Skip to content

Allow for unknown OIDs in extensions in wolfSSL_X509_set_ext()#6364

Merged
JacobBarthelmeh merged 2 commits intowolfSSL:masterfrom
anhu:compat_unknown_oid
May 8, 2023
Merged

Allow for unknown OIDs in extensions in wolfSSL_X509_set_ext()#6364
JacobBarthelmeh merged 2 commits intowolfSSL:masterfrom
anhu:compat_unknown_oid

Conversation

@anhu
Copy link
Copy Markdown
Member

@anhu anhu commented May 1, 2023

...and add some testing to show we properly inserted the extensions.

Testing

Added tests to verify that extensions were inserted properly.

Checklist

  • added tests
  • updated/added doxygen
  • updated appropriate READMEs
  • Updated manual and documentation

@anhu anhu requested a review from JacobBarthelmeh May 1, 2023 23:19
@anhu anhu self-assigned this May 1, 2023
@anhu
Allow for unknown OIDs in extensions in wolfSSL_X509_set_ext()
0ebe581 
...and add some testing to show we properly inserted the extensions.
@anhu anhu force-pushed the compat_unknown_oid branch from 408ee05 to 0ebe581 Compare May 2, 2023 16:43
@anhu
Copy link
Copy Markdown
Member Author

anhu commented May 2, 2023

retest please

@anhu
Copy link
Copy Markdown
Member Author

anhu commented May 2, 2023

jenkins retest this please

@anhu anhu assigned JacobBarthelmeh and unassigned anhu May 2, 2023
JacobBarthelmeh
JacobBarthelmeh requested changes May 3, 2023
View reviewed changes
Comment thread src/x509.c Outdated
XFREE(cert, NULL, DYNAMIC_TYPE_DCERT);
#endif
return NULL;
if (ext->obj != NULL) {
Copy link
Copy Markdown
Contributor

@JacobBarthelmeh JacobBarthelmeh May 3, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Continuing on without a break if ext->obj is null results in potential null derefrences. An example would be if wolfSSL_OBJ_nid2obj failed and returned null and the case BASIC_CA_OID is used.

Copy link
Copy Markdown
Member Author

@anhu anhu May 8, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Woah!!! Sharp eye @JacobBarthelmeh !! Thank you very much for spotting that. Its been fixed.

@anhu anhu requested a review from JacobBarthelmeh May 8, 2023 19:11
@anhu anhu assigned JacobBarthelmeh and unassigned anhu May 8, 2023
JacobBarthelmeh
JacobBarthelmeh approved these changes May 8, 2023
View reviewed changes
Copy link
Copy Markdown
Contributor

@JacobBarthelmeh JacobBarthelmeh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please follow up on this with adding WOLFSSL_CUSTOM_OID to automated CI tests if not already there.

@JacobBarthelmeh JacobBarthelmeh merged commit cdeba4e into wolfSSL:master May 8, 2023
@anhu anhu deleted the compat_unknown_oid branch March 24, 2025 22:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JacobBarthelmeh JacobBarthelmeh JacobBarthelmeh approved these changes

Assignees

@JacobBarthelmeh JacobBarthelmeh

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@anhu @JacobBarthelmeh