() function.
+ */
+static int check_fd( int fd, int for_select )
+{
+    if( fd < 0 )
+        return( MBEDTLS_ERR_NET_INVALID_CONTEXT );
+
+#if (defined(_WIN32) || defined(_WIN32_WCE)) && !defined(EFIX64) && \
+    !defined(EFI32)
+    (void) for_select;
+#else
+    /* A limitation of select() is that it only works with file descriptors
+     * that are strictly less than FD_SETSIZE. This is a limitation of the
+     * fd_set type. Error out early, because attempting to call FD_SET on a
+     * large file descriptor is a buffer overflow on typical platforms. */
+    if( for_select && fd >= FD_SETSIZE )
+        return( MBEDTLS_ERR_NET_POLL_FAILED );
+#endif
+
+    return( 0 );
+}
+
 /*
 * Initialize a context
 */
@@ -466,15 +491,9 @@ int mbedtls_net_poll( mbedtls_net_context *ctx, uint32_t rw, uint32_t timeout )

    int fd = ctx->fd;

-    if( fd < 0 )
-        return( MBEDTLS_ERR_NET_INVALID_CONTEXT );
-
-    /* A limitation of select() is that it only works with file descriptors
-     * that are strictly less than FD_SETSIZE. This is a limitation of the
-     * fd_set type. Error out early, because attempting to call FD_SET on a
-     * large file descriptor is a buffer overflow on typical platforms. */
-    if( fd >= FD_SETSIZE )
-        return( MBEDTLS_ERR_NET_POLL_FAILED );
+    ret = check_fd( fd, 1 );
+    if( ret != 0 )
+        return( ret );

 #if defined(__has_feature)
 #if __has_feature(memory_sanitizer)
@@ -553,8 +572,9 @@ int mbedtls_net_recv( void *ctx, unsigned char *buf, size_t len )
    int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
    int fd = ((mbedtls_net_context *) ctx)->fd;

-    if( fd < 0 )
-        return( MBEDTLS_ERR_NET_INVALID_CONTEXT );
+    ret = check_fd( fd, 0 );
+    if( ret != 0 )
+        return( ret );

    ret = (int) read( fd, buf, len );

@@ -592,15 +612,9 @@ int mbedtls_net_recv_timeout( void *ctx, unsigned char *buf,
    fd_set read_fds;
    int fd = ((mbedtls_net_context *) ctx)->fd;

-    if( fd < 0 )
-        return( MBEDTLS_ERR_NET_INVALID_CONTEXT );
-
-    /* A limitation of select() is that it only works with file descriptors
-     * that are strictly less than FD_SETSIZE. This is a limitation of the
-     * fd_set type. Error out early, because attempting to call FD_SET on a
-     * large file descriptor is a buffer overflow on typical platforms. */
-    if( fd >= FD_SETSIZE )
-        return( MBEDTLS_ERR_NET_POLL_FAILED );
+    ret = check_fd( fd, 1 );
+    if( ret != 0 )
+        return( ret );

    FD_ZERO( &read_fds );
    FD_SET( fd, &read_fds );
@@ -640,8 +654,9 @@ int mbedtls_net_send( void *ctx, const unsigned char *buf, size_t len )
    int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
    int fd = ((mbedtls_net_context *) ctx)->fd;

-    if( fd < 0 )
-        return( MBEDTLS_ERR_NET_INVALID_CONTEXT );
+    ret = check_fd( fd, 0 );
+    if( ret != 0 )
+        return( ret );

    ret = (int) write( fd, buf, len );

--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -3785,6 +3785,17 @@ static psa_status_t psa_key_derivation_tls12_prf_read(
    psa_status_t status;
    uint8_t offset, length;

+    switch( tls12_prf->state )
+    {
+        case PSA_TLS12_PRF_STATE_LABEL_SET:
+            tls12_prf->state = PSA_TLS12_PRF_STATE_OUTPUT;
+            break;
+        case PSA_TLS12_PRF_STATE_OUTPUT:
+            break;
+        default:
+            return( PSA_ERROR_BAD_STATE );
+    }
+
    while( output_length != 0 )
    {
        /* Check if we have fully processed the current block. */