fixes for python

Author: julek-wolfssl

src/ssl.c

@@ -10450,8 +10450,7 @@ const char* wolfSSL_CIPHER_get_name(const WOLFSSL_CIPHER* cipher)
         return NULL;
     }
 
-    #if !defined(WOLFSSL_CIPHER_INTERNALNAME) && !defined(NO_ERROR_STRINGS) && \
-        !defined(WOLFSSL_QT)
+    #if !defined(WOLFSSL_CIPHER_INTERNALNAME) && !defined(NO_ERROR_STRINGS)
         return GetCipherNameIana(cipher->cipherSuite0, cipher->cipherSuite);
     #else
         return wolfSSL_get_cipher_name_from_suite(cipher->cipherSuite0,
@@ -14015,12 +14014,7 @@ void* wolfSSL_GetHKDFExtractCtx(WOLFSSL* ssl)
         }
         if (i == (int)WOLFSSL_OBJECT_INFO_SZ) {
             WOLFSSL_MSG("NID not in table");
-        #ifdef WOLFSSL_QT
-            sName = NULL;
-            type = (word32)id;
-        #else
             return NULL;
-        #endif
         }
 
     #ifdef HAVE_ECC
@@ -16010,9 +16004,8 @@ static WC_INLINE int sslCipherMinMaxCheck(const WOLFSSL *ssl, byte suite0,
  */
 WOLF_STACK_OF(WOLFSSL_CIPHER) *wolfSSL_get_ciphers_compat(const WOLFSSL *ssl)
 {
-    WOLF_STACK_OF(WOLFSSL_CIPHER)* ret = NULL;
     const Suites* suites;
-#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
+#if defined(OPENSSL_ALL)
     const CipherSuiteInfo* cipher_names = GetCipherNames();
     int cipherSz = GetCipherNamesSize();
 #endif
@@ -16028,15 +16021,20 @@ WOLF_STACK_OF(WOLFSSL_CIPHER) *wolfSSL_get_ciphers_compat(const WOLFSSL *ssl)
     /* check if stack needs populated */
     if (ssl->suitesStack == NULL) {
         int i;
-#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
-        int j;
+
+        ((WOLFSSL*)ssl)->suitesStack =
+                wolfssl_sk_new_type_ex(STACK_TYPE_CIPHER, ssl->heap);
+        if (ssl->suitesStack == NULL)
+            return NULL;
 
         /* higher priority of cipher suite will be on top of stack */
-        for (i = suites->suiteSz - 2; i >=0; i-=2) {
+#if defined(OPENSSL_ALL)
+        for (i = suites->suiteSz - 2; i >=0; i-=2)
 #else
-        for (i = 0; i < suites->suiteSz; i+=2) {
+        for (i = 0; i < suites->suiteSz; i+=2)
 #endif
-            WOLFSSL_STACK* add;
+        {
+            struct WOLFSSL_CIPHER cipher;
 
             /* A couple of suites are placeholders for special options,
              * skip those. */
@@ -16046,39 +16044,30 @@ WOLF_STACK_OF(WOLFSSL_CIPHER) *wolfSSL_get_ciphers_compat(const WOLFSSL *ssl)
                 continue;
             }
 
-            add = wolfSSL_sk_new_node(ssl->heap);
-            if (add != NULL) {
-                add->type = STACK_TYPE_CIPHER;
-                add->data.cipher.cipherSuite0 = suites->suites[i];
-                add->data.cipher.cipherSuite  = suites->suites[i+1];
-                add->data.cipher.ssl          = ssl;
-#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
+            XMEMSET(&cipher, 0, sizeof(cipher));
+            cipher.cipherSuite0 = suites->suites[i];
+            cipher.cipherSuite  = suites->suites[i+1];
+            cipher.ssl          = ssl;
+#if defined(OPENSSL_ALL)
+            cipher.in_stack     = 1;
+            {
+                int j;
                 for (j = 0; j < cipherSz; j++) {
-                    if (cipher_names[j].cipherSuite0 ==
-                            add->data.cipher.cipherSuite0 &&
-                            cipher_names[j].cipherSuite ==
-                                    add->data.cipher.cipherSuite) {
-                        add->data.cipher.offset = (unsigned long)j;
+                    if (cipher_names[j].cipherSuite0 == cipher.cipherSuite0 &&
+                            cipher_names[j].cipherSuite == cipher.cipherSuite) {
+                        cipher.offset = (unsigned long)j;
                         break;
                     }
                 }
+            }
 #endif
-                #if defined(WOLFSSL_QT) || defined(OPENSSL_ALL)
-                /* in_stack is checked in wolfSSL_CIPHER_description */
-                add->data.cipher.in_stack     = 1;
-                #endif
-
-                add->next = ret;
-                if (ret != NULL) {
-                    add->num = ret->num + 1;
-                }
-                else {
-                    add->num = 1;
-                }
-                ret = add;
+            if (wolfSSL_sk_insert(ssl->suitesStack, &cipher, 0) <= 0) {
+                WOLFSSL_MSG("Error inserting cipher onto stack");
+                wolfSSL_sk_CIPHER_free(ssl->suitesStack);
+                ((WOLFSSL*)ssl)->suitesStack = NULL;
+                break;
             }
         }
-        ((WOLFSSL*)ssl)->suitesStack = ret;
     }
     return ssl->suitesStack;
 }

src/ssl_sk.c

@@ -113,24 +113,6 @@ WOLFSSL_STACK* wolfSSL_sk_get_node(WOLFSSL_STACK* stack, int idx)
 #endif /* !NO_CERT && OPENSSL_EXTRA*/
 
 #if defined(OPENSSL_EXTRA) || defined(WOLFSSL_WPAS_SMALL)
-/* Copy all fields from src into dst.
- *
- * Shallow copy only.
- *
- * @param [in, out] dst  Node to copy into.
- * @param [in]      src  Node to copy.
- */
-static void wolfssl_sk_node_copy(WOLFSSL_STACK* dst, WOLFSSL_STACK* src)
-{
-    dst->data.generic = src->data.generic;
-    dst->next         = src->next;
-#ifdef OPENSSL_ALL
-    dst->hash_fn      = src->hash_fn;
-    dst->hash         = src->hash;
-#endif
-    dst->type         = src->type;
-    dst->num          = src->num;
-}
 
 #ifndef NO_CERTS
 /* Get data pointer from node.
@@ -188,13 +170,12 @@ static void wolfssl_sk_node_set_data(WOLFSSL_STACK* node, WOLF_STACK_TYPE type,
 {
     switch (type) {
         case STACK_TYPE_CIPHER:
-#if defined(OPENSSL_ALL) || defined(WOLFSSL_QT)
             node->data.cipher = *(WOLFSSL_CIPHER*)data;
-            if (node->hash_fn != NULL) {
+#ifdef OPENSSL_ALL
+            if (node->hash_fn != NULL)
                 node->hash = node->hash_fn(&node->data.cipher);
-            }
-            break;
 #endif
+            break;
         case STACK_TYPE_X509:
         case STACK_TYPE_GEN_NAME:
         case STACK_TYPE_BIO:
@@ -331,7 +312,7 @@ void* wolfSSL_sk_pop_node(WOLFSSL_STACK* stack, int idx)
             if (stack->next) {
                 /* Keep the first node as it is the pointer passed in. */
                 tmp = stack->next;
-                wolfssl_sk_node_copy(stack, stack->next);
+                XMEMCPY(stack, stack->next, sizeof(WOLFSSL_STACK));
                 wolfSSL_sk_free_node(tmp);
             }
         }
@@ -374,7 +355,12 @@ void* wolfSSL_sk_pop_node(WOLFSSL_STACK* stack, int idx)
  */
 WOLFSSL_STACK* wolfssl_sk_new_type(WOLF_STACK_TYPE type)
 {
-    WOLFSSL_STACK* stack = wolfSSL_sk_new_node(NULL);
+    return wolfssl_sk_new_type_ex(type, NULL);
+}
+
+WOLFSSL_STACK* wolfssl_sk_new_type_ex(WOLF_STACK_TYPE type, void* heap)
+{
+    WOLFSSL_STACK* stack = wolfSSL_sk_new_node(heap);
     if (stack != NULL) {
         stack->type = type;
     }
@@ -527,7 +513,7 @@ WOLFSSL_STACK* wolfSSL_sk_dup(WOLFSSL_STACK* stack)
         /* Update last node in linked list. */
         last = cur;
 
-        wolfssl_sk_node_copy(cur, stack);
+        XMEMCPY(cur, stack, sizeof(WOLFSSL_STACK));
         /* We will allocate new memory for this */
         XMEMSET(&cur->data, 0, sizeof(cur->data));
         cur->next = NULL;
@@ -569,7 +555,7 @@ WOLFSSL_STACK* wolfSSL_shallow_sk_dup(WOLFSSL_STACK* stack)
             break;
         }
 
-        wolfssl_sk_node_copy(cur, stack);
+        XMEMCPY(cur, stack, sizeof(WOLFSSL_STACK));
         cur->next = NULL;
 
         *prev = cur;
@@ -737,7 +723,7 @@ int wolfSSL_sk_insert(WOLFSSL_STACK *stack, const void *data, int idx)
             if (idx == 0) {
                 /* Special case where we need to change the values in the head
                  * element to avoid changing the initial pointer. */
-                wolfssl_sk_node_copy(node, stack);
+                XMEMCPY(node, stack, sizeof(WOLFSSL_STACK));
                 wolfssl_sk_node_set_data(stack, stack->type, data);
                 stack->num++;
                 stack->next = node;

src/x509.c

@@ -10824,15 +10824,10 @@ WOLFSSL_ASN1_INTEGER* wolfSSL_X509_get_serialNumber(WOLFSSL_X509* x509)
         a->dataMax = WOLFSSL_ASN1_INTEGER_MAX;
     }
 
-    #if defined(WOLFSSL_QT) || defined(WOLFSSL_HAPROXY)
-        XMEMCPY(&a->data[i], x509->serial, x509->serialSz);
-        a->length = x509->serialSz;
-    #else
-        a->data[i++] = ASN_INTEGER;
-        i += SetLength(x509->serialSz, a->data + i);
-        XMEMCPY(&a->data[i], x509->serial, x509->serialSz);
-        a->length = x509->serialSz + 2;
-    #endif
+    a->data[i++] = ASN_INTEGER;
+    i += SetLength(x509->serialSz, a->data + i);
+    XMEMCPY(&a->data[i], x509->serial, x509->serialSz);
+    a->length = x509->serialSz + 2;
 
     x509->serialNumber = a;
 

wolfcrypt/src/evp.c

@@ -5820,9 +5820,15 @@ void wolfSSL_EVP_init(void)
                 case WC_HASH_TYPE_BLAKE2S:
             #if defined(WOLFSSL_SHA3) && defined(WOLFSSL_SHAKE128)
                 case WC_HASH_TYPE_SHAKE128:
+                    ret = wc_Shake128_Copy((wc_Shake*)&src->hash.digest.shake,
+                            (wc_Sha3*)&des->hash.digest.shake);
+                    break;
             #endif
             #if defined(WOLFSSL_SHA3) && defined(WOLFSSL_SHAKE256)
                 case WC_HASH_TYPE_SHAKE256:
+                    ret = wc_Shake256_Copy((wc_Shake*)&src->hash.digest.shake,
+                            (wc_Sha3*)&des->hash.digest.shake);
+                    break;
             #endif
                 default:
                     ret = BAD_FUNC_ARG;
@@ -11353,6 +11359,16 @@ int wolfSSL_EVP_MD_block_size(const WOLFSSL_EVP_MD* type)
         return WC_SHA3_512_BLOCK_SIZE;
     } else
 #endif
+#if defined(WOLFSSL_SHA3) && defined(WOLFSSL_SHAKE128)
+    if (XSTRCMP(type, WC_SN_shake128) == 0) {
+        return WC_SHA3_128_BLOCK_SIZE;
+    } else
+#endif
+#if defined(WOLFSSL_SHA3) && defined(WOLFSSL_SHAKE256)
+    if (XSTRCMP(type, WC_SN_shake256) == 0) {
+        return WC_SHA3_256_BLOCK_SIZE;
+    } else
+#endif
 #endif /* WOLFSSL_SHA3 */
 #ifdef WOLFSSL_SM3
     if (XSTRCMP(type, WC_SN_sm3) == 0) {

wolfssl/internal.h

@@ -7292,6 +7292,8 @@ WOLFSSL_LOCAL void* wolfssl_sk_pop_type(WOLFSSL_STACK* sk,
                                         WOLF_STACK_TYPE type);
 WOLFSSL_LOCAL void* wolfSSL_sk_pop_node(WOLFSSL_STACK* sk, int idx);
 WOLFSSL_LOCAL WOLFSSL_STACK* wolfssl_sk_new_type(WOLF_STACK_TYPE type);
+WOLFSSL_LOCAL WOLFSSL_STACK* wolfssl_sk_new_type_ex(WOLF_STACK_TYPE type,
+        void* heap);
 
 WOLFSSL_LOCAL int wolfssl_asn1_obj_set(WOLFSSL_ASN1_OBJECT* obj,
         const byte* der, word32 len, int addHdr);

wolfssl/openssl/opensslv.h

@@ -40,6 +40,9 @@
 #elif defined(OPENSSL_VERSION_NUMBER)
     /* unrecognized version, but continue. */
     #define WOLFSSL_OPENSSL_VERSION_NUMBER_UNRECOGNIZED
+#elif defined(WOLFSSL_QT) || defined(WOLFSSL_PYTHON)
+    /* For Qt and Python 3.8.5 compatibility */
+    #define OPENSSL_VERSION_NUMBER 0x10101000L
 #elif defined(HAVE_MOSQUITTO)
     #define OPENSSL_VERSION_NUMBER 0x10100000L
 #elif defined(WOLFSSL_APACHE_HTTPD) || defined(HAVE_LIBEST) || \
@@ -48,9 +51,6 @@
       defined(WOLFSSL_OPENSSH)
     /* For Apache httpd, Use 1.1.0 compatibility */
     #define OPENSSL_VERSION_NUMBER 0x10100003L
-#elif defined(WOLFSSL_QT) || defined(WOLFSSL_PYTHON)
-    /* For Qt and Python 3.8.5 compatibility */
-    #define OPENSSL_VERSION_NUMBER 0x10101000L
 #elif defined(WOLFSSL_HAPROXY) || defined(WOLFSSL_FFMPEG)
     #define OPENSSL_VERSION_NUMBER 0x1010000fL
 #elif defined(OPENSSL_ALL) || defined(HAVE_LIGHTY) || \