Skip to content

20260226-linuxkm-SUPPORT_DUMP_TO_FILE#9844

Merged
dgarske merged 5 commits intowolfSSL:masterfrom
douzzer:20260226-linuxkm-SUPPORT_DUMP_TO_FILE
Feb 28, 2026
Merged

20260226-linuxkm-SUPPORT_DUMP_TO_FILE#9844
dgarske merged 5 commits intowolfSSL:masterfrom
douzzer:20260226-linuxkm-SUPPORT_DUMP_TO_FILE

Conversation

@douzzer
Copy link
Copy Markdown
Contributor

@douzzer douzzer commented Feb 28, 2026

Makefile.am: for linuxkm module target, pass through "module" target as such, for compatibility with alt LIBWOLFSSL_NAME.

linuxkm/Makefile:

  • don't use readarray -d -- it's a recent bashism;
  • rework libwolfssl-user-build/src/.libs/libwolfssl.so recipe to better isolate sub-build settings.
  • add support for HOSTCC and HOSTCFLAGS in libwolfssl.so build.
  • deploy $(QFLAG) --no-print-directory --no-silent in several submakes for neatness and resilience.
  • tweak $(LIBWOLFSSL_NAME).ko.signed recipe to add a "skipping" message and some consistency checking.

linuxkm/README.md: update FIPS DRBG /proc/crypto content to show seed source.

linuxkm/linuxkm_memory.c: fixes for format character portability in a RELOC_DEBUG_PRINTF() in wc_reloc_normalize_text).

linuxkm/linuxkm_wc_port.h: pull in linux/moduleparam.h, and if WC_LINUXKM_SUPPORT_DUMP_TO_FILE, pull in linux/fs.h and linux/uaccess.h.

linuxkm/module_hooks.c: implement WC_LINUXKM_SUPPORT_DUMP_TO_FILE: dump_to_file() and module args text_dump_path=... and rodata_dump_path=...

linuxkm/patches/7.0/WOLFSSL_LINUXKM_HAVE_GET_RANDOM_CALLBACKS-7v0.patch: add to accommodate patch-breaking change in Linux 7dff99b354.

src/x509.c: in loadX509orX509REQFromPemBio(), fix an identicalInnerCondition.

wolfcrypt/src/ecc.c: in wc_ecc_import_point_der_ex() and wc_ecc_import_x963_ex2(), add missing retval capture for sp_ecc_uncompress_sm2_256() (Fenrir M-68).

wolfcrypt/src/aes.c: in AesSivCipher(), burn sivTmp before return (Fenrir M-69).

wolfcrypt/src/hpke.c, wolfssl/wolfcrypt/error-crypt.h, wolfcrypt/src/error.c: implement RFC 9180 overflow checks on context->seq in wc_HpkeContextSealBase() and wc_HpkeContextOpenBase(), and add SEQ_OVERFLOW_E to wolfCrypt_ErrorCodes (Fenrir M-70).

tested with

wolfssl-multi-test.sh ...
check-source-text
check-configure
clang-tidy-all-sp-all
quantum-safe-wolfssl-all-crypto-only-intelasm-fips-dev-linuxkm-next-insmod-gcc-latest
'.*cust-kern.*'

@douzzer
src/x509.c: in loadX509orX509REQFromPemBio(), fix an identicalInnerCo…
bdea01a 
…ndition.
@douzzer
wolfcrypt/src/ecc.c: in wc_ecc_import_point_der_ex() and wc_ecc_impor…
616a6a5 
…t_x963_ex2(), add missing retval capture for sp_ecc_uncompress_sm2_256() (Fenrir M-68).
@douzzer
wolfcrypt/src/aes.c: in AesSivCipher(), burn sivTmp before return (Fe…
4110887 
…nrir M-69).
@douzzer
wolfcrypt/src/hpke.c, wolfssl/wolfcrypt/error-crypt.h, wolfcrypt/src/…
76bc6e3 
…error.c: implement RFC 9180 overflow checks on context->seq in wc_HpkeContextSealBase() and wc_HpkeContextOpenBase(), and add SEQ_OVERFLOW_E to wolfCrypt_ErrorCodes (Fenrir M-70).
@douzzer
Makefile.am: for linuxkm module target, pass through "module" target …
d22175a 
…as such, for compatibility with alt LIBWOLFSSL_NAME.

linuxkm/Makefile:

* don't use `readarray -d` -- it's a recent bashism;
* rework libwolfssl-user-build/src/.libs/libwolfssl.so recipe to better isolate sub-build settings.
* add support for HOSTCC and HOSTCFLAGS in libwolfssl.so build.
* deploy $(QFLAG) --no-print-directory --no-silent in several submakes for neatness and resilience.
* tweak $(LIBWOLFSSL_NAME).ko.signed recipe to add a "skipping" message and some consistency checking.

linuxkm/README.md: update FIPS DRBG /proc/crypto content to show seed source.

linuxkm/linuxkm_memory.c: fixes for format character portability in a RELOC_DEBUG_PRINTF() in wc_reloc_normalize_text).

linuxkm/linuxkm_wc_port.h: pull in linux/moduleparam.h, and if WC_LINUXKM_SUPPORT_DUMP_TO_FILE, pull in linux/fs.h and linux/uaccess.h.

linuxkm/module_hooks.c: implement WC_LINUXKM_SUPPORT_DUMP_TO_FILE: dump_to_file() and module args text_dump_path=... and rodata_dump_path=...

linuxkm/patches/7.0/WOLFSSL_LINUXKM_HAVE_GET_RANDOM_CALLBACKS-7v0.patch: add to accommodate patch-breaking change in Linux 7dff99b354.
@douzzer douzzer self-assigned this Feb 28, 2026
@douzzer
Copy link
Copy Markdown
Contributor Author

douzzer commented Feb 28, 2026

retest this please

FAIL: scripts/ocsp-stapling2.test

@dgarske dgarske merged commit 5d6a23b into wolfSSL:master Feb 28, 2026
469 of 470 checks passed
@douzzer douzzer mentioned this pull request Feb 28, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgarske dgarske dgarske approved these changes

@wolfSSL-Bot wolfSSL-Bot Awaiting requested review from wolfSSL-Bot

@night1rider night1rider Awaiting requested review from night1rider

Assignees

@douzzer douzzer

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@douzzer @dgarske