Update wolfHSM pointer, fix minor issues#729
Update wolfHSM pointer, fix minor issues#729padelsbach wants to merge 2 commits intowolfSSL:masterfrom
Conversation
wolfSSL-Fenrir-bot
left a comment
wolfSSL-Fenrir-bot
left a comment
There was a problem hiding this comment.
Fenrir Automated Review — PR #729
Scan targets checked: wolfboot-bugs, wolfboot-src
Findings: 1
Low (1)
Crypto context devId changed from INVALID_DEVID to zero
File: hal/sim.c:173
Function: (file-scope initialization)
Category: HAL implementation flaws
The whServerCryptoContext crypto initialization was changed from explicitly setting .devId = INVALID_DEVID to zero-initialization ({0}). In wolfSSL, INVALID_DEVID is typically defined as -2, so devId will now be 0 instead of -2. A devId of 0 is a valid device identifier, which could cause the HSM server's crypto operations to be routed to an unintended crypto device rather than signaling "no device". This may be intentional if the updated wolfHSM submodule (also changed in this PR) now handles devId initialization internally, but if not, it could alter crypto operation routing in the simulator.
/* Before */
whServerCryptoContext crypto[1] = {{
.devId = INVALID_DEVID,
}};
/* After */
whServerCryptoContext crypto[1] = {0};Recommendation: Verify that the updated wolfHSM library (commit 18c46af) initializes devId to INVALID_DEVID internally during server setup, or that a devId of 0 is now the intended sentinel value. If neither is the case, restore the explicit .devId = INVALID_DEVID initialization to ensure crypto operations are not misrouted.
This review was generated automatically by Fenrir. Findings are non-blocking.
This field is no longer present in wolfHSM/wolfhsm/wh_server.h |
padelsbach
force-pushed
the
update-wolfhsm-submodule
branch
18 times, most recently
from
5302bca to
15f754f
Compare
padelsbach
force-pushed
the
update-wolfhsm-submodule
branch
from
15f754f to
6f580e8
Compare
src/image.c
Outdated
| ret = wc_MlDsaKey_VerifyCtx(&ml_dsa, sig, ML_DSA_IMAGE_SIGNATURE_SIZE, | ||
| NULL, 0, | ||
| img->sha_hash, WOLFBOOT_SHA_DIGEST_SIZE, | ||
| &verify_res); |
There was a problem hiding this comment.
Why did you have to change the MlDsa verify API used here?
There was a problem hiding this comment.
Just wondering if there is a reason for this, because it seems to be increasing the size of ML-DSA build by 82B. If it's needed it's not an issue and we can update the footprint limit
There was a problem hiding this comment.
wolfHSM switched to the new api to pass the FIPS tests and, iiuc, the HSM is used to sign the image and that causes the wolfboot verify to fail -- this is all in the sunny day test.
I'll look into other solutions to fall back to the old API. I had attempted something here, but it's not a complete solution: wolfSSL/wolfHSM#320
Let me know if you have any ideas
padelsbach
force-pushed
the
update-wolfhsm-submodule
branch
from
6f580e8 to
7e44671
Compare
3 participants
whServerCryptoContext.devIdinhal/sim.cSP_WORD_SIZEininclude/user_settings.h